Home CVE Database CVE-2015-5288

CVE-2015-5288

Description

The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a too-short salt.

Priority: Medium
CVSS v3: 0.0
Publish Date: Oct 26, 2015
Related ID: --
CVSS v2: 6.4
Modified Date: Oct 27, 2015

Find out more about CVE-2015-5288 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

postgresql

Live chat
Online