FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-09 08:42:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0f445859-7f0e-11ee-94b4-6cc21735f730	postgresql-server -- Buffer overrun from integer overflow in array modification PostgreSQL Project reports: While modifying certain SQL array values, missing overflow checks let authenticated database users write arbitrary bytes to a memory area that facilitates arbitrary code execution. Missing overflow checks also let authenticated database users read a wide area of server memory. The CVE-2021-32027 fix covered some attacks of this description, but it missed others. Discovery 2023-11-09 Entry 2023-11-09 postgresql-server < 16.1 < 15.5 < 14.10 < 13.13 < 12.17 < 11.22 CVE-2023-5869 https://www.postgresql.org/support/security/CVE-2023-5869/

VuXML ID

Description

0f445859-7f0e-11ee-94b4-6cc21735f730

postgresql-server -- Buffer overrun from integer overflow in array modification

PostgreSQL Project reports:

While modifying certain SQL array values, missing overflow checks let authenticated database users write arbitrary bytes to a memory area that facilitates arbitrary code execution. Missing overflow checks also let authenticated database users read a wide area of server memory. The CVE-2021-32027 fix covered some attacks of this description, but it missed others.

Discovery 2023-11-09
Entry 2023-11-09
postgresql-server

< 16.1

< 15.5

< 14.10

< 13.13

< 12.17

< 11.22

CVE-2023-5869
https://www.postgresql.org/support/security/CVE-2023-5869/