Vulnerability Bulletins |
DSA-4568 postgresql-common - security update |
|
System information |
|
Affected software | Debian |
Description |
|
Rich Mirch discovered that the pg_ctlcluster script didnt dropprivileges when creating socket/statistics temporary directories, whichcould result in local privilege escalation. More info: https://www.debian.org/security/2019/dsa-4568 |
|
Standar resources |
|
Property | Value |
CVE | CVE-2019-3466 and DSA-4568. |
Version history |
||
Version | Comments | Date |
1.0 | Advisory issued | 2019-11-17 |