Candidate: CVE-2013-1903
PublicDate: 2013-04-04 17:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1903
Description:
 PostgreSQL, possibly 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before
 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 incorrectly provides
 the superuser password to scripts related to "graphical installers for
 Linux and Mac OS X," which has unspecified impact and attack vectors.
Ubuntu-Description:
Notes:
 mdeslaur> we don't use the installer in Ubuntu
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/postgresql-9.1/+bug/1163184
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_postgresql-9.1:
upstream_postgresql-9.1: released (9.1.9)
hardy_postgresql-9.1: DNE
lucid_postgresql-9.1: DNE
oneiric_postgresql-9.1: not-affected
precise_postgresql-9.1: not-affected
quantal_postgresql-9.1: not-affected
devel_postgresql-9.1: not-affected

Patches_postgresql-8.4:
upstream_postgresql-8.4: released (8.4.17)
hardy_postgresql-8.4: DNE
lucid_postgresql-8.4: not-affected
oneiric_postgresql-8.4: not-affected
precise_postgresql-8.4: not-affected
quantal_postgresql-8.4: DNE
devel_postgresql-8.4: DNE

Patches_postgresql-8.3:
upstream_postgresql-8.3: needs-triage
hardy_postgresql-8.3: not-affected
lucid_postgresql-8.3: DNE
oneiric_postgresql-8.3: DNE
precise_postgresql-8.3: DNE
quantal_postgresql-8.3: DNE
devel_postgresql-8.3: DNE

Patches_postgresql-8.2:
upstream_postgresql-8.2: needs-triage
hardy_postgresql-8.2: ignored (reached end-of-life)
lucid_postgresql-8.2: DNE
oneiric_postgresql-8.2: DNE
precise_postgresql-8.2: DNE
quantal_postgresql-8.2: DNE
devel_postgresql-8.2: DNE