Vulnerability CVE-2010-4015 - CERT Civis.Net

Vulnerability Name:

CVE-2010-4015 (CCN-65060)

Assigned:

2010-10-20

Published:

2011-02-01

Updated:

2017-08-17

Summary:

Buffer overflow in the gettoken function in contrib/intarray/_int_bool.c in the intarray array module in PostgreSQL 9.0.x before 9.0.3, 8.4.x before 8.4.7, 8.3.x before 8.3.14, and 8.2.x before 8.2.20 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via integers with a large number of digits to unspecified functions.

CVSS v3 Severity:

5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.5 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
4.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
4.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.9 Medium (REDHAT CVSS v2 Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P)
3.6 Low (REDHAT Temporal CVSS v2 Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Medium Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-189
CWE-121

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Sun Security Blog Aug 16, 2011
CVE-2010-4015 Buffer overflow vulnerability in PostgreSQL 8.2 on Solaris

Source: MITRE
Type: CNA
CVE-2010-4015

Source: CONFIRM
Type: Patch
http://git.postgresql.org/gitweb?p=postgresql.git;a=commitdiff;h=7ccb6dc2d3e266a551827bb99179708580f72431

Source: CCN
Type: HP Security Bulletin HPSBMU02781 SSRT100617
HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows running PostgreSQL, Remote Execution of Arbitrary Code, Denial of Service (DoS)

Source: CONFIRM
Type: UNKNOWN
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-0990

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-0963

Source: SUSE
Type: UNKNOWN
SUSE-SR:2011:005

Source: HP
Type: UNKNOWN
SSRT100617

Source: OSVDB
Type: UNKNOWN
70740

Source: CCN
Type: RHSA-2011-0197
Moderate: postgresql security update

Source: CCN
Type: RHSA-2011-0198
Moderate: postgresql84 security update

Source: CCN
Type: SA43144
PostgreSQL intarray Module gettoken() Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
43144

Source: SECUNIA
Type: UNKNOWN
43154

Source: SECUNIA
Type: UNKNOWN
43155

Source: SECUNIA
Type: UNKNOWN
43187

Source: SECUNIA
Type: UNKNOWN
43188

Source: SECUNIA
Type: UNKNOWN
43240

Source: CCN
Type: SA45610
Oracle Solaris PostgreSQL "gettoken()" Buffer Overflow Vulnerability

Source: CCN
Type: SA47503
Blue Coat IntelligenceCenter Multiple Vulnerabilities

Source: CCN
Type: SA47507
Blue Coat IntelligenceCenter Multiple Vulnerabilities

Source: CCN
Type: SA49719
HP Network Node Manager i Multiple Vulnerabilities

Source: CCN
Type: SA49747
HP Network Node Manager i Multiple Vulnerabilities

Source: DEBIAN
Type: UNKNOWN
DSA-2157

Source: DEBIAN
Type: DSA-2157
postgresql-9.0 -- buffer overflow

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2011:021

Source: CCN
Type: OSVDB ID: 70740
PostgreSQL intarray Module contrib/intarray/_int_bool.c gettoken() Function Overflow

Source: CCN
Type: PostgreSQL Web site
Security update 2011-02-01 released

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/about/news.1289

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/support/security

Source: REDHAT
Type: UNKNOWN
RHSA-2011:0197

Source: REDHAT
Type: UNKNOWN
RHSA-2011:0198

Source: BID
Type: UNKNOWN
46084

Source: CCN
Type: BID-46084
PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1058-1

Source: VUPEN
Type: Vendor Advisory
ADV-2011-0262

Source: VUPEN
Type: UNKNOWN
ADV-2011-0278

Source: VUPEN
Type: UNKNOWN
ADV-2011-0283

Source: VUPEN
Type: UNKNOWN
ADV-2011-0287

Source: VUPEN
Type: UNKNOWN
ADV-2011-0299

Source: VUPEN
Type: UNKNOWN
ADV-2011-0303

Source: VUPEN
Type: UNKNOWN
ADV-2011-0349

Source: XF
Type: UNKNOWN
postgresql-gettoken-buffer-overflow(65060)

Source: XF
Type: UNKNOWN
postgresql-gettoken-buffer-overflow(65060)

Source: CCN
Type: Blue Coat Security Advisories ID: SA66
January 10, 2012 - Multiple Tomcat vulnerabilities in IntelligenceCenter

Source: CCN
Type: Blue Coat Security Advisories ID: SA67
January 10, 2012 - Multiple PostgreSQL vulnerabilities in IntelligenceCenter

Source: SUSE
Type: SUSE-SR:2011:005
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:postgresql:postgresql:8.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.13:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:postgresql:postgresql:9.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:9.0.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:9.0.2:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:postgresql:postgresql:8.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.6:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:postgresql:postgresql:8.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.15:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.16:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.17:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.18:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.19:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 11:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 12:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:postgresql:postgresql:8.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:9.0:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:sun:solaris:10::64bit:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

OR cpe:/a:hp:network_node_manager_i:9.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_eus:5.6.z::server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_long_life:5.6:*:*:*:*:*:*:*

OR cpe:/a:hp:network_node_manager_i:8.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:42425	P	Security update for dwarves and elfutils (Moderate)	2022-08-01
oval:org.opensuse.security:def:20104015	V	CVE-2010-4015	2022-05-20
oval:org.opensuse.security:def:42216	P	Security update for slirp4netns (Moderate)	2022-03-24
oval:org.opensuse.security:def:26165	P	Security update for libarchive (Moderate)	2021-11-17
oval:org.opensuse.security:def:26162	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:31702	P	Security update for qemu (Important)	2021-11-10
oval:org.opensuse.security:def:31288	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:26144	P	Security update for libqt5-qtsvg (Moderate)	2021-10-11
oval:org.opensuse.security:def:32199	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:32191	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:31277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:26135	P	Security update for hivex (Moderate)	2021-09-23
oval:org.opensuse.security:def:32981	P	Security update for fetchmail (Moderate)	2021-08-18
oval:org.opensuse.security:def:26105	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:26101	P	Security update for php74 (Important)	2021-08-06
oval:org.opensuse.security:def:32150	P	Security update for the Linux Kernel (Important)	2021-07-22
oval:org.opensuse.security:def:26090	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:26089	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:26077	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:31643	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:32942	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:36271	P	postgresql-8.3.23-0.4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42678	P	postgresql-8.3.23-0.4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36540	P	postgresql-devel-8.3.23-0.4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32104	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:32094	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:26038	P	Security update for curl (Moderate)	2021-04-28
oval:org.opensuse.security:def:26024	P	Security update for xen (Important)	2021-04-06
oval:org.opensuse.security:def:31749	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:31362	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:31738	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:31737	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:26197	P	Security update for postgresql13 (Moderate)	2021-02-22
oval:org.opensuse.security:def:32260	P	Security update for java-1_7_1-ibm (Important)	2021-02-18
oval:org.opensuse.security:def:31730	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:32238	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:26091	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:32096	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:31276	P	Security update for java-1_8_0-ibm (Moderate)	2021-01-05
oval:org.opensuse.security:def:31570	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:36018	P	postgresql-8.3.23-0.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35809	P	postgresql-8.3.14-0.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31485	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:32773	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31484	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:32403	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:32734	P	libsoup-2_4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32347	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25896	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:32052	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:25832	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:32030	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25821	P	Security update for lhasa (Moderate)	2020-12-01
oval:org.opensuse.security:def:32047	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:31991	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:27016	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25820	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:31955	P	Security update for gstreamer-0_10-plugins-good (Important)	2020-12-01
oval:org.opensuse.security:def:26719	P	ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26981	P	libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31823	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:26666	P	amavisd-new on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26343	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:26515	P	MozillaFirefox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26299	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26431	P	Security update for tor (Moderate)	2020-12-01
oval:org.opensuse.security:def:26285	P	Security update for the Linux Kernel (Critical)	2020-12-01
oval:org.opensuse.security:def:26374	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26293	P	Security update for raptor (Important)	2020-12-01
oval:org.opensuse.security:def:25989	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32304	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:25936	P	Security update for libreoffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:25785	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:25701	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:27269	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25644	P	Security update for taglib (Low)	2020-12-01
oval:org.opensuse.security:def:31942	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:27234	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25563	P	Security update for xrdp (Important)	2020-12-01
oval:org.opensuse.security:def:31886	P	Security update for ed (Low)	2020-12-01
oval:org.opensuse.security:def:26596	P	libpng12-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25435	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:26552	P	g3utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25371	P	Security update for python-ipaddress (Important)	2020-12-01
oval:org.opensuse.security:def:26538	P	e2fsprogs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33234	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25360	P	Security update for xrdp (Important)	2020-12-01
oval:org.opensuse.security:def:31586	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:26499	P	Security update for chromium, re2 (Important)	2020-12-01
oval:org.opensuse.security:def:33195	P	libxslt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25359	P	Security update for SUSE Manager Client Tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:31494	P	Security update for Python	2020-12-01
oval:org.opensuse.security:def:32557	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32513	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25993	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:32491	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25909	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:32452	P	Security update for xerces-j2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27538	P	postgresql-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25852	P	Security update for flash-playerqemu (Important)	2020-12-01
oval:org.opensuse.security:def:27503	P	libwsman-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25771	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26865	P	apache2-mod_php53 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25643	P	Security update for hunspell (Low)	2020-12-01
oval:org.opensuse.security:def:31938	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:26821	P	squid3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25579	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:31851	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:26807	P	perl-spamassassin on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25568	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:31794	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26768	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26808	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25567	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:26450	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26773	P	libxcrypt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26397	P	Security update for plasma5-workspace (Important)	2020-12-01
oval:org.opensuse.security:def:31496	P	Security update for python-imaging	2020-12-01
oval:org.opensuse.security:def:26246	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.mitre.oval:def:21138	P	RHSA-2011:0197: postgresql security update (Moderate)	2015-03-09
oval:org.mitre.oval:def:13707	P	USN-1058-1 -- postgresql-8.1, postgresql-8.3, postgresql-8.4 vulnerability	2014-06-30
oval:org.mitre.oval:def:12782	P	DSA-2157-1 postgresql-8.3, postgresql-8.4, postgresql-9.0 -- buffer overflow	2014-06-23
oval:org.mitre.oval:def:23539	P	ELSA-2011:0197: postgresql security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:23125	P	ELSA-2011:0198: postgresql84 security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:21827	P	RHSA-2011:0198: postgresql84 security update (Moderate)	2014-02-24
oval:com.redhat.rhsa:def:20110197	P	RHSA-2011:0197: postgresql security update (Moderate)	2011-02-03
oval:com.redhat.rhsa:def:20110198	P	RHSA-2011:0198: postgresql84 security update (Moderate)	2011-02-03