Search CVE reports
21 – 30 of 35 results
CVE-2007-0556
Unknown priorityThe query planner in PostgreSQL before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 does not verify that a table is compatible with a "previously made query plan," which allows remote authenticated users to cause a denial of...
2 affected packages
postgresql-8.1, postgresql-8.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
CVE-2007-0555
Unknown priorityPostgreSQL 7.3 before 7.3.13, 7.4 before 7.4.16, 8.0 before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 allows attackers to disable certain checks for the data types of SQL function arguments, which allows remote authenticated...
2 affected packages
postgresql-8.1, postgresql-8.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
CVE-2006-5542
Unknown prioritybackend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) related to duration logging of V3-protocol Execute messages for (1) COMMIT and (2) ROLLBACK SQL...
3 affected packages
postgresql-7.4, postgresql-8.0, postgresql-8.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.0 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
CVE-2006-5541
Unknown prioritybackend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.
1 affected packages
postgresql-8.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql-8.1 | — | — | — | — | — |
CVE-2006-5540
Unknown prioritybackend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which are not properly handled during...
3 affected packages
postgresql-7.4, postgresql-8.0, postgresql-8.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.0 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
CVE-2006-2314
Unknown prioritySome fixes available 21 of 24
PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte...
14 affected packages
amarok, dovecot, exim4, libapache2-mod-auth-pgsql, php5...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| amarok | — | — | — | — | — |
| dovecot | — | — | — | — | — |
| exim4 | — | — | — | — | — |
| libapache2-mod-auth-pgsql | — | — | — | — | — |
| php5 | — | — | — | — | — |
| postfix | — | — | — | — | — |
| postgresql | — | — | — | — | — |
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
| psycopg | — | — | — | — | — |
| psycopg2 | — | — | — | — | — |
| pygresql | — | — | — | — | — |
| python-pgsql | — | — | — | — | — |
CVE-2006-2313
Unknown prioritySome fixes available 5 of 6
PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications via invalid encodings...
4 affected packages
postgresql, postgresql-7.4, postgresql-8.1, postgresql-8.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql | — | — | — | — | — |
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
CVE-2006-0553
Unknown priorityPostgreSQL 8.1.0 through 8.1.2 allows authenticated database users to gain additional privileges via "knowledge of the backend protocol" using a crafted SET ROLE to other database users, a different vulnerability than CVE-2006-0678.
3 affected packages
postgresql, postgresql-8.1, postgresql-8.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
CVE-2005-1410
Unknown priorityThe tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which...
5 affected packages
postgresql, postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql | — | — | — | — | — |
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.0 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
CVE-2005-1409
Unknown priorityPostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character...
6 affected packages
postgresql, postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-common
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| postgresql | — | — | — | — | — |
| postgresql-7.4 | — | — | — | — | — |
| postgresql-8.0 | — | — | — | — | — |
| postgresql-8.1 | — | — | — | — | — |
| postgresql-8.2 | — | — | — | — | — |
| postgresql-common | — | — | — | — | — |