FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
97a24d2e-f74c-11e5-8458-6cc21735f730	PostgreSQL -- minor security problems. PostgreSQL project reports: Security Fixes for RLS, BRIN This release closes security hole CVE-2016-2193 (https://access.redhat.com/security/cve/CVE-2016-2193), where a query plan might get reused for more than one ROLE in the same session. This could cause the wrong set of Row Level Security (RLS) policies to be used for the query. The update also fixes CVE-2016-3065 (https://access.redhat.com/security/cve/CVE-2016-3065), a server crash bug triggered by using `pageinspect` with BRIN index pages. Since an attacker might be able to expose a few bytes of server memory, this crash is being treated as a security issue. Discovery 2016-03-01 Entry 2016-03-31 postgresql95-server postgresql95-contrib ge 9.5.0 lt 9.5.2 CVE-2016-2193 CVE-2016-3065

VuXML ID

Description

97a24d2e-f74c-11e5-8458-6cc21735f730

PostgreSQL -- minor security problems.

PostgreSQL project reports:

Security Fixes for RLS, BRIN

This release closes security hole CVE-2016-2193 (https://access.redhat.com/security/cve/CVE-2016-2193), where a query plan might get reused for more than one ROLE in the same session. This could cause the wrong set of Row Level Security (RLS) policies to be used for the query.

The update also fixes CVE-2016-3065 (https://access.redhat.com/security/cve/CVE-2016-3065), a server crash bug triggered by using `pageinspect` with BRIN index pages. Since an attacker might be able to expose a few bytes of server memory, this crash is being treated as a security issue.

Discovery 2016-03-01
Entry 2016-03-31
postgresql95-server
postgresql95-contrib

ge 9.5.0 lt 9.5.2

CVE-2016-2193
CVE-2016-3065