CVE-2010-1169

N/A Unknown
Published: May 19, 2010 Modified: April 29, 2026
View on NVD

Description

PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script, related to the Safe module (aka Safe.pm) for Perl. NOTE: some sources report that this issue is the same as CVE-2010-1447.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041559.html
Source: secalert@redhat.com
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041579.html
Source: secalert@redhat.com
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041591.html
Source: secalert@redhat.com
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
Source: secalert@redhat.com
http://marc.info/?l=bugtraq&m=134124585221119&w=2
Source: secalert@redhat.com
http://osvdb.org/64755
Source: secalert@redhat.com
http://secunia.com/advisories/39815
Source: secalert@redhat.com
http://secunia.com/advisories/39820
Source: secalert@redhat.com
http://secunia.com/advisories/39845
Source: secalert@redhat.com
Vendor Advisory
http://secunia.com/advisories/39898
Source: secalert@redhat.com
http://secunia.com/advisories/39939
Source: secalert@redhat.com
http://www.debian.org/security/2010/dsa-2051
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDVSA-2010:103
Source: secalert@redhat.com
http://www.openwall.com/lists/oss-security/2010/05/20/5
Source: secalert@redhat.com
http://www.postgresql.org/about/news.1203
Source: secalert@redhat.com
Patch
http://www.postgresql.org/docs/current/static/release-7-4-29.html
Source: secalert@redhat.com
http://www.postgresql.org/docs/current/static/release-8-0-25.html
Source: secalert@redhat.com
http://www.postgresql.org/docs/current/static/release-8-1-21.html
Source: secalert@redhat.com
http://www.postgresql.org/docs/current/static/release-8-2-17.html
Source: secalert@redhat.com
http://www.postgresql.org/docs/current/static/release-8-3-11.html
Source: secalert@redhat.com
http://www.postgresql.org/docs/current/static/release-8-4-4.html
Source: secalert@redhat.com
http://www.postgresql.org/support/security
Source: secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2010-0427.html
Source: secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2010-0428.html
Source: secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2010-0429.html
Source: secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2010-0430.html
Source: secalert@redhat.com
http://www.securityfocus.com/bid/40215
Source: secalert@redhat.com
http://www.securitytracker.com/id?1023988
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2010/1167
Source: secalert@redhat.com
Vendor Advisory
http://www.vupen.com/english/advisories/2010/1182
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2010/1197
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2010/1198
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2010/1207
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2010/1221
Source: secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=582615
Source: secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=588269
Source: secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/58693
Source: secalert@redhat.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10645
Source: secalert@redhat.com
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041559.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041579.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041591.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://marc.info/?l=bugtraq&m=134124585221119&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
http://osvdb.org/64755
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/39815
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/39820
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/39845
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/39898
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/39939
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2010/dsa-2051
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDVSA-2010:103
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2010/05/20/5
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/about/news.1203
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.postgresql.org/docs/current/static/release-7-4-29.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/docs/current/static/release-8-0-25.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/docs/current/static/release-8-1-21.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/docs/current/static/release-8-2-17.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/docs/current/static/release-8-3-11.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/docs/current/static/release-8-4-4.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.postgresql.org/support/security
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0427.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0428.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0429.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0430.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/40215
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1023988
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1167
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.vupen.com/english/advisories/2010/1182
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1197
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1198
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1207
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1221
Source: af854a3a-2127-422b-91ae-364da2661108
https://bugzilla.redhat.com/show_bug.cgi?id=582615
Source: af854a3a-2127-422b-91ae-364da2661108
https://bugzilla.redhat.com/show_bug.cgi?id=588269
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/58693
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10645
Source: af854a3a-2127-422b-91ae-364da2661108

76 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.8%
74th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-94

Affected Vendors

postgresql

Related CVEs

CVE-2026-8407 N/A
CVE-2026-8278 N/A
CVE-2026-5089 N/A
CVE-2026-43993 8.2
CVE-2026-43992 9.8