Summary: | <postgresql-{server,base}-{9.0.3,8.4.7,8.3.14,8.2.20}: Stack-based buffer overflow by processing certain tokens from SQL query string when intarray module enabled (CVE-2010-4015) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Paweł Hajdan, Jr. (RETIRED) <phajdan.jr> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | pgsql-bugs, titanofold |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.postgresql.org/support/security.html | ||
Whiteboard: | B1 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Paweł Hajdan, Jr. (RETIRED)
2011-02-01 11:07:22 UTC
postgresql maintainers, is it OK to stabilize? Please advise which packages and versions need to go stable. postgresql-{server,base,docs} in versions: 9.0.3, 8.4.7, 8.3.14, 8.2.20 ebuilds are there already. (In reply to comment #2) > postgresql-{server,base,docs} in versions: > 9.0.3, 8.4.7, 8.3.14, 8.2.20 Thank you. Arches, please stabilize the above. Stable for HPPA. x86 stable amd64 ok: but there's bug 353750 and bug 347005 posted time ago by me ppc/ppc64 stable amd64 done. Thanks Agostino Stable on alpha. arm/ia64/s390/sh/sparc stable Thanks, everyone. Added to existing GLSA request. CVE-2010-4015 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4015): Buffer overflow in the gettoken function in contrib/intarray/_int_bool.c in the intarray array module in PostgreSQL 9.0.x before 9.0.3, 8.4.x before 8.4.7, 8.3.x before 8.3.14, and 8.2.x before 8.2.20 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via integers with a large number of digits to unspecified functions. This issue was resolved and addressed in GLSA 201110-22 at http://security.gentoo.org/glsa/glsa-201110-22.xml by GLSA coordinator Alex Legler (a3li). |