postgresql96-libs (SUSE:Linux Enterprise Server 12 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP3 package postgresql96-libs, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (11)
CVE-2017-7546 — CVSS 9.8 (critical): PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote…
CVE-2018-1115 — CVSS 9.1 (critical): postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow…
CVE-2018-1058 — CVSS 8.8 (high): A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account…
CVE-2017-7547 — CVSS 8.8 (high): PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated…
CVE-2018-10915 — CVSS 8.5 (high): A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between…
CVE-2018-10925 — CVSS 8.1 (high): It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on…
CVE-2017-15098 — CVSS 8.1 (high): Invalid json_populate_recordset or jsonb_populate_recordset function calls in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before…
CVE-2017-7548 — CVSS 7.5 (high): PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no…
CVE-2018-1053 — CVSS 7.0 (high): In postgresql 9.3.x before 9.3.21, 9.4.x before 9.4.16, 9.5.x before 9.5.11, 9.6.x before 9.6.7 and 10.x before 10.2, pg_upgrade creates…
CVE-2017-15099 — CVSS 6.5 (medium): INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table…
CVE-2019-10130 — CVSS 4.3 (medium): A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x…