user/postgresql: multiple vulnerabilities
Bugzilla ID | 346 |
Alias(es) | CVE-2020-10733, CVE-2020-14349, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-08-13 16:49:55 -0500 |
Modified | 2020-11-21 22:46:40 -0600 |
Status | UNCONFIRMED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | user/postgresql |
URL | https://www.postgresql.org/about/news/2060/ |
Description
https://www.postgresql.org/about/news/2060/
CVE-2020-14349: Uncontrolled search path element in logical replication.
CVE-2020-14350: Uncontrolled search path element in CREATE EXTENSION.
Both fixed in >= 10.14