8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:N/A:C
0.02 Low
EPSS
Percentile
87.7%
PostgreSQL is an advanced Object-Relational database management system
(DBMS).
Two flaws were found in the way the PostgreSQL server handles certain
SQL-language functions. An authenticated user could execute a sequence of
command which could crash the PostgreSQL server or possibly read from
arbitrary memory locations. A user must have permissions to drop and add
database tables to exploit this flaw. (CVE-2007-0555, CVE-2007-0556)
Several denial of service flaws were found in the PostgreSQL server. An
authenticated user could execute an SQL command which could crash the
PostgreSQL server. (CVE-2006-5540, CVE-2006-5541, CVE-2006-5542)
Users of PostgreSQL should upgrade to these updated packages containing
PostgreSQL version 8.1.7, which corrects these issues.
Note: The original PostgreSQL 8.1.7 security patch contained an error; this
release includes the updated patch and so is equivalent to the
soon-to-be-released 8.1.8.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | x86_64 | postgresql-docs | < 8.1.7-3.el4s1.1 | postgresql-docs-8.1.7-3.el4s1.1.x86_64.rpm |
RedHat | 4 | x86_64 | postgresql-contrib | < 8.1.7-3.el4s1.1 | postgresql-contrib-8.1.7-3.el4s1.1.x86_64.rpm |
RedHat | 4 | i386 | postgresql-pl | < 8.1.7-3.el4s1.1 | postgresql-pl-8.1.7-3.el4s1.1.i386.rpm |
RedHat | 4 | i386 | postgresql-contrib | < 8.1.7-3.el4s1.1 | postgresql-contrib-8.1.7-3.el4s1.1.i386.rpm |
RedHat | 4 | i386 | postgresql-docs | < 8.1.7-3.el4s1.1 | postgresql-docs-8.1.7-3.el4s1.1.i386.rpm |
RedHat | 4 | i386 | postgresql-libs | < 8.1.7-3.el4s1.1 | postgresql-libs-8.1.7-3.el4s1.1.i386.rpm |
RedHat | 4 | x86_64 | postgresql-tcl | < 8.1.7-3.el4s1.1 | postgresql-tcl-8.1.7-3.el4s1.1.x86_64.rpm |
RedHat | 4 | x86_64 | postgresql | < 8.1.7-3.el4s1.1 | postgresql-8.1.7-3.el4s1.1.x86_64.rpm |
RedHat | 4 | i386 | postgresql-tcl | < 8.1.7-3.el4s1.1 | postgresql-tcl-8.1.7-3.el4s1.1.i386.rpm |
RedHat | 4 | i386 | postgresql | < 8.1.7-3.el4s1.1 | postgresql-8.1.7-3.el4s1.1.i386.rpm |