PT-2014-3461 · Postgresql+3 · Postgresql+3

Jozef Mlich

+1

·

Publicado

2014-02-21

·

Atualizado

2024-06-15

·

CVE-2014-0065

CVSS v2.0

6.5

Média

VetorAV:N/AC:L/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 8.4.20 PostgreSQL versions 9.0.x prior to 9.0.16 PostgreSQL versions 9.1.x prior to 9.1.12 PostgreSQL versions 9.2.x prior to 9.2.7 PostgreSQL versions 9.3.x prior to 9.3.3
Description The issue involves multiple buffer overflows that allow remote authenticated users to have an unspecified impact. This is related to potential buffer overruns of fixed-size buffers.
Recommendations For versions prior to 8.4.20, update to version 8.4.20 or later. For versions 9.0.x prior to 9.0.16, update to version 9.0.16 or later. For versions 9.1.x prior to 9.1.12, update to version 9.1.12 or later. For versions 9.2.x prior to 9.2.7, update to version 9.2.7 or later. For versions 9.3.x prior to 9.3.3, update to version 9.3.3 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CESA-2014_0211
CESA-2014_0221
CVE-2014-0065
DSA-2864-1
DSA-2865-1
MGASA-2014-0205
MGASA-2014-0222
OPENSUSE-SU-2024:10030-1
OPENSUSE-SU-2024:10256-1
OPENSUSE-SU-2024:10273-1
RHSA-2014:0211
RHSA-2014:0221
RHSA-2014:0249
RHSA-2014:0469
RHSA-2014_0211
RHSA-2014_0249
USN-2120-1

Produtos afetados

Centos
Postgresql
Red Hat
Suse