VDB
GCVE-110-MAGEIA-2020-95
GCVE-110-MAGEIA-2020-95
Advisory Published
Updated postgresql9.6 and postgresql11 packages fix security vulnerability:
The ALTER ... DEPENDS ON EXTENSION sub-commands do not perform authorization
checks, which can allow an unprivileged user to drop any function, procedure,
materialized view, index, or trigger under certain conditions. This attack is
possible if an administrator has installed an extension and an unprivileged
user can CREATE, or an extension owner either executes DROP EXTENSION
predictably or can be convinced to execute DROP EXTENSION (CVE-2020-1720).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | strace | 0 (affected), 5.6-1.mga7 (unaffected) | — |
| Mageia | postgresql9.6 | 0 (affected), 9.6.17-1.mga7 (unaffected), 0 (affected), 9.6.17-1.mga7 (unaffected) | — |
| Mageia | postgresql11 | 11.7-1.mga7 (unaffected), 0 (affected), 11.7-1.mga7 (unaffected), 0 (affected) | — |
References
Browse GCVE Records
72,580 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.