1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
PublicDate: 2008-01-09
Candidate: CVE-2007-6601
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6601
http://www.ubuntu.com/usn/usn-568-1
Description:
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0
before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust
or ident authentication is used, allows remote attackers to gain privileges
via unspecified vectors. NOTE: this issue exists because of an incomplete
fix for CVE-2007-3278.
Ubuntu-Description:
Notes:
Bugs:
https://bugs.launchpad.net/ubuntu/+source/postgresql/+bug/181720
Priority: untriaged
Assigned-to:
Patches_postgresql-8.1:
upstream_postgresql-8.1:
dapper_postgresql-8.1: released (8.1.11-0ubuntu0.6.06.1)
edgy_postgresql-8.1: released (8.1.11-0ubuntu0.6.10.1)
feisty_postgresql-8.1: needed (reached end-of-life)
gutsy_postgresql-8.1: needed (reached end-of-life)
hardy_postgresql-8.1: DNE
intrepid_postgresql-8.1: DNE
devel_postgresql-8.1: DNE
Patches_postgresql-8.2:
upstream_postgresql-8.2:
dapper_postgresql-8.2: DNE
edgy_postgresql-8.2: DNE
feisty_postgresql-8.2: released (8.2.6-0ubuntu0.7.04.1)
gutsy_postgresql-8.2: released (8.2.6-0ubuntu0.7.10.1)
hardy_postgresql-8.2: released (8.2.6-1)
intrepid_postgresql-8.2: DNE
devel_postgresql-8.2: DNE
|