Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200502-19] PostgreSQL: Buffer overflows in PL/PgSQL parser

Vulnerability Assessment Details

[GLSA-200502-19] PostgreSQL: Buffer overflows in PL/PgSQL parser
Vulnerability Assessment Summary
PostgreSQL: Buffer overflows in PL/PgSQL parser

Detailed Explanation for this Vulnerability Assessment
The remote host is affected by the vulnerability described in GLSA-200502-19
(PostgreSQL: Buffer overflows in PL/PgSQL parser)


PostgreSQL is vulnerable to several buffer overflows in the
PL/PgSQL parser.

Impact

A remote attacker could send a malicious query resulting in the
execution of arbitrary code with the permissions of the user running
PostgreSQL.

Workaround

There is no known workaround at this time.

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0247


Solution:
All PostgreSQL users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/postgresql-7.4.7-r1"


Network Security Threat Level: High


Networks Security ID:

Vulnerability Assessment Copyright: (C) 2005 Michel Arboi
Cables, Connectors


Vintage 5362 IBM System/36 Mini-Computer Mainframe 5291 2, CRT Terminal DM12N501 picture

Vintage 5362 IBM System/36 Mini-Computer Mainframe 5291 2, CRT Terminal DM12N501

$249.99


Apple IIc Motherboard 820-0180-A C Main Logic board Tested Working A2S4100 picture

Apple IIc Motherboard 820-0180-A C Main Logic board Tested Working A2S4100

$100.00


IBM Type 4869 External 5 1/4in Floppy Disk Drive Mainframe Collection picture

IBM Type 4869 External 5 1/4in Floppy Disk Drive Mainframe Collection

$89.00


IBM Type 4869 External 5 1/4in Floppy Disk Drive Mainframe Collection - UNTESTED picture

IBM Type 4869 External 5 1/4in Floppy Disk Drive Mainframe Collection - UNTESTED

$65.00


6 Vintage Computer Tape Reels mainframe 3200 5000 data ibm magnetic processor picture

6 Vintage Computer Tape Reels mainframe 3200 5000 data ibm magnetic processor

$99.00


Vintage Hewlett Packard HP 2100S Microprogrammable Computer System Mainframe #2 picture

Vintage Hewlett Packard HP 2100S Microprogrammable Computer System Mainframe #2

$1499.99


IBM Mainframe Vintage MVS/XA DFP V2 R3 Microfiche (~ 300K pages on ~800 cards) picture

IBM Mainframe Vintage MVS/XA DFP V2 R3 Microfiche (~ 300K pages on ~800 cards)

$80.00


VINTAGE CIRCUIT BOARD A3281-4 chip K1LB553 Soviet Mainframe Computer USSR 1970's picture

VINTAGE CIRCUIT BOARD A3281-4 chip K1LB553 Soviet Mainframe Computer USSR 1970's

$14.99


Vintage Ibm 3290 122 Key Mainframe Keyboard Model M Battleship 1387001 picture

Vintage Ibm 3290 122 Key Mainframe Keyboard Model M Battleship 1387001

$184.91


DEC Digital Equipment PDP 11/04/34 Front Panel KY11-LB picture

DEC Digital Equipment PDP 11/04/34 Front Panel KY11-LB

$229.99


Discussions

No Discussions have been posted on this vulnerability.