Wind River Support Network

HomeDefectsLIN6-10104
Fixed

LIN6-10104 : Security Advisory - postgresql - CVE-2015-0243

Created: Jul 7, 2015    Updated: Dec 3, 2018
Resolved Date: Jul 8, 2015
Previous ID: LIN4-32852
Found In Version: 6.0.0.20
Fix Version: 6.0.0.23
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

The PostgreSQL project reports the following issue:

Errors in memory size tracking within the pgcrypto module permitted stack buffer overruns and improper dependence on the contents of uninitialized memory. The buffer overrun cases can crash the server, and we have not ruled out the possibility of attacks that lead to privilege escalation.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0243

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube