FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
76e0bb86-b4cb-11eb-b9c9-6cc21735f730	PostgreSQL -- Memory disclosure in partitioned-table UPDATE ... RETURNING The PostgreSQL project reports: Using an UPDATE ... RETURNING on a purpose-crafted partitioned table, an attacker can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can create prerequisite objects and complete this attack at will. A user lacking the CREATE and TEMPORARY privileges on all databases and the CREATE privilege on all schemas typically cannot use this attack at will. Discovery 2021-05-13 Entry 2021-05-14 postgresql13-server < 13.3 postgresql12-server < 12.7 postgresql11-server < 11.12 https://www.postgresql.org/support/security/CVE-2021-32029/

VuXML ID

Description

76e0bb86-b4cb-11eb-b9c9-6cc21735f730

PostgreSQL -- Memory disclosure in partitioned-table UPDATE ... RETURNING

The PostgreSQL project reports:

Using an UPDATE ... RETURNING on a purpose-crafted partitioned table, an attacker can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can create prerequisite objects and complete this attack at will. A user lacking the CREATE and TEMPORARY privileges on all databases and the CREATE privilege on all schemas typically cannot use this attack at will.

Discovery 2021-05-13
Entry 2021-05-14
postgresql13-server

< 13.3

postgresql12-server

< 12.7

postgresql11-server

< 11.12

https://www.postgresql.org/support/security/CVE-2021-32029/