Buffer overflow : PostgreSQL Hash Table Integer Overflow Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.902139

Categoría: Buffer overflow

Título: PostgreSQL Hash Table Integer Overflow Vulnerability

Resumen: PostgreSQL is prone to an integer overflow vulnerability.

Descripción: Summary:
PostgreSQL is prone to an integer overflow vulnerability.

Vulnerability Insight:
The flaw is due to an integer overflow error in 'src/backend/executor/nodeHash.c',
when used to calculate size for the hashtable for joined relations.

Vulnerability Impact:
Successful exploitation could allow execution of specially-crafted sql query
which once processed would lead to denial of service (postgresql daemon crash).

Affected Software/OS:
PostgreSQL version 8.4.1 and prior and 8.5 through 8.5alpha2.

Solution:
Apply the patch linked in the references.

CVSS Score:
3.5

CVSS Vector:
AV:N/AC:M/Au:S/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-0733
38619
http://www.securityfocus.com/bid/38619
39820
http://secunia.com/advisories/39820
ADV-2010-1197
http://www.vupen.com/english/advisories/2010/1197
RHSA-2010:0427
http://www.redhat.com/support/errata/RHSA-2010-0427.html
RHSA-2010:0428
http://www.redhat.com/support/errata/RHSA-2010-0428.html
RHSA-2010:0429
http://www.redhat.com/support/errata/RHSA-2010-0429.html
SUSE-SR:2010:014
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
[oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation
http://www.openwall.com/lists/oss-security/2010/03/09/2
[oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation
http://www.openwall.com/lists/oss-security/2010/03/16/10
[pgsql-bugs] 20091028 BUG #5145: Complex query with lots of LEFT JOIN causes segfault
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00277.php
[pgsql-bugs] 20091029 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00287.php
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00289.php
[pgsql-bugs] 20091030 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00310.php
http://git.postgresql.org/gitweb?p=postgresql.git%3Ba=commit%3Bh=64b057e6823655fb6c5d1f24a28f236b94dd6c54
https://bugzilla.redhat.com/show_bug.cgi?id=546621
oval:org.mitre.oval:def:10691
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10691

Copyright Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.902139
Categoría:	Buffer overflow
Título:	PostgreSQL Hash Table Integer Overflow Vulnerability
Resumen:	PostgreSQL is prone to an integer overflow vulnerability.
Descripción:	Summary: PostgreSQL is prone to an integer overflow vulnerability. Vulnerability Insight: The flaw is due to an integer overflow error in 'src/backend/executor/nodeHash.c', when used to calculate size for the hashtable for joined relations. Vulnerability Impact: Successful exploitation could allow execution of specially-crafted sql query which once processed would lead to denial of service (postgresql daemon crash). Affected Software/OS: PostgreSQL version 8.4.1 and prior and 8.5 through 8.5alpha2. Solution: Apply the patch linked in the references. CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0733 38619 http://www.securityfocus.com/bid/38619 39820 http://secunia.com/advisories/39820 ADV-2010-1197 http://www.vupen.com/english/advisories/2010/1197 RHSA-2010:0427 http://www.redhat.com/support/errata/RHSA-2010-0427.html RHSA-2010:0428 http://www.redhat.com/support/errata/RHSA-2010-0428.html RHSA-2010:0429 http://www.redhat.com/support/errata/RHSA-2010-0429.html SUSE-SR:2010:014 http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html [oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation http://www.openwall.com/lists/oss-security/2010/03/09/2 [oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation http://www.openwall.com/lists/oss-security/2010/03/16/10 [pgsql-bugs] 20091028 BUG #5145: Complex query with lots of LEFT JOIN causes segfault http://archives.postgresql.org/pgsql-bugs/2009-10/msg00277.php [pgsql-bugs] 20091029 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault http://archives.postgresql.org/pgsql-bugs/2009-10/msg00287.php http://archives.postgresql.org/pgsql-bugs/2009-10/msg00289.php [pgsql-bugs] 20091030 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault http://archives.postgresql.org/pgsql-bugs/2009-10/msg00310.php http://git.postgresql.org/gitweb?p=postgresql.git%3Ba=commit%3Bh=64b057e6823655fb6c5d1f24a28f236b94dd6c54 https://bugzilla.redhat.com/show_bug.cgi?id=546621 oval:org.mitre.oval:def:10691 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10691
Copyright	Copyright (C) 2010 Greenbone AG