Wind River Support Network

HomeDefectsLIN5-20622
Fixed

LIN5-20622 : Security Advisory - postgresql - CVE-2015-0243

Created: Jul 7, 2015    Updated: Dec 19, 2017
Resolved Date: Jul 8, 2015
Previous ID: LIN4-32851
Found In Version: 5.0.1.27
Fix Version: 5.0.1.29
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

The PostgreSQL project reports the following issue:

Errors in memory size tracking within the pgcrypto module permitted stack buffer overruns and improper dependence on the contents of uninitialized memory. The buffer overrun cases can crash the server, and we have not ruled out the possibility of attacks that lead to privilege escalation.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0243

Other Downloads


Live chat
Online