oval:org.mitre.oval:def:12311

Definition Id: oval:org.mitre.oval:def:12311

Oval ID:	oval:org.mitre.oval:def:12311
Title:	DSA-2120-1 postgresql-8.3 -- privilege escalation
Description:	Tim Bunce discovered that PostgreSQL, a database server software, does not properly separate interpreters for server-side stored procedures which run in different security contexts. As a result, non-privileged authenticated database users might gain additional privileges. Note that this security update may impact intended communication through global variables between stored procedures. It might be necessary to convert these functions to run under the plperlu or pltclu languages, with database superuser privileges. This security update also includes unrelated bug fixes from PostgreSQL 8.3.12. For the stable distribution, this problem has been fixed in version 8.3_8.3.12-0lenny1. For the unstable distribution, this problem has been fixed in version 8.4.5-1 of the postgresql-8.4 package. We recommend that you upgrade your PostgreSQL packages.
Family:	unix	Class:	patch
Reference(s):	DSA-2120-1 CVE-2010-3433	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	postgresql-8.3
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section postgresql-doc DPKG is earlier than 8.3.12-0lenny1 AND postgresql-doc-8.3 DPKG is earlier than 8.3.12-0lenny1 AND postgresql-contrib DPKG is earlier than 8.3.12-0lenny1 AND postgresql DPKG is earlier than 8.3.12-0lenny1 AND postgresql-client DPKG is earlier than 8.3.12-0lenny1 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section postgresql-client-8.3 DPKG is earlier than 8.3.12-0lenny1 AND postgresql-plperl-8.3 DPKG is earlier than 8.3.12-0lenny1 AND postgresql-8.3 DPKG is earlier than 8.3.12-0lenny1 AND libecpg6 DPKG is earlier than 8.3.12-0lenny1 AND libpq-dev DPKG is earlier than 8.3.12-0lenny1 AND postgresql-plpython-8.3 DPKG is earlier than 8.3.12-0lenny1 AND postgresql-pltcl-8.3 DPKG is earlier than 8.3.12-0lenny1 AND postgresql-server-dev-8.3 DPKG is earlier than 8.3.12-0lenny1 AND libecpg-dev DPKG is earlier than 8.3.12-0lenny1 AND postgresql-contrib-8.3 DPKG is earlier than 8.3.12-0lenny1 AND libpq5 DPKG is earlier than 8.3.12-0lenny1 AND libpgtypes3 DPKG is earlier than 8.3.12-0lenny1 AND libecpg-compat3 DPKG is earlier than 8.3.12-0lenny1

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:12311

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0271s

Facebook rss twitter linkedin mail