Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-0063

Опубликовано: 17 фев. 2014
Источник: redhat
CVSS2: 6.5
EPSS Средний

Описание

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
CloudForms Management Engine 5postgresqlWill not fix
Red Hat Enterprise Linux 7postgresqlNot affected
CloudForms Management Engine 5.xcfmeFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xpostgresql92-postgresqlFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xprinceFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xruby193-rubygem-actionpackFixedRHSA-2014:046912.05.2014
Red Hat Enterprise Linux 5postgresql84FixedRHSA-2014:021125.02.2014
Red Hat Enterprise Linux 5postgresqlFixedRHSA-2014:024904.03.2014
Red Hat Enterprise Linux 6postgresqlFixedRHSA-2014:021125.02.2014
Red Hat Software Collections for RHEL-6postgresql92-postgresqlFixedRHSA-2014:022127.02.2014

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-121
https://bugzilla.redhat.com/show_bug.cgi?id=1065226postgresql: stack-based buffer overflow in datetime input/output

EPSS

Процентиль: 93%
0.11086
Средний

6.5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2014-0063

ubuntu
около 11 лет назад

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

nvd логотип

CVE-2014-0063

nvd
около 11 лет назад

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

debian логотип

CVE-2014-0063

debian
около 11 лет назад

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0 ...

github логотип

GHSA-6xcv-h2c9-qr78

github
около 3 лет назад

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

oracle-oval логотип

ELSA-2014-0249

oracle-oval
больше 11 лет назад

ELSA-2014-0249: postgresql security update (IMPORTANT)

EPSS

Процентиль: 93%
0.11086
Средний

6.5 Medium

CVSS2