Information on source package postgresql-13

Available versions

ReleaseVersion
bullseye13.16-0+deb11u1
bullseye (security)13.18-0+deb11u1

Resolved issues

BugDescription
CVE-2024-10979Incorrect control of environment variables in PostgreSQL PL/Perl allow ...
CVE-2024-10978Incorrect privilege assignment in PostgreSQL allows a less-privileged ...
CVE-2024-10977Client use of server error message in PostgreSQL allows a server not t ...
CVE-2024-10976Incomplete tracking in PostgreSQL of tables with row security allows a ...
CVE-2024-7348Time-of-check Time-of-use (TOCTOU) race condition in pg_dump in Postgr ...
CVE-2024-4317Missing authorization in PostgreSQL built-in views pg_stats_ext and pg ...
CVE-2024-0985Late privilege drop in REFRESH MATERIALIZED VIEW CONCURRENTLY in Postg ...
CVE-2023-39418A vulnerability was found in PostgreSQL with the use of the MERGE comm ...
CVE-2023-39417IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in Po ...
CVE-2023-5870A flaw was found in PostgreSQL involving the pg_cancel_backend role th ...
CVE-2023-5869A flaw was found in PostgreSQL that allows authenticated database user ...
CVE-2023-5868A memory disclosure vulnerability was found in PostgreSQL that allows ...
CVE-2023-2455Row security policies disregard user ID changes after inlining; Postgr ...
CVE-2023-2454schema_element defeats protective search_path changes; It was found th ...
CVE-2022-41862In PostgreSQL, a modified, unauthenticated server can send an untermin ...
CVE-2022-2625A vulnerability was found in PostgreSQL. This attack requires permissi ...
CVE-2022-1552A flaw was found in PostgreSQL. There is an issue with incomplete effo ...
CVE-2021-32029A flaw was found in postgresql. Using an UPDATE ... RETURNING command ...
CVE-2021-32028A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO ...
CVE-2021-32027A flaw was found in postgresql in versions before 13.3, before 12.7, b ...
CVE-2021-23222A man-in-the-middle attacker can inject false responses to the client' ...
CVE-2021-23214When the server is configured to use trust authentication with a clien ...
CVE-2021-20229A flaw was found in PostgreSQL in versions before 13.2. This flaw allo ...
CVE-2021-3677A flaw was found in postgresql. A purpose-crafted query can read arbit ...
CVE-2021-3393An information leak was discovered in postgresql in versions before 13 ...
CVE-2020-25696A flaw was found in the psql interactive terminal of PostgreSQL in ver ...
CVE-2020-25695A flaw was found in PostgreSQL versions before 13.1, before 12.5, befo ...
CVE-2020-25694A flaw was found in PostgreSQL versions before 13.1, before 12.5, befo ...
CVE-2020-21469An issue was discovered in PostgreSQL 12.2 allows attackers to cause a ...

Security announcements

DSA / DLADescription
DLA-3954-2postgresql-13 - regression update
DLA-3954-1postgresql-13 - security update
DSA-5746-1postgresql-13 - security update
DSA-5622-1postgresql-13 - security update
DSA-5554-1postgresql-13 - security update
DSA-5401-1postgresql-13 - security update
DSA-5136-1postgresql-13 - security update
DSA-5007-1postgresql-13 - security update

Search for package or bug name: Reporting problems