4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
John Heasman and others discovered a bug in the PostgreSQL engine
which would allow any user load an arbitrary local library into it.
For the stable distribution (woody) this problem has been fixed in
version 7.2.1-2woody7.
For the unstable distribution (sid) this problem has been fixed in
version 7.4.7-1.
We recommend that you upgrade your postgresql packages.
CPE | Name | Operator | Version |
---|---|---|---|
postgresql | eq | 7.2.1-2woody6 |