StarlingX

  1. Bug #2020742
  2. Activity log

Activity log for bug #2020742

Date Who What changed Old value New value Message
2023-05-25 05:48:25 Yue Tao bug added bug
2023-05-25 05:48:32 Yue Tao cve linked 2023-2454
2023-05-25 05:48:40 Yue Tao cve linked 2023-2455
2023-05-25 05:48:44 Yue Tao starlingx: importance Undecided High
2023-05-25 05:48:46 Yue Tao starlingx: status New Triaged
2023-05-25 05:48:56 Yue Tao tags stx.9.0 stx.security
2023-05-25 08:00:31 Yue Tao description CVE-2023-2454: https://nvd.nist.gov/vuln/detail/CVE-2023-2454 CVE-2023-2455: https://nvd.nist.gov/vuln/detail/CVE-2023-2455 Base Score: High (refer to https://www.tenable.com/plugins/nessus/175661) References: ['libpq5_13.7-0+deb11u1_amd64.deb===>libpq5_13.11-0+deb11u1_amd64.deb', 'libpq-dev_13.7-0+deb11u1_amd64.deb===>libpq-dev_13.11-0+deb11u1_amd64.deb', 'postgresql-13_13.7-0+deb11u1_amd64.deb===>postgresql-13_13.11-0+deb11u1_amd64.deb', 'postgresql-client-13_13.7-0+deb11u1_amd64.deb===>postgresql-client-13_13.11-0+deb11u1_amd64.deb'] https://www.debian.org/security/2023/dsa-5401 CVE-2023-2454: https://nvd.nist.gov/vuln/detail/CVE-2023-2454 CVE-2023-2455: https://nvd.nist.gov/vuln/detail/CVE-2023-2455 CVE-2022-2625: https://nvd.nist.gov/vuln/detail/CVE-2022-2625 Base Score: High (refer to https://www.tenable.com/plugins/nessus/175661) References: ['libpq5_13.7-0+deb11u1_amd64.deb===>libpq5_13.11-0+deb11u1_amd64.deb', 'libpq-dev_13.7-0+deb11u1_amd64.deb===>libpq-dev_13.11-0+deb11u1_amd64.deb', 'postgresql-13_13.7-0+deb11u1_amd64.deb===>postgresql-13_13.11-0+deb11u1_amd64.deb', 'postgresql-client-13_13.7-0+deb11u1_amd64.deb===>postgresql-client-13_13.11-0+deb11u1_amd64.deb'] https://www.debian.org/security/2023/dsa-5401 https://security-tracker.debian.org/tracker/CVE-2022-2625
2023-05-25 08:00:45 Yue Tao summary [Debian] CVE: CVE-2023-2454/CVE-2023-2455: postgresql: multiple CVEs [Debian] CVE: CVE-2023-2454/CVE-2023-2455/CVE-2022-2625: postgresql: multiple CVEs
2023-05-25 08:00:54 Yue Tao cve linked 2022-2625
2023-05-31 03:06:49 OpenStack Infra starlingx: status Triaged In Progress
2023-05-31 14:41:06 OpenStack Infra starlingx: status In Progress Fix Released