First published: Fri Feb 27 2009(Updated: )
PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified encoding, as demonstrated using mismatched encoding conversion requests.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/postgresql | <0:7.4.26-1.el4_8.1 | 0:7.4.26-1.el4_8.1 |
redhat/postgresql | <0:8.1.18-2.el5_4.1 | 0:8.1.18-2.el5_4.1 |
PostgreSQL PostgreSQL | =7.4.24 | |
PostgreSQL PostgreSQL | =8.0.20 | |
PostgreSQL PostgreSQL | =8.1.16 | |
PostgreSQL PostgreSQL | =8.2.12 | |
PostgreSQL PostgreSQL | =8.3.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.