|
Family: Debian Local Security Checks --> Category: infos
[DSA516] DSA-516-1 postgresql Vulnerability Scan
Vulnerability Scan Summary DSA-516-1 postgresql
Detailed Explanation for this Vulnerability Test
A buffer overflow has been discovered in the ODBC driver of PostgreSQL,
an object-relational SQL database, descended from POSTGRES. It is possible
to exploit this problem and crash the surrounding application. Hence, a
PHP script using php4-odbc can be utilised to crash the surrounding
Apache webserver. Other parts of postgresql are not affected.
For the stable distribution (woody) this problem has been fixed in
version 7.2.1-2woody5.
For the unstable distribution (sid) this problem has been fixed in
version 07.03.0200-3.
We recommend that you upgrade your postgresql and related package.
Solution : http://www.debian.org/security/2004/dsa-516
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|