Ubuntu Security Update USN-6296-1: PostgreSQL vulnerabilities

Thread starter LinuxBot
Start date Aug 17, 2023

LinuxBot

Member

Aug 17, 2023

It was discovered that PostgreSQL incorrectly handled certain extension script substitutions. An attacker having database-level CREATE privileges can use this issue to execute arbitrary code as the bootstrap superuser. (CVE-2023-39417) It was discovered that PostgreSQL incorrectly handled the MERGE command. A remote attacker could possibly use this issue to bypass certain UPDATE and SELECT policies. This issue only affected Ubuntu 23.04. (CVE-2023-39418)

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 745 (members: 5, guests: 740)

Latest posts

which linux kernel should i choose?
- Latest: Brickwizard
- 42 minutes ago
General Linux Questions
Long boot time
- Latest: osprey
- Today at 11:57 AM
Ubuntu forum
Installing Linux Mint
- Latest: kc1di
- Today at 11:21 AM
General Linux Questions
G
SSSD and local user
- Latest: Greg.G
- Today at 11:12 AM
Ubuntu forum
B
Doing my best but Progress is lacking in job, what to do?
- Latest: Brief-Wishbone9091
- Today at 10:59 AM
Command Line

Top