Red Hat Customer Portal

Skip to main content


Public Date:
427128: CVE-2007-6601 PostgreSQL privilege escalation via dblink

The MITRE CVE dictionary describes this issue as:

The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.

Find out more about CVE-2007-6601 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (postgresql) RHSA-2008:0038 2008-01-11
Red Hat Enterprise Linux 4 (postgresql) RHSA-2008:0038 2008-01-11
Red Hat Enterprise Linux 3 (rh-postgresql) RHSA-2008:0039 2008-01-11
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (postgresql) RHSA-2008:0040 2008-02-01
Red Hat Application Stack v2 for Enterprise Linux (v.5) (postgresql) RHSA-2008:0040 2008-02-01

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Extended Update Support 4.5 postgresql 7.4.19-1.el4_6.1 Fixed

Last Modified