HexaDB漏洞披露
修复版本全部版本
| 序号 | 漏洞编号 | 描述 | 影响版本 | 修复版本 | 链接地址 |
|---|---|---|---|---|---|
| 1 | CVE-2020-25695 | Multiple features escape "security restricted operation" sandbox | 2.0.0之前版本 | v2.0.0 | |
| 2 | CVE-2020-25694 | Reconnection can downgrade connection security settings | 2.0.0之前版本 | v2.0.0 | |
| 3 | CVE-2015-3165 | Double "free" after authentication timeout | 2.0.0之前版本 | v2.0.0 | |
| 4 | CVE-2016-5423 | Certain nested CASE/WHEN expressions can crash server | 2.0.0之前版本 | v2.0.0 | |
| 5 | CVE-2015-0244 | An error in extended protocol message reading. | 2.0.0之前版本 | v2.0.0 | |
| 6 | CVE-2015-3167 | pgcrypto has multiple error messages for decryption with an incorrect key. | 2.0.0之前版本 | v2.0.0 | |
| 7 | CVE-2013-1900 | Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guess | 2.0.0之前版本 | v2.0.0 | |
| 8 | CVE-2023-5870 | Role "pg_signal_backend" can signal certain superuser processes | 2.1.0之前版本 | v2.1.0 | |
| 9 | CVE-2022-1552 | Autovacuum, REINDEX, and others omit "security restricted operation" sandbox | 2.1.0之前版本 | v2.1.0 | |
| 10 | CVE-2021-3677 | Memory disclosure in certain queries | 2.1.0之前版本 | v2.1.0 |
