AVG-272 log

Package postgresql
Status Fixed
Severity Medium
Type information disclosure
Affected 9.6.2-1
Fixed 9.6.3-1
Current 12.1-2 [extra]
Ticket None
Created Thu May 11 19:50:29 2017
Issue Severity Remote Type Description
CVE-2017-7486 Medium Yes Information disclosure
A security issue has been found in PostgreSQL < 9.6.3, where the pg_user_mappings view disclosed user mapping options to any user having USAGE privilege on...
CVE-2017-7484 Medium Yes Information disclosure
A security issue has been found in PostgreSQL < 9.6.3, where some selectivity estimation functions did not check user privileges before providing...
Date Advisory Package Description
30 May 2017 ASA-201705-23 postgresql information disclosure
References
https://www.postgresql.org/about/news/1746/