Oval Definition:oval:com.ubuntu.trusty:def:20165424000
Revision Date:2016-12-09Version:1
Title:CVE-2016-5424 on Ubuntu 14.04 LTS (trusty) - medium.
Description:PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) " (double quote), (2) \ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-5424
Platform(s):Ubuntu 14.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 14.04 LTS (trusty) is installed.
  • AND Package Information
  • The 'postgresql-9.1' package in trusty was vulnerable but has been fixed (note: '9.1.23-0ubuntu0.14.04').
  • OR The 'postgresql-9.3' package in trusty was vulnerable but has been fixed (note: '9.3.14-0ubuntu0.14.04').
    • BACK