Vulnerability-Lookup

CVE-2017-7484 (GCVE-0-2017-7484)

Vulnerability from cvelistv5 – Published: 2017-05-12 19:00 – Updated: 2024-08-05 16:04

Summary

It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.

Severity

No CVSS data available.

CWE

CWE-285

Assigner

redhat

References

10 references

URL	Tags
http://www.securitytracker.com/id/1038476	vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2017/dsa-3851	vendor-advisoryx_refsource_DEBIAN
https://access.redhat.com/errata/RHSA-2017:2425	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1678	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1677	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1983	vendor-advisoryx_refsource_REDHAT
https://www.postgresql.org/about/news/1746/	x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:1838	vendor-advisoryx_refsource_REDHAT
http://www.securityfocus.com/bid/98459	vdb-entryx_refsource_BID
https://security.gentoo.org/glsa/201710-06	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
The PostgreSQL Global Development Group	PostgreSQL	Affected: 9.2 - 9.6

Date Public

2017-05-12 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T16:04:11.415Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1038476",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038476"
          },
          {
            "name": "DSA-3851",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2017/dsa-3851"
          },
          {
            "name": "RHSA-2017:2425",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2425"
          },
          {
            "name": "RHSA-2017:1678",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1678"
          },
          {
            "name": "RHSA-2017:1677",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1677"
          },
          {
            "name": "RHSA-2017:1983",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1983"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.postgresql.org/about/news/1746/"
          },
          {
            "name": "RHSA-2017:1838",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:1838"
          },
          {
            "name": "98459",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/98459"
          },
          {
            "name": "GLSA-201710-06",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201710-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PostgreSQL",
          "vendor": "The PostgreSQL Global Development Group",
          "versions": [
            {
              "status": "affected",
              "version": "9.2 - 9.6"
            }
          ]
        }
      ],
      "datePublic": "2017-05-12T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-285",
              "description": "CWE-285",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-04T19:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "1038476",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038476"
        },
        {
          "name": "DSA-3851",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2017/dsa-3851"
        },
        {
          "name": "RHSA-2017:2425",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2425"
        },
        {
          "name": "RHSA-2017:1678",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1678"
        },
        {
          "name": "RHSA-2017:1677",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1677"
        },
        {
          "name": "RHSA-2017:1983",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1983"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.postgresql.org/about/news/1746/"
        },
        {
          "name": "RHSA-2017:1838",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:1838"
        },
        {
          "name": "98459",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/98459"
        },
        {
          "name": "GLSA-201710-06",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201710-06"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2017-7484",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "PostgreSQL",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "9.2 - 9.6"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "The PostgreSQL Global Development Group"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-285"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1038476",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038476"
            },
            {
              "name": "DSA-3851",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2017/dsa-3851"
            },
            {
              "name": "RHSA-2017:2425",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2425"
            },
            {
              "name": "RHSA-2017:1678",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1678"
            },
            {
              "name": "RHSA-2017:1677",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1677"
            },
            {
              "name": "RHSA-2017:1983",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1983"
            },
            {
              "name": "https://www.postgresql.org/about/news/1746/",
              "refsource": "CONFIRM",
              "url": "https://www.postgresql.org/about/news/1746/"
            },
            {
              "name": "RHSA-2017:1838",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:1838"
            },
            {
              "name": "98459",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/98459"
            },
            {
              "name": "GLSA-201710-06",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201710-06"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2017-7484",
    "datePublished": "2017-05-12T19:00:00.000Z",
    "dateReserved": "2017-04-05T00:00:00.000Z",
    "dateUpdated": "2024-08-05T16:04:11.415Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2017-7484",
      "date": "2026-05-27",
      "epss": "0.0129",
      "percentile": "0.79915"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"9.2.20\", \"matchCriteriaId\": \"20D48E22-78D1-461D-ABE1-C8F578A17CB7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B890251-95EB-44F3-A6A7-F718F3C807B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D2E5BD02-8C3D-4687-88DE-1C00366270E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"709F5DF9-9F3A-42C3-890B-521B13118C0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"14D85A34-C897-4E52-8F97-18CA51C5461A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A40DAD2B-A6D4-43D8-B282-A3C672356D6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC2FE391-9414-480E-A9B1-CF70280E315E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55B6A4ED-FA3B-4251-BF82-755F95277CF9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7142DF3-124D-43D7-ADD9-70F4F7298557\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28DEA438-A0ED-49DC-AE51-4E9D8D4B6E7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"810B184F-6FB8-48D8-A569-F47BA43C4862\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"064BF155-7E2D-47B9-BD2B-C6E9FC06F5FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"676A81BD-7EEE-4770-B9AC-451B09844D6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30F23D38-BDD6-48E6-A6B2-29CD962EED99\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89833234-3890-4E2E-8FCF-09925D83ED67\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8F3ACC3-CB15-47E3-A511-E1D1F75E797F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F6FD785-7C9F-4302-B7ED-93CA04473ACE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.3.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC1BA72C-3A6E-450B-A3DE-3898DEAA9225\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77D1323D-3096-4D0F-823A-ECAC9017646D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A587AF3-5E70-4455-8621-DFD048207DE2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"526AFF26-B3EC-41C3-AC4C-85BFA3F99AC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89D2CAB7-C3D9-4F21-B902-2E498D00EFEB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88797795-8B1C-455F-8C52-6169B2E47D53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBDE0CC8-F1DF-4723-8FCB-9A33EA8B12D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"90F13667-019B-49DF-929C-3D376FCDE6E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B9E20AA3-C0D3-492C-AF3B-9F61550E6983\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"251C78CA-EEC0-49A8-A3D2-3C86D16CCB7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB443A75-2466-4164-A71B-9203933CB0D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B02839D4-EE7D-4D42-8934-322E46B643D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.4.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1BAE807-A21F-4980-B64E-911F5E9B16BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FF7FC5B-C9E3-4109-B3D6-9AC06F75DCB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D2C15A86-9ED9-492E-877B-86963DAA761A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EF74623-EF0E-455D-ADEB-9E336B539D86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FACD7AB7-34E9-4DFC-A788-7B9BF745D780\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F8E8AEBB-9968-458D-8EE4-2725BBE1A53F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7ECC17E6-C5FF-4B63-807A-26E5E6932C5C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7DB72357-B16D-488A-995C-2703CCEC1D8F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7040466B-2A7D-4E75-8E4F-FA70D4A7E014\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44887DE9-506B-46E3-922C-7B3C14B0AF33\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:postgresql:postgresql:9.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1250F15-7A05-452A-8958-3B1B32B326E1\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.\"}, {\"lang\": \"es\", \"value\": \"Se ha descubierto que algunas funciones de estimaci\\u00f3n de selectividad en PostgreSQL, en versiones anteriores a la 9.2.21, versiones 9.3.x anteriores a la 9.3.17, versiones 9.4.x anteriores a la 9.4.12, versiones 9.5.x anteriores a la 9.5.7 y versiones 9.6.x anteriores a la 9.6.3, no verificaban los privilegios de usuario antes de ofrecer informaci\\u00f3n de pg_statistic, lo que probablemente implique un filtrado de informaci\\u00f3n. Un atacante sin privilegios podr\\u00eda utilizar este fallo para robar informaci\\u00f3n de tablas a las que, de otra forma, no tendr\\u00eda acceso.\"}]",
      "id": "CVE-2017-7484",
      "lastModified": "2024-11-21T03:31:59.673",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2017-05-12T19:29:00.193",
      "references": "[{\"url\": \"http://www.debian.org/security/2017/dsa-3851\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securityfocus.com/bid/98459\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1038476\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1677\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1678\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1838\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1983\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:2425\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://security.gentoo.org/glsa/201710-06\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://www.postgresql.org/about/news/1746/\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.debian.org/security/2017/dsa-3851\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/98459\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1038476\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1677\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1678\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1838\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1983\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:2425\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/201710-06\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.postgresql.org/about/news/1746/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-285\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-200\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-7484\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2017-05-12T19:29:00.193\",\"lastModified\":\"2026-05-13T00:24:29.033\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto que algunas funciones de estimaci\u00f3n de selectividad en PostgreSQL, en versiones anteriores a la 9.2.21, versiones 9.3.x anteriores a la 9.3.17, versiones 9.4.x anteriores a la 9.4.12, versiones 9.5.x anteriores a la 9.5.7 y versiones 9.6.x anteriores a la 9.6.3, no verificaban los privilegios de usuario antes de ofrecer informaci\u00f3n de pg_statistic, lo que probablemente implique un filtrado de informaci\u00f3n. Un atacante sin privilegios podr\u00eda utilizar este fallo para robar informaci\u00f3n de tablas a las que, de otra forma, no tendr\u00eda acceso.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-285\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.2.20\",\"matchCriteriaId\":\"20D48E22-78D1-461D-ABE1-C8F578A17CB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B890251-95EB-44F3-A6A7-F718F3C807B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2E5BD02-8C3D-4687-88DE-1C00366270E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"709F5DF9-9F3A-42C3-890B-521B13118C0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"14D85A34-C897-4E52-8F97-18CA51C5461A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A40DAD2B-A6D4-43D8-B282-A3C672356D6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC2FE391-9414-480E-A9B1-CF70280E315E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55B6A4ED-FA3B-4251-BF82-755F95277CF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7142DF3-124D-43D7-ADD9-70F4F7298557\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28DEA438-A0ED-49DC-AE51-4E9D8D4B6E7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"810B184F-6FB8-48D8-A569-F47BA43C4862\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"064BF155-7E2D-47B9-BD2B-C6E9FC06F5FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"676A81BD-7EEE-4770-B9AC-451B09844D6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30F23D38-BDD6-48E6-A6B2-29CD962EED99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89833234-3890-4E2E-8FCF-09925D83ED67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F3ACC3-CB15-47E3-A511-E1D1F75E797F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F6FD785-7C9F-4302-B7ED-93CA04473ACE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.3.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC1BA72C-3A6E-450B-A3DE-3898DEAA9225\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77D1323D-3096-4D0F-823A-ECAC9017646D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A587AF3-5E70-4455-8621-DFD048207DE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"526AFF26-B3EC-41C3-AC4C-85BFA3F99AC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89D2CAB7-C3D9-4F21-B902-2E498D00EFEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88797795-8B1C-455F-8C52-6169B2E47D53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBDE0CC8-F1DF-4723-8FCB-9A33EA8B12D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90F13667-019B-49DF-929C-3D376FCDE6E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9E20AA3-C0D3-492C-AF3B-9F61550E6983\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"251C78CA-EEC0-49A8-A3D2-3C86D16CCB7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB443A75-2466-4164-A71B-9203933CB0D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B02839D4-EE7D-4D42-8934-322E46B643D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1BAE807-A21F-4980-B64E-911F5E9B16BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FF7FC5B-C9E3-4109-B3D6-9AC06F75DCB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2C15A86-9ED9-492E-877B-86963DAA761A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EF74623-EF0E-455D-ADEB-9E336B539D86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FACD7AB7-34E9-4DFC-A788-7B9BF745D780\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8E8AEBB-9968-458D-8EE4-2725BBE1A53F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7ECC17E6-C5FF-4B63-807A-26E5E6932C5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DB72357-B16D-488A-995C-2703CCEC1D8F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7040466B-2A7D-4E75-8E4F-FA70D4A7E014\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44887DE9-506B-46E3-922C-7B3C14B0AF33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:9.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1250F15-7A05-452A-8958-3B1B32B326E1\"}]}]}],\"references\":[{\"url\":\"http://www.debian.org/security/2017/dsa-3851\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/98459\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038476\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1677\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1678\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1838\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1983\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2425\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/201710-06\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.postgresql.org/about/news/1746/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2017/dsa-3851\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/98459\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038476\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1677\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1678\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1838\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1983\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2425\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201710-06\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.postgresql.org/about/news/1746/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

SUSE-SU-2017:1690-1

Vulnerability from csaf_suse - Published: 2017-06-26 11:21 - Updated: 2017-06-26 11:21

Summary

Security update for postgresql94

Severity

Moderate

Notes

Title of the patch: Security update for postgresql94

Description of the patch: This update for postgresql94 to 9.4.12 fixes the following issues: Upstream changelogs: - https://www.postgresql.org/docs/9.4/static/release-9-4-12.html - https://www.postgresql.org/docs/9.4/static/release-9-4-11.html - https://www.postgresql.org/docs/9.4/static/release-9-4-10.html Security issues fixed: * CVE-2017-7486: Restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1037624) Please note that manual action is needed to fix this in existing databases See the upstream release notes for details. * CVE-2017-7485: recognize PGREQUIRESSL variable again. (bsc#1038293) * CVE-2017-7484: Prevent exposure of statistical information via leaky operators. (bsc#1037603) Changes in version 9.4.12: * Build corruption with CREATE INDEX CONCURRENTLY * Fixes for visibility and write-ahead-log stability Changes in version 9.4.10: * Fix WAL-logging of truncation of relation free space maps and visibility maps * Fix incorrect creation of GIN index WAL records on big-endian machines * Fix SELECT FOR UPDATE/SHARE to correctly lock tuples that have been updated by a subsequently-aborted transaction * Fix EvalPlanQual rechecks involving CTE scans * Fix improper repetition of previous results from hashed aggregation in a subquery The libraries libpq and libecpg are now supplied by postgresql 9.6.

Patchnames: SUSE-SLE-DESKTOP-12-SP2-2017-1039,SUSE-SLE-RPI-12-SP2-2017-1039,SUSE-SLE-SDK-12-SP2-2017-1039,SUSE-SLE-SERVER-12-SP2-2017-1039

CVE-2017-7484

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 35 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7485

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 35 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7486

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 35 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

20 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1037603	self
https://bugzilla.suse.com/1037624	self
https://bugzilla.suse.com/1038293	self
https://www.suse.com/security/cve/CVE-2017-7484/	self
https://www.suse.com/security/cve/CVE-2017-7485/	self
https://www.suse.com/security/cve/CVE-2017-7486/	self
https://www.suse.com/security/cve/CVE-2017-7484	external
https://bugzilla.suse.com/1037603	external
https://bugzilla.suse.com/1051015	external
https://www.suse.com/security/cve/CVE-2017-7485	external
https://bugzilla.suse.com/1038293	external
https://bugzilla.suse.com/1051015	external
https://www.suse.com/security/cve/CVE-2017-7486	external
https://bugzilla.suse.com/1037624	external
https://bugzilla.suse.com/1051015	external
https://bugzilla.suse.com/1051685	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for postgresql94",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for postgresql94 to 9.4.12 fixes the following issues:\n\nUpstream changelogs:\n\n- https://www.postgresql.org/docs/9.4/static/release-9-4-12.html\n- https://www.postgresql.org/docs/9.4/static/release-9-4-11.html\n- https://www.postgresql.org/docs/9.4/static/release-9-4-10.html\n\nSecurity issues fixed:\n\n* CVE-2017-7486: Restrict visibility of\n  pg_user_mappings.umoptions, to protect passwords stored as\n  user mapping options. (bsc#1037624)\n\n  Please note that manual action is needed to fix this in existing databases\n  See the upstream release notes for details.\n* CVE-2017-7485: recognize PGREQUIRESSL variable\n  again. (bsc#1038293)\n* CVE-2017-7484: Prevent exposure of statistical\n  information via leaky operators. (bsc#1037603)\n\nChanges in version 9.4.12:\n\n* Build corruption with CREATE INDEX CONCURRENTLY\n* Fixes for visibility and write-ahead-log stability\n\nChanges in version 9.4.10:\n\n* Fix WAL-logging of truncation of relation free space maps and\n  visibility maps\n* Fix incorrect creation of GIN index WAL records on big-endian\n  machines\n* Fix SELECT FOR UPDATE/SHARE to correctly lock tuples that have\n  been updated by a subsequently-aborted transaction\n* Fix EvalPlanQual rechecks involving CTE scans\n* Fix improper repetition of previous results from hashed\n  aggregation in a subquery\n\nThe libraries libpq and libecpg are now supplied by postgresql 9.6.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-DESKTOP-12-SP2-2017-1039,SUSE-SLE-RPI-12-SP2-2017-1039,SUSE-SLE-SDK-12-SP2-2017-1039,SUSE-SLE-SERVER-12-SP2-2017-1039",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1690-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2017:1690-1",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171690-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2017:1690-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2017-June/002981.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037603",
        "url": "https://bugzilla.suse.com/1037603"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037624",
        "url": "https://bugzilla.suse.com/1037624"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038293",
        "url": "https://bugzilla.suse.com/1038293"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7484 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7484/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7485 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7485/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7486 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7486/"
      }
    ],
    "title": "Security update for postgresql94",
    "tracking": {
      "current_release_date": "2017-06-26T11:21:37Z",
      "generator": {
        "date": "2017-06-26T11:21:37Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2017:1690-1",
      "initial_release_date": "2017-06-26T11:21:37Z",
      "revision_history": [
        {
          "date": "2017-06-26T11:21:37Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-20.1.aarch64",
                "product": {
                  "name": "postgresql94-9.4.12-20.1.aarch64",
                  "product_id": "postgresql94-9.4.12-20.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-20.1.aarch64",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-20.1.aarch64",
                  "product_id": "postgresql94-contrib-9.4.12-20.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-20.1.aarch64",
                "product": {
                  "name": "postgresql94-server-9.4.12-20.1.aarch64",
                  "product_id": "postgresql94-server-9.4.12-20.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-20.1.aarch64",
                "product": {
                  "name": "postgresql94-devel-9.4.12-20.1.aarch64",
                  "product_id": "postgresql94-devel-9.4.12-20.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-20.1.noarch",
                "product": {
                  "name": "postgresql94-docs-9.4.12-20.1.noarch",
                  "product_id": "postgresql94-docs-9.4.12-20.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-20.1.ppc64le",
                "product": {
                  "name": "postgresql94-devel-9.4.12-20.1.ppc64le",
                  "product_id": "postgresql94-devel-9.4.12-20.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-20.1.ppc64le",
                "product": {
                  "name": "postgresql94-9.4.12-20.1.ppc64le",
                  "product_id": "postgresql94-9.4.12-20.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-20.1.ppc64le",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-20.1.ppc64le",
                  "product_id": "postgresql94-contrib-9.4.12-20.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-20.1.ppc64le",
                "product": {
                  "name": "postgresql94-server-9.4.12-20.1.ppc64le",
                  "product_id": "postgresql94-server-9.4.12-20.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-20.1.s390x",
                "product": {
                  "name": "postgresql94-devel-9.4.12-20.1.s390x",
                  "product_id": "postgresql94-devel-9.4.12-20.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-20.1.s390x",
                "product": {
                  "name": "postgresql94-9.4.12-20.1.s390x",
                  "product_id": "postgresql94-9.4.12-20.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-20.1.s390x",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-20.1.s390x",
                  "product_id": "postgresql94-contrib-9.4.12-20.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-20.1.s390x",
                "product": {
                  "name": "postgresql94-server-9.4.12-20.1.s390x",
                  "product_id": "postgresql94-server-9.4.12-20.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-20.1.x86_64",
                "product": {
                  "name": "postgresql94-9.4.12-20.1.x86_64",
                  "product_id": "postgresql94-9.4.12-20.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-20.1.x86_64",
                "product": {
                  "name": "postgresql94-devel-9.4.12-20.1.x86_64",
                  "product_id": "postgresql94-devel-9.4.12-20.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-20.1.x86_64",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-20.1.x86_64",
                  "product_id": "postgresql94-contrib-9.4.12-20.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-20.1.x86_64",
                "product": {
                  "name": "postgresql94-server-9.4.12-20.1.x86_64",
                  "product_id": "postgresql94-server-9.4.12-20.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-20.1.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch"
        },
        "product_reference": "postgresql94-docs-9.4.12-20.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-devel-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-devel-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-devel-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-devel-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-20.1.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch"
        },
        "product_reference": "postgresql94-docs-9.4.12-20.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-20.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch"
        },
        "product_reference": "postgresql94-docs-9.4.12-20.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64"
        },
        "product_reference": "postgresql94-server-9.4.12-20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-7484",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7484"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7484",
          "url": "https://www.suse.com/security/cve/CVE-2017-7484"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037603 for CVE-2017-7484",
          "url": "https://bugzilla.suse.com/1037603"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7484",
          "url": "https://bugzilla.suse.com/1051015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-26T11:21:37Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7484"
    },
    {
      "cve": "CVE-2017-7485",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7485"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3, it was found that the PGREQUIRESSL environment variable was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7485",
          "url": "https://www.suse.com/security/cve/CVE-2017-7485"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1038293 for CVE-2017-7485",
          "url": "https://bugzilla.suse.com/1038293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7485",
          "url": "https://bugzilla.suse.com/1051015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-26T11:21:37Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7485"
    },
    {
      "cve": "CVE-2017-7486",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7486"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pg_user_mappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7486",
          "url": "https://www.suse.com/security/cve/CVE-2017-7486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037624 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1037624"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1051015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051685 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1051685"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-contrib-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-docs-9.4.12-20.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:postgresql94-server-9.4.12-20.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:postgresql94-devel-9.4.12-20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-06-26T11:21:37Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7486"
    }
  ]
}

SUSE-SU-2017:1783-1

Vulnerability from csaf_suse - Published: 2017-07-05 14:17 - Updated: 2017-07-05 14:17

Summary

Security update for postgresql94

Severity

Moderate

Notes

Title of the patch: Security update for postgresql94

Description of the patch: This update for postgresql93 fixes the following issues: - bsc#1029547: Fix tests with timezone 2017a - CVE-2017-7486: Restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1037624) - CVE-2017-7485: Recognize PGREQUIRESSL variable again. (bsc#1038293) - CVE-2017-7484: Prevent exposure of statistical information via leaky operators. (bsc#1037603)

Patchnames: sdksp4-postgresql94-13196,slessp4-postgresql94-13196

CVE-2017-7484

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 71 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7485

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 71 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7486

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 71 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64	—	Vendor Fix

Threats

Impact moderate

References

21 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1029547	self
https://bugzilla.suse.com/1037603	self
https://bugzilla.suse.com/1037624	self
https://bugzilla.suse.com/1038293	self
https://www.suse.com/security/cve/CVE-2017-7484/	self
https://www.suse.com/security/cve/CVE-2017-7485/	self
https://www.suse.com/security/cve/CVE-2017-7486/	self
https://www.suse.com/security/cve/CVE-2017-7484	external
https://bugzilla.suse.com/1037603	external
https://bugzilla.suse.com/1051015	external
https://www.suse.com/security/cve/CVE-2017-7485	external
https://bugzilla.suse.com/1038293	external
https://bugzilla.suse.com/1051015	external
https://www.suse.com/security/cve/CVE-2017-7486	external
https://bugzilla.suse.com/1037624	external
https://bugzilla.suse.com/1051015	external
https://bugzilla.suse.com/1051685	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for postgresql94",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThis update for postgresql93 fixes the following issues:\n\n- bsc#1029547: Fix tests with timezone 2017a \n- CVE-2017-7486: Restrict visibility of\n    pg_user_mappings.umoptions, to protect passwords stored as\n    user mapping options. (bsc#1037624) \n- CVE-2017-7485: Recognize PGREQUIRESSL variable again. (bsc#1038293)\n- CVE-2017-7484: Prevent exposure of statistical information via leaky operators. (bsc#1037603)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "sdksp4-postgresql94-13196,slessp4-postgresql94-13196",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1783-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2017:1783-1",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171783-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2017:1783-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2017-July/003010.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1029547",
        "url": "https://bugzilla.suse.com/1029547"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037603",
        "url": "https://bugzilla.suse.com/1037603"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037624",
        "url": "https://bugzilla.suse.com/1037624"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038293",
        "url": "https://bugzilla.suse.com/1038293"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7484 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7484/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7485 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7485/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7486 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7486/"
      }
    ],
    "title": "Security update for postgresql94",
    "tracking": {
      "current_release_date": "2017-07-05T14:17:54Z",
      "generator": {
        "date": "2017-07-05T14:17:54Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2017:1783-1",
      "initial_release_date": "2017-07-05T14:17:54Z",
      "revision_history": [
        {
          "date": "2017-07-05T14:17:54Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-0.22.3.i586",
                "product": {
                  "name": "postgresql94-devel-9.4.12-0.22.3.i586",
                  "product_id": "postgresql94-devel-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libecpg6-9.4.12-0.22.3.i586",
                "product": {
                  "name": "libecpg6-9.4.12-0.22.3.i586",
                  "product_id": "libecpg6-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-9.4.12-0.22.3.i586",
                "product": {
                  "name": "libpq5-9.4.12-0.22.3.i586",
                  "product_id": "libpq5-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-0.22.3.i586",
                "product": {
                  "name": "postgresql94-9.4.12-0.22.3.i586",
                  "product_id": "postgresql94-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-0.22.3.i586",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-0.22.3.i586",
                  "product_id": "postgresql94-contrib-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-0.22.3.i586",
                "product": {
                  "name": "postgresql94-docs-9.4.12-0.22.3.i586",
                  "product_id": "postgresql94-docs-9.4.12-0.22.3.i586"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-0.22.3.i586",
                "product": {
                  "name": "postgresql94-server-9.4.12-0.22.3.i586",
                  "product_id": "postgresql94-server-9.4.12-0.22.3.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "postgresql94-devel-9.4.12-0.22.3.ia64",
                  "product_id": "postgresql94-devel-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "libecpg6-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "libecpg6-9.4.12-0.22.3.ia64",
                  "product_id": "libecpg6-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "libpq5-9.4.12-0.22.3.ia64",
                  "product_id": "libpq5-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "postgresql94-9.4.12-0.22.3.ia64",
                  "product_id": "postgresql94-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-0.22.3.ia64",
                  "product_id": "postgresql94-contrib-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "postgresql94-docs-9.4.12-0.22.3.ia64",
                  "product_id": "postgresql94-docs-9.4.12-0.22.3.ia64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-0.22.3.ia64",
                "product": {
                  "name": "postgresql94-server-9.4.12-0.22.3.ia64",
                  "product_id": "postgresql94-server-9.4.12-0.22.3.ia64"
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "postgresql94-devel-9.4.12-0.22.3.ppc64",
                  "product_id": "postgresql94-devel-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "libecpg6-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "libecpg6-9.4.12-0.22.3.ppc64",
                  "product_id": "libecpg6-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "libpq5-9.4.12-0.22.3.ppc64",
                  "product_id": "libpq5-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-32bit-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "libpq5-32bit-9.4.12-0.22.3.ppc64",
                  "product_id": "libpq5-32bit-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "postgresql94-9.4.12-0.22.3.ppc64",
                  "product_id": "postgresql94-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-0.22.3.ppc64",
                  "product_id": "postgresql94-contrib-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "postgresql94-docs-9.4.12-0.22.3.ppc64",
                  "product_id": "postgresql94-docs-9.4.12-0.22.3.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-0.22.3.ppc64",
                "product": {
                  "name": "postgresql94-server-9.4.12-0.22.3.ppc64",
                  "product_id": "postgresql94-server-9.4.12-0.22.3.ppc64"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "postgresql94-devel-9.4.12-0.22.3.s390x",
                  "product_id": "postgresql94-devel-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libecpg6-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "libecpg6-9.4.12-0.22.3.s390x",
                  "product_id": "libecpg6-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "libpq5-9.4.12-0.22.3.s390x",
                  "product_id": "libpq5-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-32bit-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "libpq5-32bit-9.4.12-0.22.3.s390x",
                  "product_id": "libpq5-32bit-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "postgresql94-9.4.12-0.22.3.s390x",
                  "product_id": "postgresql94-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-0.22.3.s390x",
                  "product_id": "postgresql94-contrib-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "postgresql94-docs-9.4.12-0.22.3.s390x",
                  "product_id": "postgresql94-docs-9.4.12-0.22.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-0.22.3.s390x",
                "product": {
                  "name": "postgresql94-server-9.4.12-0.22.3.s390x",
                  "product_id": "postgresql94-server-9.4.12-0.22.3.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "postgresql94-devel-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "postgresql94-devel-9.4.12-0.22.3.x86_64",
                  "product_id": "postgresql94-devel-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libecpg6-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "libecpg6-9.4.12-0.22.3.x86_64",
                  "product_id": "libecpg6-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "libpq5-9.4.12-0.22.3.x86_64",
                  "product_id": "libpq5-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpq5-32bit-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "libpq5-32bit-9.4.12-0.22.3.x86_64",
                  "product_id": "libpq5-32bit-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "postgresql94-9.4.12-0.22.3.x86_64",
                  "product_id": "postgresql94-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-contrib-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "postgresql94-contrib-9.4.12-0.22.3.x86_64",
                  "product_id": "postgresql94-contrib-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-docs-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "postgresql94-docs-9.4.12-0.22.3.x86_64",
                  "product_id": "postgresql94-docs-9.4.12-0.22.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "postgresql94-server-9.4.12-0.22.3.x86_64",
                "product": {
                  "name": "postgresql94-server-9.4.12-0.22.3.x86_64",
                  "product_id": "postgresql94-server-9.4.12-0.22.3.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:suse:sle-sdk:11:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP4",
                  "product_id": "SUSE Linux Enterprise Server 11 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles:11:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:11:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-devel-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-devel-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-devel-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-devel-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-devel-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-devel-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
          "product_id": "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libecpg6-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libecpg6-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libpq5-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpq5-32bit-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "libpq5-32bit-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-contrib-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-contrib-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-docs-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-docs-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.ia64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "postgresql94-server-9.4.12-0.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64"
        },
        "product_reference": "postgresql94-server-9.4.12-0.22.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-7484",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7484"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7484",
          "url": "https://www.suse.com/security/cve/CVE-2017-7484"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037603 for CVE-2017-7484",
          "url": "https://bugzilla.suse.com/1037603"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7484",
          "url": "https://bugzilla.suse.com/1051015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-07-05T14:17:54Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7484"
    },
    {
      "cve": "CVE-2017-7485",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7485"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3, it was found that the PGREQUIRESSL environment variable was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7485",
          "url": "https://www.suse.com/security/cve/CVE-2017-7485"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1038293 for CVE-2017-7485",
          "url": "https://bugzilla.suse.com/1038293"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7485",
          "url": "https://bugzilla.suse.com/1051015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-07-05T14:17:54Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7485"
    },
    {
      "cve": "CVE-2017-7486",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7486"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pg_user_mappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7486",
          "url": "https://www.suse.com/security/cve/CVE-2017-7486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037624 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1037624"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051015 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1051015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1051685 for CVE-2017-7486",
          "url": "https://bugzilla.suse.com/1051685"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libecpg6-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-32bit-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libpq5-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-contrib-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-docs-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql94-server-9.4.12-0.22.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.i586",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ia64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.ppc64",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 11 SP4:postgresql94-devel-9.4.12-0.22.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2017-07-05T14:17:54Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7486"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-7484 (GCVE-0-2017-7484)

SUSE-SU-2017:1690-1

SUSE-SU-2017:1783-1

Tags

Sightings

Nomenclature