KLA11202
PE vulnerabilities in PostgreSQL
Обновлено: 26/06/2019
Дата обнаружения
03/01/2018
Уровень угрозы
Critical
Описание

A vulnerabilyty was found in PostgreSQL. This vulnerability allow a user to modify the behavior of a query for other users and can be exploited to execute code with the permissions of superuser in the database.

Пораженные продукты

PostgreSQL 9.6 versions earlier than 9.6.8 
PostgreSQL 9.5 versions earlier than 9.5.12 
PostgreSQL 9.4 versions earlier than 9.4.17 
PostgreSQL 9.3 versions earlier than 9.3.22 
PostgreSQL 10 versions earlier than 10.3
PostgreSQL 9.6 versions earlier than 9.6.8 
PostgreSQL 9.5 versions earlier than 9.5.12 
PostgreSQL 9.4 versions earlier than 9.4.17 
PostgreSQL 9.3 versions earlier than 9.3.22 
PostgreSQL 10 versions earlier than 10.3

Решение

Protect PostgreSQL installations
A Guide to CVE-2018-1058: Protect Your Search Path

Первичный источник обнаружения
Security Update Release
Оказываемое влияние
?
PE 
[?]
Связанные продукты
PostgreSQL
CVE-IDS