Test ID:	1.3.6.1.4.1.25623.1.0.50680
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2002:062-1 (postgresql)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to postgresql announced via advisory MDKSA-2002:062-1. Vulnerabilities were discovered in the Postgresql relational database by Mordred Labs. These vulnerabilities are buffer overflows in the rpad(), lpad(), repeat(), and cash_words() functions. The Postgresql developers also fixed a buffer overflow in functions that deal with time/date and timezone. Finally, more buffer overflows were discovered by Mordred Labs in the 7.2.2 release that are currently only fixed in CVS. These buffer overflows exist in the circle_poly(), path_encode(), and path_addr() functions. In order for these vulnerabilities to be exploited, an attacker must be able to query the server somehow. However, this cannot directly lead to root privilege because the server runs as the postgresql user. Prior to upgrading, users should dump their database and retain it as backup. You can dump the database by using: $ pg_dumpall > db.out If you need to restore from the backup, you can do so by using: $ psql -f db.out template1 Update: The previous update missed a few small fixes, including a buffer overflow in the cash_words() function that allows local users to cause a DoS and possibly execute arbitrary code via a malformed argument in Postgresql 7.2 and earlier. As well, buffer overflows in the TZ and SET TIME ZONE environment variables for Postgresql 7.2.1 and earlier can allow local users to cause a DoS and possibly execute arbitrary code. Affected versions: 7.2, 8.0, 8.1, 8.2, 9.0, Single Network Firewall 7.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2002:062-1 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0972 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1397 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1398 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1400 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1401 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1402 http://archives.postgresql.org/pgsql-announce/2002-08/msg00004.php http://online.securityfocus.com/archive/1/288036 http://online.securityfocus.com/archive/1/288305 http://online.securityfocus.com/archive/1/288334 Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0972 Bugtraq: 20020820 @(#)Mordred Labs advisory 0x0004: Multiple buffer overflows in PostgreSQL. (Google Search) http://marc.info/?l=bugtraq&m=102987608300785&w=2 http://www.redhat.com/support/errata/RHSA-2003-001.html http://secunia.com/advisories/8034 Common Vulnerability Exposure (CVE) ID: CVE-2002-1397 BugTraq ID: 5497 http://www.securityfocus.com/bid/5497 Bugtraq: 20020819 @(#) Mordred Labs advisory 0x0001: Buffer overflow in PostgreSQL (Google Search) http://marc.info/?l=bugtraq&m=102977465204357&w=2 Conectiva Linux advisory: CLA-2002:524 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000524 http://developer.postgresql.org/cvsweb.cgi/pgsql-server/src/backend/utils/adt/cash.c.diff?r1=1.51&r2=1.52 XForce ISS Database: postgresql-cashwords-bo(9891) https://exchange.xforce.ibmcloud.com/vulnerabilities/9891 Common Vulnerability Exposure (CVE) ID: CVE-2002-1398 Bugtraq: 20020819 Re: @(#) Mordred Labs advisory 0x0001: Buffer overflow in PostgreSQL (Google Search) http://marc.info/?l=bugtraq&m=102978152712430&w=2 Bugtraq: 20020821 Re: @(#)Mordred Labs advisory 0x0003: Buffer overflow in PostgreSQL (Google Search) http://marc.info/?l=bugtraq&m=102996089613404&w=2 Bugtraq: 20020824 Fwd: [GENERAL] PostgreSQL 7.2.2: Security Release (Google Search) http://marc.info/?l=bugtraq&m=103021186622725&w=2 Bugtraq: 20020826 GLSA: PostgreSQL (Google Search) http://marc.info/?l=bugtraq&m=103036987114437&w=2 Debian Security Information: DSA-165 (Google Search) http://www.debian.org/security/2002/dsa-165 SuSE Security Announcement: SuSE-SA:2002:038 (Google Search) http://www.novell.com/linux/security/advisories/2002_038_postgresql.html Common Vulnerability Exposure (CVE) ID: CVE-2002-1400 Bugtraq: 20020820 @(#)Mordred Labs advisory 0x0003: Buffer overflow in PostgreSQL (Google Search) http://marc.info/?l=bugtraq&m=102987306029821&w=2 http://www.mandriva.com/security/advisories?name=MDKSA-2002:062 Common Vulnerability Exposure (CVE) ID: CVE-2002-1401 http://archives.postgresql.org/pgsql-hackers/2002-08/msg02047.php http://archives.postgresql.org/pgsql-hackers/2002-08/msg02081.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1402 http://archives.postgresql.org/pgsql-announce/2002-08/msg00004.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.