Oval Definition:oval:org.mitre.oval:def:12988
Revision Date:2014-06-30Version:20
Title:USN-1002-2 -- postgresql-8.4 vulnerability
Description:USN-1002-1 fixed vulnerabilities in PostgreSQL. This update provides the corresponding update for Ubuntu 10.10. Original advisory details: It was discovered that PostgreSQL did not properly enforce permissions within sessions when PL/Perl and PL/Tcl functions or operators were redefined. A remote authenticated attacker could exploit this to execute arbitrary code with permissions of a different user, possibly leading to privilege escalation.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-3433
USN-1002-2
USN-1002-2
Platform(s):Ubuntu 10.10
Product(s):postgresql-8.4
Definition Synopsis
  • Ubuntu 10.10 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • postgresql-doc-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-client DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-contrib DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-doc DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is powerpc
  • OR Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • postgresql-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-contrib-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-client-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libecpg6 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-pltcl-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-plpython-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libpq-dev DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-server-dev-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libecpg-dev DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libpq5 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libpgtypes3 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR postgresql-plperl-8.4 DPKG is earlier than 8.4.5-0ubuntu10.10
  • OR libecpg-compat3 DPKG is earlier than 8.4.5-0ubuntu10.10
    • BACK