This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.
The remote SuSE 9 host is missing a security-related patch.
The following bugs have been fixed :
- An unprivileged, authenticated PostgreSQL user could
create a table which references functions with malicious
content. Maintenance operations carried out be the
database superuser could execute such functions.
- Embedded null bytes in the common name of SSL
certificates could bypass certificate hostname checks.
PostgreSQL was updated to the next upstream patchlevel update which
also includes several bugfixes. See the package changelog for details.
See also :
Apply YOU patch number 12571.
Risk factor :
Medium / CVSS Base Score : 6.5