VDB

GCVE-110-MAGEIA-2016-85

GCVE-110-MAGEIA-2016-85
Advisory Published
Vulnetix · Advisory published March 2, 2016
Updated postgresql packages fix security vulnerabilities: PostgreSQL 9.3.x before 9.3.11 and 9.4.x before 9.4.6 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors (CVE-2016-0766). PostgreSQL 9.3.x before 9.3.11 and 9.4.x before 9.4.6 allows remote attackers to cause a denial of service (infinite loop or buffer overflow and crash) via a large Unicode character range in a regular expression (CVE-2016-0773).

Affected Products

VendorProductVersionsPlatforms
Mageiapostgresql9.30 (affected), 9.3.11-1.mga5 (unaffected), 0 (affected), 9.3.11-1.mga5 (unaffected)
Mageiapostgresql9.40 (affected), 9.4.6-1.mga5 (unaffected), 9.4.6-1.mga5 (unaffected), 0 (affected)
Mageiaiproute20 (affected), 4.4.0-1.mga5 (unaffected)

Browse GCVE Records

73,393 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›