728x90
Package : postgresql-9.4 CVE ID : CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 Several vulnerabilities have been found in the PostgreSQL database system: CVE-2017-7546 In some authentication methods empty passwords were accepted. CVE-2017-7547 User mappings could leak data to unprivileged users. CVE-2017-7548 The lo_put() function ignored ACLs. For more in-depth descriptions of the security vulnerabilities, please see https://www.postgresql.org/about/news/1772/ For the oldstable distribution (jessie), these problems have been fixed in version 9.4.13-0+deb8u1. We recommend that you upgrade your postgresql-9.4 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/
728x90
'취약점 정보2' 카테고리의 다른 글
Apache2Triad 1.5.4 CSRF / XSS / Session Fixation (0) | 2017.08.22 |
---|---|
Microsoft Resnet - DNS Configuration Web Vulnerability (0) | 2017.08.22 |
postgresql-9.6 security update (0) | 2017.08.16 |
Apache Sling XSS vulnerability (0) | 2017.08.16 |
Adobe 제품군 보안 업데이트 권고 (0) | 2017.08.10 |