STIGQter: STIG Summary: Crunchy Data PostgreSQL Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

When updates are applied to PostgreSQL software, any software components that have been replaced or made unnecessary must be removed.

DISA Rule

SV-233550r617333_rule

Vulnerability Number

V-233550

Group Title

SRG-APP-000454-DB-000389

Rule Version

CD12-00-004300

Severity

CAT II

CCI(s)

• CCI-002617 - The organization removes organization-defined software components (e.g., previous versions) after updated versions have been installed.

Weight

10

Fix Recommendation

Use package managers (RPM or apt-get) for installing PostgreSQL. Unused software is removed when updated.

Check Contents

To check software installed by packages, as the system administrator, run the following command:

$ sudo rpm -qa | grep postgres

If multiple versions of postgres are installed but are unused, this is a finding.

Vulnerability Number

V-233550

Documentable

False

Rule Version

CD12-00-004300

Severity Override Guidance

To check software installed by packages, as the system administrator, run the following command:

$ sudo rpm -qa | grep postgres

If multiple versions of postgres are installed but are unused, this is a finding.

Check Content Reference

M

Target Key

5254

Comments