Wind River Support Network

HomeDefectsLIN7-5056

Fixed

LIN7-5056 : Security Advisory - postgresql - CVE-2015-5288

Created: Oct 29, 2015 Updated: Sep 8, 2018

Resolved Date: Nov 19, 2015

Found In Version: 7.0.0.10

Fix Version: 7.0.0.12

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a too-short salt.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5288

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2015-5288