PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
21 Nov 2024, 01:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html - | |
References | () http://lists.apple.com/archives/security-announce/2013/Sep/msg00004.html - | |
References | () http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101519.html - | |
References | () http://lists.fedoraproject.org/pipermail/package-announce/2013-April/102806.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00007.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00008.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00011.html - | |
References | () http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00012.html - | |
References | () http://rhn.redhat.com/errata/RHSA-2013-1475.html - | |
References | () http://support.apple.com/kb/HT5880 - | |
References | () http://support.apple.com/kb/HT5892 - | |
References | () http://www.debian.org/security/2013/dsa-2657 - | |
References | () http://www.debian.org/security/2013/dsa-2658 - | |
References | () http://www.mandriva.com/security/advisories?name=MDVSA-2013:142 - | |
References | () http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html - | |
References | () http://www.postgresql.org/about/news/1456/ - Vendor Advisory | |
References | () http://www.postgresql.org/docs/current/static/release-8-4-17.html - | |
References | () http://www.postgresql.org/docs/current/static/release-9-0-13.html - | |
References | () http://www.postgresql.org/docs/current/static/release-9-1-9.html - | |
References | () http://www.postgresql.org/docs/current/static/release-9-2-4.html - | |
References | () http://www.ubuntu.com/usn/USN-1789-1 - |
Information
Published : 2013-04-04 17:55
Updated : 2024-11-21 01:50
NVD link : CVE-2013-1900
Mitre link : CVE-2013-1900
CVE.ORG link : CVE-2013-1900
JSON object : View
Products Affected
canonical
- ubuntu_linux
postgresql
- postgresql
CWE
CWE-189
Numeric Errors