PT-2013-3457 · Postgresql · Postgresql

Stefan Kaltenbrunner

Publicado

2013-04-04

Atualizado

2017-10-20

CVE-2013-1902

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions PostgreSQL versions 8.3.x before 8.3.23 PostgreSQL versions 8.4.x before 8.4.17 PostgreSQL versions 9.0.x before 9.0.13 PostgreSQL versions 9.1.x before 9.1.9 PostgreSQL versions 9.2.x before 9.2.4

Description The issue generates insecure temporary files with predictable filenames. This has an unspecified impact and is related to graphical installers for Linux and Mac OS X.

Recommendations For versions 8.3.x before 8.3.23, update to version 8.3.23 or later. For versions 8.4.x before 8.4.17, update to version 8.4.17 or later. For versions 9.0.x before 9.0.13, update to version 9.0.13 or later. For versions 9.1.x before 9.1.9, update to version 9.1.9 or later. For versions 9.2.x before 9.2.4, update to version 9.2.4 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2013-1902

Produtos afetados

Postgresql

PT-2013-3457 · Postgresql · Postgresql

CVE-2013-1902

Identificadores relacionados

Produtos afetados

Referências · 4