Debian Security Advisory 3936-1

Debian Security Advisory 3936-1: Posted Aug 10, 2017; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3936-1 - Several vulnerabilities have been found in the PostgreSQL database system.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2017-7546, CVE-2017-7547, CVE-2017-7548; SHA-256 | 66c7a3b7cf22b115bb7384ea9597bc3a5ab8a2d482919832a30e6177465ccf24; Download | Favorite | View

Debian Security Advisory 3936-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3936-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
August 10, 2017                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : postgresql-9.6
CVE ID         : CVE-2017-7546 CVE-2017-7547 CVE-2017-7548

Several vulnerabilities have been found in the PostgreSQL database
system:

CVE-2017-7546

    In some authentication methods empty passwords were accepted.

CVE-2017-7547

    User mappings could leak data to unprivileged users.

CVE-2017-7548

    The lo_put() function ignored ACLs.

For more in-depth descriptions of the security vulnerabilities,
please see https://www.postgresql.org/about/news/1772/

For the stable distribution (stretch), these problems have been fixed in
version 9.6.4-0+deb9u1.

We recommend that you upgrade your postgresql-9.6 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=mzAD
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 64 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

Debian Security Advisory 3936-1

Debian Security Advisory 3936-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 3936-1

Share This

Debian Security Advisory 3936-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems