First published: Wed Jan 09 2008(Updated: )
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
PostgreSQL PostgreSQL | >=7.3.0<7.3.21 | |
PostgreSQL PostgreSQL | >=7.4.0<7.4.19 | |
PostgreSQL PostgreSQL | >=8.0.0<8.0.15 | |
PostgreSQL PostgreSQL | >=8.1.0<8.1.11 | |
PostgreSQL PostgreSQL | >=8.2.0<8.2.6 | |
PostgreSQL PostgreSQL | =8.2 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =4.0 | |
Fedoraproject Fedora | =7 | |
Fedoraproject Fedora | =8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.