Mandriva update for postgresql - Secunia Advisories - Vulnerability Intelligence

Mandriva update for postgresql
Secunia Advisory:	SA28376	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2008-01-10
Last Update:	2008-02-20
Popularity:	2,586 views

Critical:	Less critical
Impact:	Privilege escalation DoS
Where:	From local network
Solution Status:	Vendor Patch

OS:	Mandriva Linux 2007.0

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2007-4769 CVE-2007-4772 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601

Description: Mandriva has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or to cause a DoS (Denial of Service). For more information: SA28359 Solution: Apply updated packages. Mandriva Linux 2007 2097f5ccb866ae653d196c7aa9dae8b9 2007.0/i586/libecpg5-8.1.11-0.1mdv2007.0.i586.rpm 51ff7f0a9e5380f39cdf6ae2c61b21e7 2007.0/i586/libecpg5-devel-8.1.11-0.1mdv2007.0.i586.rpm 7142a365b22ecff056a9849e4da84483 2007.0/i586/libpq4-8.1.11-0.1mdv2007.0.i586.rpm 934ed22c5e08e9771afbc750a1df18d1 2007.0/i586/libpq4-devel-8.1.11-0.1mdv2007.0.i586.rpm 62eac7ed2b95b92743622555f049fb97 2007.0/i586/postgresql-8.1.11-0.1mdv2007.0.i586.rpm 561d44b552686d2608ec98b0a4ebb499 2007.0/i586/postgresql-contrib-8.1.11-0.1mdv2007.0.i586.rpm 3d19d41a4cda7f30001ae39eb0e1c2c3 2007.0/i586/postgresql-devel-8.1.11-0.1mdv2007.0.i586.rpm aae13dada4d598bbc5d937161bad73d5 2007.0/i586/postgresql-docs-8.1.11-0.1mdv2007.0.i586.rpm b8565ac38e510345a0b86a174d9492b5 2007.0/i586/postgresql-pl-8.1.11-0.1mdv2007.0.i586.rpm bc58bf89cfc19754a8bacc626ffadda0 2007.0/i586/postgresql-plperl-8.1.11-0.1mdv2007.0.i586.rpm 45521fdb4536bcd831349b05c0d58ade 2007.0/i586/postgresql-plpgsql-8.1.11-0.1mdv2007.0.i586.rpm 1dba4d8933bf0df01517dc9c266c8c6e 2007.0/i586/postgresql-plpython-8.1.11-0.1mdv2007.0.i586.rpm 2ce6304e39ff2f64b1d4e1bbbedbd882 2007.0/i586/postgresql-pltcl-8.1.11-0.1mdv2007.0.i586.rpm d99cfdc3d9df5a95086b8e9cc8ed5c62 2007.0/i586/postgresql-server-8.1.11-0.1mdv2007.0.i586.rpm 218f7f2dfb2d29051fa1bacfd878a15c 2007.0/i586/postgresql-test-8.1.11-0.1mdv2007.0.i586.rpm f968cae688d675f0035e33c6fcf2ac0f 2007.0/SRPMS/postgresql-8.1.11-0.1mdv2007.0.src.rpm Mandriva Linux 2007/X86_64 5cfb7d34845c6109e4e38f5d7e7fa0da 2007.0/x86_64/lib64ecpg5-8.1.11-0.1mdv2007.0.x86_64.rpm c2c490de28fee5d3d23ecd9586dbdf4d 2007.0/x86_64/lib64ecpg5-devel-8.1.11-0.1mdv2007.0.x86_64.rpm 2b6da0b26e5e6b24cb5677504f0d9210 2007.0/x86_64/lib64pq4-8.1.11-0.1mdv2007.0.x86_64.rpm 1117c3f5b3582aa4277cd2562e27098b 2007.0/x86_64/lib64pq4-devel-8.1.11-0.1mdv2007.0.x86_64.rpm abdb8b7fa7cda2938a9ce59f357d8163 2007.0/x86_64/postgresql-8.1.11-0.1mdv2007.0.x86_64.rpm 33defa5b2210e556b2b628862480f0f4 2007.0/x86_64/postgresql-contrib-8.1.11-0.1mdv2007.0.x86_64.rpm 7c55a7ba69fd43550f184caf9432c385 2007.0/x86_64/postgresql-devel-8.1.11-0.1mdv2007.0.x86_64.rpm 6459414187b67dd52149004461b7b470 2007.0/x86_64/postgresql-docs-8.1.11-0.1mdv2007.0.x86_64.rpm 156473d26209249a2c31ca7525f0a178 2007.0/x86_64/postgresql-pl-8.1.11-0.1mdv2007.0.x86_64.rpm 3a5a70456a88a4a139b98fdbb023eb41 2007.0/x86_64/postgresql-plperl-8.1.11-0.1mdv2007.0.x86_64.rpm c007176ce6f2b0c2d40aeadc15afc5ed 2007.0/x86_64/postgresql-plpgsql-8.1.11-0.1mdv2007.0.x86_64.rpm 826d88a6f47f92f87a12483857808303 2007.0/x86_64/postgresql-plpython-8.1.11-0.1mdv2007.0.x86_64.rpm 469150ddf34f6600c42e5e5bf8e3a099 2007.0/x86_64/postgresql-pltcl-8.1.11-0.1mdv2007.0.x86_64.rpm 6522d447c1e80240e0afc655826242c7 2007.0/x86_64/postgresql-server-8.1.11-0.1mdv2007.0.x86_64.rpm 0d50689ed88983fe1ba964fb3e47bd37 2007.0/x86_64/postgresql-test-8.1.11-0.1mdv2007.0.x86_64.rpm f968cae688d675f0035e33c6fcf2ac0f 2007.0/SRPMS/postgresql-8.1.11-0.1mdv2007.0.src.rpm Changelog: 2007-02-20: Updated package information in "Solution" section. Original Advisory: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:004 Other References: SA28359: http://secunia.com/advisories/28359/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

4th Dec, 2008

New advisories:	20
New vulnerabilities:	45
Updated advisories:	31

Not // 441 views

Linux Kernel PARISC "parisc_show_stack() " Denial of Service

Not // 372 views

IBM HMC HTTP TRACE Response Cross-Site Scripting Weakness

Moderately // 475 views

PHP ZipArchive::extractT o() Directory Traversal Vulnerability

Moderately // 360 views

RSyslog "AllowedSender" Security Bypass Vulnerability

Moderately // 460 views

Nagios Unspecified CGI Vulnerability

Highly // 378 views

RadAsm ".rap" Processing Buffer Overflow Vulnerability

Highly // 371 views

Multi SEO phpBB "pfad" File Inclusion Vulnerability

Moderately // 375 views

PowerDNS CH HINFO Denial of Service Vulnerability

Less // 381 views

Drupal Storm Module SQL Injection Vulnerabilities

Moderately // 367 views

Check Up System for Thai Healthcare "search" SQL Injection

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.