AVG-1019 log
| Package | postgresql, postgresql-libs |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 11.4-1 |
| Fixed | 11.5-1 |
| Current | 18.0-1 [extra] |
| Ticket | None |
| Created | Sat Aug 10 10:39:40 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-10209 | Low | Yes | Information disclosure | An issue has been found in PostgreSQL >= 11.0 and < 11.5. In a database containing hypothetical, user-defined hash equality operators, an attacker could... |
| CVE-2019-10208 | Medium | Yes | Access restriction bypass | A security issue has been found in PostgreSQL < 11.5 where given a suitable SECURITY DEFINER function, an attacker can execute arbitrary SQL under the... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 10 Aug 2019 | ASA-201908-8 | postgresql | multiple issues |
| 10 Aug 2019 | ASA-201908-7 | postgresql-libs | multiple issues |
| References |
|---|
https://www.postgresql.org/about/news/1960/ |