Test ID:	1.3.6.1.4.1.25623.1.0.52854
Category:	Turbolinux Local Security Tests
Title:	Turbolinux TLSA-2005-38 (postgresql)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to postgresql announced via advisory TLSA-2005-38. PostgreSQL is an advanced Object-Relational database management system. Please refer to the References section. Solution: Please use the turbopkg (zabom) tool to apply the update. http://www.securityspace.com/smysecure/catid.html?in=TLSA-2005-38 Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0244 12417 http://www.securityfocus.com/bid/12417 12948 http://secunia.com/advisories/12948 20050210 [USN-79-1] PostgreSQL vulnerabilities http://marc.info/?l=bugtraq&m=110806034116082&w=2 MDKSA-2005:040 http://www.mandriva.com/security/advisories?name=MDKSA-2005:040 RHSA-2005:138 http://www.redhat.com/support/errata/RHSA-2005-138.html SUSE-SA:2005:036 http://www.novell.com/linux/security/advisories/2005_36_sudo.html [pgsql-hackers] 20050127 Permissions on aggregate component functions http://archives.postgresql.org/pgsql-hackers/2005-01/msg00922.php oval:org.mitre.oval:def:10927 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10927 postgresql-security-bypass(19184) https://exchange.xforce.ibmcloud.com/vulnerabilities/19184 Common Vulnerability Exposure (CVE) ID: CVE-2005-0245 DSA-683 http://www.debian.org/security/2005/dsa-683 RHSA-2005:150 http://www.redhat.com/support/errata/RHSA-2005-150.html [pgsql-committers] 20050121 pgsql: Prevent overrunning a heap-allocated buffer is more than 1024 http://archives.postgresql.org/pgsql-committers/2005-01/msg00298.php [pgsql-committers] 20050207 pgsql: Prevent 4 more buffer overruns in the PL/PgSQL parser. http://archives.postgresql.org/pgsql-committers/2005-02/msg00049.php [pgsql-patches] 20050120 Re: WIP: pl/pgsql cleanup http://archives.postgresql.org/pgsql-patches/2005-01/msg00216.php oval:org.mitre.oval:def:10175 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10175 postgresql-cursor-bo(19188) https://exchange.xforce.ibmcloud.com/vulnerabilities/19188 Common Vulnerability Exposure (CVE) ID: CVE-2005-0246 [pgsql-committers] 20050127 pgsql: Fix security and 64-bit issues in contrib/intagg. http://archives.postgresql.org/pgsql-committers/2005-01/msg00401.php oval:org.mitre.oval:def:10148 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10148 postgresql-contribintagg-dos(19185) https://exchange.xforce.ibmcloud.com/vulnerabilities/19185 Common Vulnerability Exposure (CVE) ID: CVE-2005-0247 GLSA-200502-19 http://www.gentoo.org/security/en/glsa/glsa-200502-19.xml SUSE-SA:2005:027 http://www.novell.com/linux/security/advisories/2005_27_postgresql.html oval:org.mitre.oval:def:9345 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9345 postgresql-fetch-makefetchstmt-bo(19378) https://exchange.xforce.ibmcloud.com/vulnerabilities/19378 postgresql-makeselectstmt-arbitrary-bo(19377) https://exchange.xforce.ibmcloud.com/vulnerabilities/19377 postgresql-makeselectstmt-input-bo(19376) https://exchange.xforce.ibmcloud.com/vulnerabilities/19376 postgresql-readsqlconstruct-bo(19375) https://exchange.xforce.ibmcloud.com/vulnerabilities/19375
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.