CVE-2009-4034
First published: Tue Dec 15 2009(Updated: )
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PostgreSQL Common | =7.4.16 | |
| PostgreSQL Common | =8.1.10 | |
| PostgreSQL Common | =8.1.6 | |
| PostgreSQL Common | =8.2.9 | |
| PostgreSQL Common | =8.0.7 | |
| PostgreSQL Common | =8.0.2 | |
| PostgreSQL Common | =8.1.15 | |
| PostgreSQL Common | =8.1.7 | |
| PostgreSQL Common | =8.3.6 | |
| PostgreSQL Common | =8.4.1 | |
| PostgreSQL Common | =8.2.10 | |
| PostgreSQL Common | =8.0.22 | |
| PostgreSQL Common | =7.4.24 | |
| PostgreSQL Common | =8.2.4 | |
| PostgreSQL Common | =7.4.22 | |
| PostgreSQL Common | =7.4.21 | |
| PostgreSQL Common | =8.0.17 | |
| PostgreSQL Common | =8.0.10 | |
| PostgreSQL Common | =7.4.19 | |
| PostgreSQL Common | =8.2.11 | |
| PostgreSQL Common | =8.1.13 | |
| PostgreSQL Common | =8.0.12 | |
| PostgreSQL Common | =8.2.12 | |
| PostgreSQL Common | =7.4.15 | |
| PostgreSQL Common | =8.0.9 | |
| PostgreSQL Common | =8.0.15 | |
| PostgreSQL Common | =7.4.1 | |
| PostgreSQL Common | =8.2.2 | |
| PostgreSQL Common | =8.3.3 | |
| PostgreSQL Common | =8.0.0 | |
| PostgreSQL Common | =8.1.0 | |
| PostgreSQL Common | =8.1.3 | |
| PostgreSQL Common | =7.4.14 | |
| PostgreSQL Common | =7.4.26 | |
| PostgreSQL Common | =7.4.6 | |
| PostgreSQL Common | =8.3.2 | |
| PostgreSQL Common | =7.4.23 | |
| PostgreSQL Common | =7.4.11 | |
| PostgreSQL Common | =8.0.18 | |
| PostgreSQL Common | =8.2.5 | |
| PostgreSQL Common | =8.0.3 | |
| PostgreSQL Common | =7.4.7 | |
| PostgreSQL Common | =8.1.9 | |
| PostgreSQL Common | =7.4.17 | |
| PostgreSQL Common | =7.4.3 | |
| PostgreSQL Common | =8.2.1 | |
| PostgreSQL Common | =8.3.1 | |
| PostgreSQL Common | =8.1.14 | |
| PostgreSQL Common | =7.4.25 | |
| PostgreSQL Common | =7.4.9 | |
| PostgreSQL Common | =7.4.5 | |
| PostgreSQL Common | =7.4.18 | |
| PostgreSQL Common | =8.3.5 | |
| PostgreSQL Common | =8.0.20 | |
| PostgreSQL Common | =8.3.8 | |
| PostgreSQL Common | =8.0.8 | |
| PostgreSQL Common | =7.4.8 | |
| PostgreSQL Common | =8.2.7 | |
| PostgreSQL Common | =8.0.6 | |
| PostgreSQL Common | =8.1.11 | |
| PostgreSQL Common | =8.2.6 | |
| PostgreSQL Common | =7.4.4 | |
| PostgreSQL Common | =8.0.16 | |
| PostgreSQL Common | =8.3.7 | |
| PostgreSQL Common | =8.1.17 | |
| PostgreSQL Common | =8.0.13 | |
| PostgreSQL Common | =8.1.18 | |
| PostgreSQL Common | =8.1.4 | |
| PostgreSQL Common | =8.0.1 | |
| PostgreSQL Common | =8.1.8 | |
| PostgreSQL Common | =8.3.4 | |
| PostgreSQL Common | =7.4.12 | |
| PostgreSQL Common | =8.0.19 | |
| PostgreSQL Common | =8.1.1 | |
| PostgreSQL Common | =8.1.12 | |
| PostgreSQL Common | =8.1.5 | |
| PostgreSQL Common | =8.0.21 | |
| PostgreSQL Common | =7.4.10 | |
| PostgreSQL Common | =8.1.16 | |
| PostgreSQL Common | =8.2.3 | |
| PostgreSQL Common | =8.0.4 | |
| PostgreSQL Common | =8.0.5 | |
| PostgreSQL Common | =7.4.20 | |
| PostgreSQL Common | =8.0.14 | |
| PostgreSQL Common | =8.2.8 | |
| PostgreSQL Common | =8.2.13 | |
| PostgreSQL Common | =8.2 | |
| PostgreSQL Common | =7.4.2 | |
| PostgreSQL Common | =8.0.11 | |
| PostgreSQL Common | =8.2.14 | |
| PostgreSQL Common | =7.4.13 | |
| PostgreSQL Common | =8.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html
- http://marc.info/?l=bugtraq&m=134124585221119&w=2
- http://osvdb.org/61038
- http://secunia.com/advisories/37663
- http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:333
- http://www.postgresql.org/docs/current/static/release-7-4-27.html
- http://www.postgresql.org/docs/current/static/release-8-0-23.html
- http://www.postgresql.org/docs/current/static/release-8-1-19.html
- http://www.postgresql.org/docs/current/static/release-8-2-15.html
- http://www.postgresql.org/docs/current/static/release-8-3-9.html
- http://www.postgresql.org/docs/current/static/release-8-4-2.html
- http://www.postgresql.org/support/security.html
- http://www.securityfocus.com/archive/1/509917/100/0/threaded
- http://www.securityfocus.com/bid/37334
- http://www.securitytracker.com/id?1023325
- http://www.vupen.com/english/advisories/2009/3519
- https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html
- https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html
Frequently Asked Questions
What is the severity of CVE-2009-4034?
CVE-2009-4034 is classified as a high severity vulnerability due to its potential to allow man-in-the-middle attacks.
How do I fix CVE-2009-4034?
To mitigate CVE-2009-4034, upgrade to PostgreSQL version 7.4.27, 8.0.23, 8.1.19, 8.2.15, 8.3.9, or 8.4.2 or later.
Which versions of PostgreSQL are affected by CVE-2009-4034?
CVE-2009-4034 affects PostgreSQL versions 7.4.x (up to 7.4.26), 8.0.x (up to 8.0.22), 8.1.x (up to 8.1.18), 8.2.x (up to 8.2.14), 8.3.x (up to 8.3.8), and 8.4.x (up to 8.4.1).
What is the potential impact of CVE-2009-4034?
The vulnerability could allow attackers to perform man-in-the-middle attacks by exploiting improper handling of the '\0' character in domain names.
Is there a workaround for CVE-2009-4034?
While the best solution is to upgrade, implementing strict validation of X.509 certificates may serve as a temporary workaround for CVE-2009-4034.
- agent/type
- agent/remedy
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/postgresql
- canonical/postgresql common
- version/postgresql common/7.4.16
- version/postgresql common/8.1.10
- version/postgresql common/8.1.6
- version/postgresql common/8.2.9
- version/postgresql common/8.0.7
- version/postgresql common/8.0.2
- version/postgresql common/8.1.15
- version/postgresql common/8.1.7
- version/postgresql common/8.3.6
- version/postgresql common/8.4.1
- version/postgresql common/8.2.10
- version/postgresql common/8.0.22
- version/postgresql common/7.4.24
- version/postgresql common/8.2.4
- version/postgresql common/7.4.22
- version/postgresql common/7.4.21
- version/postgresql common/8.0.17
- version/postgresql common/8.0.10
- version/postgresql common/7.4.19
- version/postgresql common/8.2.11
- version/postgresql common/8.1.13
- version/postgresql common/8.0.12
- version/postgresql common/8.2.12
- version/postgresql common/7.4.15
- version/postgresql common/8.0.9
- version/postgresql common/8.0.15
- version/postgresql common/7.4.1
- version/postgresql common/8.2.2
- version/postgresql common/8.3.3
- version/postgresql common/8.0.0
- version/postgresql common/8.1.0
- version/postgresql common/8.1.3
- version/postgresql common/7.4.14
- version/postgresql common/7.4.26
- version/postgresql common/7.4.6
- version/postgresql common/8.3.2
- version/postgresql common/7.4.23
- version/postgresql common/7.4.11
- version/postgresql common/8.0.18
- version/postgresql common/8.2.5
- version/postgresql common/8.0.3
- version/postgresql common/7.4.7
- version/postgresql common/8.1.9
- version/postgresql common/7.4.17
- version/postgresql common/7.4.3
- version/postgresql common/8.2.1
- version/postgresql common/8.3.1
- version/postgresql common/8.1.14
- version/postgresql common/7.4.25
- version/postgresql common/7.4.9
- version/postgresql common/7.4.5
- version/postgresql common/7.4.18
- version/postgresql common/8.3.5
- version/postgresql common/8.0.20
- version/postgresql common/8.3.8
- version/postgresql common/8.0.8
- version/postgresql common/7.4.8
- version/postgresql common/8.2.7
- version/postgresql common/8.0.6
- version/postgresql common/8.1.11
- version/postgresql common/8.2.6
- version/postgresql common/7.4.4
- version/postgresql common/8.0.16
- version/postgresql common/8.3.7
- version/postgresql common/8.1.17
- version/postgresql common/8.0.13
- version/postgresql common/8.1.18
- version/postgresql common/8.1.4
- version/postgresql common/8.0.1
- version/postgresql common/8.1.8
- version/postgresql common/8.3.4
- version/postgresql common/7.4.12
- version/postgresql common/8.0.19
- version/postgresql common/8.1.1
- version/postgresql common/8.1.12
- version/postgresql common/8.1.5
- version/postgresql common/8.0.21
- version/postgresql common/7.4.10
- version/postgresql common/8.1.16
- version/postgresql common/8.2.3
- version/postgresql common/8.0.4
- version/postgresql common/8.0.5
- version/postgresql common/7.4.20
- version/postgresql common/8.0.14
- version/postgresql common/8.2.8
- version/postgresql common/8.2.13
- version/postgresql common/8.2
- version/postgresql common/7.4.2
- version/postgresql common/8.0.11
- version/postgresql common/8.2.14
- version/postgresql common/7.4.13
- version/postgresql common/8.1.2