Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Mandriva update for postgresql
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Mandriva update for postgresql
Secunia Advisory: SA25005
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2007-04-26
Popularity: 5,393 views

Critical:
Less critical
Impact: Privilege escalation
Where: From local network
Solution Status: Vendor Patch

OS:Mandriva Linux 2007.0
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2007-2138
Description:
Mandriva has issued an update for postgresql. This fixes a security issue, which potentially can be exploited by malicious users to gain escalated privileges.

For more information:
SA25019

Solution:
Apply updated packages.

-- Mandriva Linux 2007 --

517c0f9071eef1db7312a241b73e070a 2007.0/i586/libecpg5-8.1.9-0.1mdv2007.0.i586.rpm
cb5a3512bac8ba30fc6bd25126e7d973 2007.0/i586/libecpg5-devel-8.1.9-0.1mdv2007.0.i586.rpm
a2bfd8394996ba5d3f126845bd1d39a6 2007.0/i586/libpq4-8.1.9-0.1mdv2007.0.i586.rpm
153cb0fda3a93eaf94047159db3ad02f 2007.0/i586/libpq4-devel-8.1.9-0.1mdv2007.0.i586.rpm
cb23fbf89a08fa99c7af9295727c0f2a 2007.0/i586/postgresql-8.1.9-0.1mdv2007.0.i586.rpm
1c03e49038d17a7940b0f82164bd51c0 2007.0/i586/postgresql-contrib-8.1.9-0.1mdv2007.0.i586.rpm
fef94b3d46b3147a09cb4f411bce3afd 2007.0/i586/postgresql-devel-8.1.9-0.1mdv2007.0.i586.rpm
6fa0ab68b6c4543bbafda41ffc1155a8 2007.0/i586/postgresql-docs-8.1.9-0.1mdv2007.0.i586.rpm
f20c091179c00891eda767b44b0b2967 2007.0/i586/postgresql-pl-8.1.9-0.1mdv2007.0.i586.rpm
1f5030079690ba65b394aa47abdb1859 2007.0/i586/postgresql-plperl-8.1.9-0.1mdv2007.0.i586.rpm
72a62a6232a3717f14400294dcc47a80 2007.0/i586/postgresql-plpgsql-8.1.9-0.1mdv2007.0.i586.rpm
51c8d98ece4ef4458cea22c62507f6f7 2007.0/i586/postgresql-plpython-8.1.9-0.1mdv2007.0.i586.rpm
d60056d27325176ebc461e904f4684a6 2007.0/i586/postgresql-pltcl-8.1.9-0.1mdv2007.0.i586.rpm
eb8977e8b9faa6cf36396b3f33612bcb 2007.0/i586/postgresql-server-8.1.9-0.1mdv2007.0.i586.rpm
28efd3e89e067cd5b68d3f61cd4b31e8 2007.0/i586/postgresql-test-8.1.9-0.1mdv2007.0.i586.rpm
604ab4c1eff9169d56d43b0568753d0c 2007.0/SRPMS/postgresql-8.1.9-0.1mdv2007.0.src.rpm

-- Mandriva Linux 2007/X86_64 --

956402065653e2a9785ae104e0dc06ab 2007.0/x86_64/lib64ecpg5-8.1.9-0.1mdv2007.0.x86_64.rpm
91bdb9081eaed193022182145efc62a5 2007.0/x86_64/lib64ecpg5-devel-8.1.9-0.1mdv2007.0.x86_64.rpm
600f760d422ff727cbc69057e15aa9a3 2007.0/x86_64/lib64pq4-8.1.9-0.1mdv2007.0.x86_64.rpm
8cd8c17a22440ee52aabcca214d24c93 2007.0/x86_64/lib64pq4-devel-8.1.9-0.1mdv2007.0.x86_64.rpm
46a5faf0211731467ed7dbf1c890f946 2007.0/x86_64/postgresql-8.1.9-0.1mdv2007.0.x86_64.rpm
38369d3fb261f3bc18c4ace02ef9e6a2 2007.0/x86_64/postgresql-contrib-8.1.9-0.1mdv2007.0.x86_64.rpm
60719dbcdb0554cdb0086d4fb9c62339 2007.0/x86_64/postgresql-devel-8.1.9-0.1mdv2007.0.x86_64.rpm
87b08466fd00a86aae809df4fb7924b2 2007.0/x86_64/postgresql-docs-8.1.9-0.1mdv2007.0.x86_64.rpm
269cb2eb609009b984fbea3617f336d5 2007.0/x86_64/postgresql-pl-8.1.9-0.1mdv2007.0.x86_64.rpm
b40470ee91762d039592acf38575a00e 2007.0/x86_64/postgresql-plperl-8.1.9-0.1mdv2007.0.x86_64.rpm
4457df5483f614c76705635ef5c0ac4b 2007.0/x86_64/postgresql-plpgsql-8.1.9-0.1mdv2007.0.x86_64.rpm
dcfec6ba4550a20ac2e0802aaa1c8494 2007.0/x86_64/postgresql-plpython-8.1.9-0.1mdv2007.0.x86_64.rpm
a94b7517375b9133202504f22b8bf33e 2007.0/x86_64/postgresql-pltcl-8.1.9-0.1mdv2007.0.x86_64.rpm
3d1ae4efa79c8d6853eb65e565aa390e 2007.0/x86_64/postgresql-server-8.1.9-0.1mdv2007.0.x86_64.rpm
b39077e2c2c8869de50be2ca624df823 2007.0/x86_64/postgresql-test-8.1.9-0.1mdv2007.0.x86_64.rpm
604ab4c1eff9169d56d43b0568753d0c 2007.0/SRPMS/postgresql-8.1.9-0.1mdv2007.0.src.rpm

-- Mandriva Linux 2007.1 --

3df8944a00c7c726387c7324f9815e90 2007.1/i586/libecpg5-8.2.4-0.1mdv2007.1.i586.rpm
9123e4fcbc39c0abd1b5e0135a156ab0 2007.1/i586/libecpg5-devel-8.2.4-0.1mdv2007.1.i586.rpm
60350e3f9a207d9439c6d8e232ed6bbd 2007.1/i586/libpq5-8.2.4-0.1mdv2007.1.i586.rpm
478927128426902f1367dfbea504fc88 2007.1/i586/libpq5-devel-8.2.4-0.1mdv2007.1.i586.rpm
a17e76d43c869bba5c4dc9e1629ff91d 2007.1/i586/postgresql-8.2.4-0.1mdv2007.1.i586.rpm
179eb9d1dfcb125ccd1e569b3a92b30d 2007.1/i586/postgresql-contrib-8.2.4-0.1mdv2007.1.i586.rpm
0a188af2e9d35040f0c8e9db571206c1 2007.1/i586/postgresql-devel-8.2.4-0.1mdv2007.1.i586.rpm
39f48d42719454c67b9cfa85fa6e8023 2007.1/i586/postgresql-docs-8.2.4-0.1mdv2007.1.i586.rpm
f25da3d2fd0db47de0bba8d6c1116684 2007.1/i586/postgresql-pl-8.2.4-0.1mdv2007.1.i586.rpm
3873417cec41b3bb4a0ec8719940e3d8 2007.1/i586/postgresql-plperl-8.2.4-0.1mdv2007.1.i586.rpm
35c93ec505a67aa46c21a206ac1eb841 2007.1/i586/postgresql-plpgsql-8.2.4-0.1mdv2007.1.i586.rpm
0d0319c172da8873c9ad64ad0fcfc6a8 2007.1/i586/postgresql-plpython-8.2.4-0.1mdv2007.1.i586.rpm
7ac251f460862145dd82c997b67ae669 2007.1/i586/postgresql-pltcl-8.2.4-0.1mdv2007.1.i586.rpm
135c8bd0237ee75ff9e29d425ccbf172 2007.1/i586/postgresql-server-8.2.4-0.1mdv2007.1.i586.rpm
0ef7f082b9ebc07608e486af4b9dd56b 2007.1/i586/postgresql-test-8.2.4-0.1mdv2007.1.i586.rpm
638359cb35d5a9622070499a9514eced 2007.1/SRPMS/postgresql-8.2.4-0.1mdv2007.1.src.rpm

-- Mandriva Linux 2007.1/X86_64 --

5b5d13fbf6a32b4b3e911e1b5134d465 2007.1/x86_64/lib64ecpg5-8.2.4-0.1mdv2007.1.x86_64.rpm
93d08d1eba51cff345ff9d6acb5fa796 2007.1/x86_64/lib64ecpg5-devel-8.2.4-0.1mdv2007.1.x86_64.rpm
4380464897593e9374f7bf774c905ba6 2007.1/x86_64/lib64pq5-8.2.4-0.1mdv2007.1.x86_64.rpm
0b3a2954c1fee9048f6ace8a626d62e8 2007.1/x86_64/lib64pq5-devel-8.2.4-0.1mdv2007.1.x86_64.rpm
f6ae0606cd7134f068aaaf8c2fff0292 2007.1/x86_64/postgresql-8.2.4-0.1mdv2007.1.x86_64.rpm
ee14e3acca88b4cd0d734e5397769831 2007.1/x86_64/postgresql-contrib-8.2.4-0.1mdv2007.1.x86_64.rpm
ddeacc659f35ec9afad0dd8c21400b9f 2007.1/x86_64/postgresql-devel-8.2.4-0.1mdv2007.1.x86_64.rpm
cbc808e7738a35e3ebd1b6991a59cb79 2007.1/x86_64/postgresql-docs-8.2.4-0.1mdv2007.1.x86_64.rpm
c79feee4c88e60db37685365a27921a3 2007.1/x86_64/postgresql-pl-8.2.4-0.1mdv2007.1.x86_64.rpm
61a4559ed41a5eef3bf243b5ebbd88cb 2007.1/x86_64/postgresql-plperl-8.2.4-0.1mdv2007.1.x86_64.rpm
8d25dff12db7440d87db77b80f07c9a1 2007.1/x86_64/postgresql-plpgsql-8.2.4-0.1mdv2007.1.x86_64.rpm
b7c817ff49998108979134c824280361 2007.1/x86_64/postgresql-plpython-8.2.4-0.1mdv2007.1.x86_64.rpm
e032ba1974c54e5d501e4d795b6ea019 2007.1/x86_64/postgresql-pltcl-8.2.4-0.1mdv2007.1.x86_64.rpm
12eb8f8af0436827d60f7a2e20e54ffc 2007.1/x86_64/postgresql-server-8.2.4-0.1mdv2007.1.x86_64.rpm
38da203b39fee5d033aa8d4d271aad31 2007.1/x86_64/postgresql-test-8.2.4-0.1mdv2007.1.x86_64.rpm
638359cb35d5a9622070499a9514eced 2007.1/SRPMS/postgresql-8.2.4-0.1mdv2007.1.src.rpm

Original Advisory:
http://www.mandriva.com/security/advisories?name=MDKSA-2007:094

Other References:
SA25019:
http://secunia.com/advisories/25019/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Today
New advisories: 24
New vulnerabilities: 39
Updated advisories: 41

Moderately // 160 views
mvnForum Unspecified Cross-Site Scripting and Request Forgery
Less // 165 views
Debian update for awstats
Moderately // 174 views
Kolab Server ClamAV Multiple Vulnerabilities
Less // 235 views
Movable Type Unspecified Cross-Site Scripting Vulnerability
Moderately // 217 views
Sunbyte e-Flower "id" SQL Injection Vulnerability
Not // 239 views
SUSE update for kernel
Not // 319 views
HP-UX Unspecified Local Denial of Service Vulnerability
Moderately // 281 views
WebGUI Executable Attachments Vulnerability
Moderately // 412 views
SquirrelMail Malformed HTML Mail Message Script Insertion
Less // 414 views
VMware ESX Server update for bzip2

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Sun Java JDK / JRE Multiple Vulnerabilities // 150 views
2. Adobe Flash Player Multiple Security Issues and Vulnerabilities // 94 views
3. VMware ESX / ESXi Virtual Hardware Memory Corruption Vulnerability // 60 views
4. VLC Media Player Real Demuxer Integer Overflow Vulnerability // 59 views
5. Mozilla Firefox 3 Multiple Vulnerabilities // 51 views
6. Apple QuickTime Multiple Vulnerabilities // 46 views
7. Adobe Acrobat/Reader Multiple Vulnerabilities // 43 views
8. VMware ESX Server update for bzip2 // 41 views
9. Microsoft Word Smart Tag Invalid Length Processing Vulnerability // 32 views
10. WinRAR Multiple Unspecified Vulnerabilities // 31 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008