FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-09 08:42:40 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
31f45d06-7f0e-11ee-94b4-6cc21735f730	postgresql-server -- Memory disclosure in aggregate function calls PostgreSQL Project reports: Certain aggregate function calls receiving "unknown"-type arguments could disclose bytes of server memory from the end of the "unknown"-type value to the next zero byte. One typically gets an "unknown"-type value via a string literal having no type designation. We have not confirmed or ruled out viability of attacks that arrange for presence of notable, confidential information in disclosed bytes. Discovery 2023-11-09 Entry 2023-11-09 postgresql-server < 16.1 < 15.5 < 14.10 < 13.13 < 12.17 < 11.22 CVE-2023-5868 https://www.postgresql.org/support/security/CVE-2023-5868/

VuXML ID

Description

31f45d06-7f0e-11ee-94b4-6cc21735f730

postgresql-server -- Memory disclosure in aggregate function calls

PostgreSQL Project reports:

Certain aggregate function calls receiving "unknown"-type arguments could disclose bytes of server memory from the end of the "unknown"-type value to the next zero byte. One typically gets an "unknown"-type value via a string literal having no type designation. We have not confirmed or ruled out viability of attacks that arrange for presence of notable, confidential information in disclosed bytes.

Discovery 2023-11-09
Entry 2023-11-09
postgresql-server

< 16.1

< 15.5

< 14.10

< 13.13

< 12.17

< 11.22

CVE-2023-5868
https://www.postgresql.org/support/security/CVE-2023-5868/