CVE-2002-1400

Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 7.2.2 ecpg (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the ecpg package of Debian GNU/Linux and a heap-based buffer overflow in the repeat() function of PostgreSQL. This can lead to a breach of confidentiality, integrity, and availability of protected information. The vulnerabilities can be exploited remotely.

Recommendations For PostgreSQL versions prior to 7.2.2: update to version 7.2.2 or later to resolve the issue. For ecpg: At the moment, there is no information about a newer version that contains a fix for this vulnerability.