SuSE 10 Security Update : PostgreSQL (ZYPP Patch Number 7186)

Medium Nessus Plugin ID 50043


The remote SuSE 10 host is missing a security-related patch.


PostgreSQL functions implemented in Perl or TCL shared a global state even across different user user ids. A user could therefore influence functions of other users in an unexpected or even malicious way.

PostgreSQL was updated to version 8.1.22 which fixes the security issue.


Apply ZYPP patch number 7186.

See Also

Plugin Details

Severity: Medium

ID: 50043

File Name: suse_postgresql-7186.nasl

Version: $Revision: 1.5 $

Type: local

Agent: unix

Published: 2010/10/20

Modified: 2012/05/17

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2010/10/11

Reference Information

CVE: CVE-2010-3433