CVE-2002-1401

Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 7.2.3

Description The issue concerns multiple vulnerabilities in the ecpg package of the Debian GNU/Linux operating system and buffer overflows in certain functions for PostgreSQL. These vulnerabilities can be exploited remotely, potentially leading to a denial of service and possibly the execution of arbitrary code, which may result in breaches of confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to 7.2.3, consider upgrading to a newer version to mitigate the risk of exploitation. As a temporary workaround, consider restricting access to the circle poly, path encode, and path add functions until a patch is available. Avoid using these functions in sensitive operations until the issue is resolved.