|Category:||SuSE Local Security Checks|
|Title:||SUSE: Security Advisory (SUSE-SU-2013:0517-1)|
|Summary:||The remote host is missing an update for the 'PostgreSQL' package(s) announced via the SUSE-SU-2013:0517-1 advisory.|
The remote host is missing an update for the 'PostgreSQL' package(s) announced via the SUSE-SU-2013:0517-1 advisory.
PostgreSQL has been updated to version 9.1.8 which fixes various bugs and one security issue.
The security issue fixed in this release, CVE-2013-0255,
allowed a previously authenticated user to crash the server by calling an internal function with invalid arguments. This issue was discovered by the independent security researcher Sumit Soni this week and reported via Secunia SVCRP, and we are grateful for their efforts in making PostgreSQL more secure.
More information can be found at
[link moved to references]
Security Issue reference:
'PostgreSQL' package(s) on SUSE Linux Enterprise Software Development Kit 11 SP2, SUSE Linux Enterprise Server 11 SP2, SUSE Linux Enterprise Desktop 11 SP2
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2013-0255|
BugTraq ID: 57844
Debian Security Information: DSA-2630 (Google Search)
RedHat Security Advisories: RHSA-2013:1475
SuSE Security Announcement: openSUSE-SU-2013:0318 (Google Search)
SuSE Security Announcement: openSUSE-SU-2013:0319 (Google Search)
XForce ISS Database: postgresql-enumrecv-dos(81917)
|Copyright||Copyright (C) 2021 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.