CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS
Percentile
91.9%
Multiple integer overflows in the path_in and other unspecified functions
in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12,
9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users
to have unspecified impact and attack vectors, which trigger a buffer
overflow. NOTE: this identifier has been SPLIT due to different affected
versions; use CVE-2014-2669 for the hstore vector.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | postgresql-8.4 | < 8.4.20-0ubuntu010.04 | UNKNOWN |
ubuntu | 12.04 | noarch | postgresql-8.4 | < 8.4.22-0ubuntu0.12.04 | UNKNOWN |
ubuntu | 12.04 | noarch | postgresql-9.1 | < 9.1.12-0ubuntu0.12.04 | UNKNOWN |
ubuntu | 12.10 | noarch | postgresql-9.1 | < 9.1.12-0ubuntu0.12.10 | UNKNOWN |
ubuntu | 13.10 | noarch | postgresql-9.1 | < 9.1.12-0ubuntu0.13.10 | UNKNOWN |
ubuntu | 14.04 | noarch | postgresql-9.1 | < 9.1.12-1 | UNKNOWN |
ubuntu | 14.04 | noarch | postgresql-9.3 | < 9.3.3-1 | UNKNOWN |