openSUSE Security Update : postgresql93 (openSUSE-2015-189)

This script is Copyright (C) 2015 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

postgresql93 was updated to version 9.3.6 to fix four security issues.

These security issues were fixed :

- CVE-2015-0241: Fix buffer overruns in to_char()
(bnc#916953).

- CVE-2015-0243: Fix buffer overruns in contrib/pgcrypto
(bnc#916953).

- CVE-2015-0244: Fix possible loss of frontend/backend
protocol synchronization after an error (bnc#916953).

- CVE-2014-8161: Fix information leak via
constraint-violation error messages (bnc#916953).

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=916953

Solution :

Update the affected postgresql93 packages.

Risk factor :

Medium

Family: SuSE Local Security Checks

Nessus Plugin ID: 81620 ()

Bugtraq ID:

CVE ID: CVE-2014-8161
CVE-2015-0241
CVE-2015-0243
CVE-2015-0244

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now