Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24196

HistoryApr 10, 2020 - 12:48 a.m.

Denial Of Service (DoS)

2020-04-1000:48:52

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7

EPSS

0.04

Percentile

92.1%

PostgreSQL is vulnerable to denial of service (DoS).It is due to an integer overflow in src/backend/executor/nodeHash.c, allowing an attacker to use a malicious SQL query to cause a temporary denial of service (postgres daemon crash) or, potentially, execute arbitrary code with the privileges of the database server.

References

archives.postgresql.org/pgsql-bugs/2009-10/msg00277.php

archives.postgresql.org/pgsql-bugs/2009-10/msg00287.php

archives.postgresql.org/pgsql-bugs/2009-10/msg00289.php

archives.postgresql.org/pgsql-bugs/2009-10/msg00310.php

git.postgresql.org/gitweb?p=postgresql.git%3Ba=commit%3Bh=64b057e6823655fb6c5d1f24a28f236b94dd6c54

git.postgresql.org/gitweb?p=postgresql.git;a=commit;h=64b057e6823655fb6c5d1f24a28f236b94dd6c54

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/39820

www.openwall.com/lists/oss-security/2010/03/09/2

www.openwall.com/lists/oss-security/2010/03/16/10

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2010-0427.html

www.redhat.com/support/errata/RHSA-2010-0428.html

www.redhat.com/support/errata/RHSA-2010-0429.html

www.securityfocus.com/bid/38619

www.vupen.com/english/advisories/2010/1197

access.redhat.com/errata/RHSA-2010:0427

access.redhat.com/errata/RHSA-2010:0428

access.redhat.com/errata/RHSA-2010:0429

access.redhat.com/security/cve/CVE-2010-0733

bugzilla.redhat.com/show_bug.cgi?id=546621

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10691

EPSS

0.04

Percentile

92.1%

Related for VERACODE:24196

cve1 cvelist1 seebug1 openvas16 prion1 nvd1 ubuntucve1 packetstorm1 nessus18 redhat3 centos3 oraclelinux3 gentoo1