oval:org.mitre.oval:def:13708

Definition Id: oval:org.mitre.oval:def:13708

Oval ID:	oval:org.mitre.oval:def:13708
Title:	DSA-1900-1 postgresql-7.4, postgresql-8.1, postgresql-8.3, postgresql-8.4 -- several
Description:	Several vulnerabilities have been discovered in PostgreSQL, an SQL database system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-3229 Authenticated users can shut down the backend server by re-LOAD-ing libraries in $libdir/plugins, if any libraries are present there. CVE-2009-3230 Authenticated non-superusers can gain database superuser privileges if they can create functions and tables due to incorrect execution of functions in functional indexes. CVE-2009-3231 If PostgreSQL is configured with LDAP authentication, and the LDAP configuration allows anonymous binds, it is possible for a user to authenticate themselves with an empty password. In addition, this update contains reliability improvements which do not target security issues. For the old stable distribution, these problems have been fixed in version 1:7.4.26-0etch1 of the postgresql-7.4 source package, and version 8.1.18-0etch1 of the postgresql-8.1 source package. For the stable distribution, these problems have been fixed in version 8.3.8-0lenny1 of the postgresql-8.3 source package. For the unstable distribution, these problems have been fixed in version 8.3.8-1 of the postgresql-8.3 source package, and version 8.4.1-1 of the postgresql-8.4 source package. We recommend that you upgrade your PostgreSQL packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1900-1 CVE-2009-3229 CVE-2009-3230 CVE-2009-3231	Version:	7
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	postgresql-7.4 postgresql-8.1 postgresql-8.3 postgresql-8.4
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section postgresql-doc DPKG is earlier than 8.3.8-0lenny1 AND postgresql-doc-8.3 DPKG is earlier than 8.3.8-0lenny1 AND postgresql-contrib DPKG is earlier than 8.3.8-0lenny1 AND postgresql-client DPKG is earlier than 8.3.8-0lenny1 AND postgresql DPKG is earlier than 8.3.8-0lenny1 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section postgresql-client-8.3 DPKG is earlier than 8.3.8-0lenny1 AND postgresql-plperl-8.3 DPKG is earlier than 8.3.8-0lenny1 AND postgresql-8.3 DPKG is earlier than 8.3.8-0lenny1 AND libecpg6 DPKG is earlier than 8.3.8-0lenny1 AND libpq-dev DPKG is earlier than 8.3.8-0lenny1 AND postgresql-plpython-8.3 DPKG is earlier than 8.3.8-0lenny1 AND postgresql-pltcl-8.3 DPKG is earlier than 8.3.8-0lenny1 AND postgresql-server-dev-8.3 DPKG is earlier than 8.3.8-0lenny1 AND libecpg-dev DPKG is earlier than 8.3.8-0lenny1 AND postgresql-contrib-8.3 DPKG is earlier than 8.3.8-0lenny1 AND libpq5 DPKG is earlier than 8.3.8-0lenny1 AND libpgtypes3 DPKG is earlier than 8.3.8-0lenny1 AND libecpg-compat3 DPKG is earlier than 8.3.8-0lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND Packages section postgresql-doc-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-server-dev-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND postgresql-doc-7.4 DPKG is earlier than 1:7.4.26-0etch1 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is hppa AND Packages section postgresql-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND postgresql-client-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-plperl-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND postgresql-plpython-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND postgresql-contrib-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-contrib-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND libecpg5 DPKG is earlier than 8.1.18-0etch1 AND postgresql-pltcl-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-client-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND postgresql-plpython-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-server-dev-8.1 DPKG is earlier than 8.1.18-0etch1 AND libecpg-dev DPKG is earlier than 8.1.18-0etch1 AND libpgtypes2 DPKG is earlier than 8.1.18-0etch1 AND libpq4 DPKG is earlier than 8.1.18-0etch1 AND libpq-dev DPKG is earlier than 8.1.18-0etch1 AND postgresql-plperl-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-pltcl-7.4 DPKG is earlier than 1:7.4.26-0etch1 AND libecpg-compat2 DPKG is earlier than 8.1.18-0etch1 OR Architecture depended section Installed architecture is mipsel AND Packages section postgresql-client-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-contrib-8.1 DPKG is earlier than 8.1.18-0etch1 AND libecpg5 DPKG is earlier than 8.1.18-0etch1 AND postgresql-pltcl-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-server-dev-8.1 DPKG is earlier than 8.1.18-0etch1 AND postgresql-plpython-8.1 DPKG is earlier than 8.1.18-0etch1 AND libecpg-dev DPKG is earlier than 8.1.18-0etch1 AND libpgtypes2 DPKG is earlier than 8.1.18-0etch1 AND libpq4 DPKG is earlier than 8.1.18-0etch1 AND libpq-dev DPKG is earlier than 8.1.18-0etch1 AND postgresql-plperl-8.1 DPKG is earlier than 8.1.18-0etch1 AND libecpg-compat2 DPKG is earlier than 8.1.18-0etch1

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:13708

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:13708

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0440s

Facebook rss twitter linkedin mail