| Revision Date: | 2018-03-01 | Version: | 1 | | Title: | CVE-2017-14798 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2017-14798
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT libecpg-compat3 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT libecpg6 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT libpgtypes3 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT libpq5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-client-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-contrib-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-plperl-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-plpython-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-plpython3-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
OR NOT postgresql-pltcl-9.5 package in xenial, while related to the CVE in some way, is not affected (note: 'SUSE specific').
|
|