Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2014-0064

Опубликовано: 17 фев. 2014
Источник: redhat
CVSS2: 6.5
EPSS Средний

Описание

Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
CloudForms Management Engine 5postgresqlWill not fix
Red Hat Enterprise Linux 7postgresqlNot affected
CloudForms Management Engine 5.xcfmeFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xpostgresql92-postgresqlFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xprinceFixedRHSA-2014:046912.05.2014
CloudForms Management Engine 5.xruby193-rubygem-actionpackFixedRHSA-2014:046912.05.2014
Red Hat Enterprise Linux 5postgresql84FixedRHSA-2014:021125.02.2014
Red Hat Enterprise Linux 5postgresqlFixedRHSA-2014:024904.03.2014
Red Hat Enterprise Linux 6postgresqlFixedRHSA-2014:021125.02.2014
Red Hat Software Collections for RHEL-6postgresql92-postgresqlFixedRHSA-2014:022127.02.2014

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1065230postgresql: integer overflows leading to buffer overflows

EPSS

Процентиль: 93%
0.12052
Средний

6.5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2014-0064

ubuntu
около 11 лет назад

Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.

nvd логотип

CVE-2014-0064

nvd
около 11 лет назад

Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.

debian логотип

CVE-2014-0064

debian
около 11 лет назад

Multiple integer overflows in the path_in and other unspecified functi ...

github логотип

GHSA-qp79-hqwr-wfrw

github
около 3 лет назад

Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.

oracle-oval логотип

ELSA-2014-0249

oracle-oval
больше 11 лет назад

ELSA-2014-0249: postgresql security update (IMPORTANT)

EPSS

Процентиль: 93%
0.12052
Средний

6.5 Medium

CVSS2