4 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-17446
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response,...
[SECURITY] [DLA 2363-1] asyncpg security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2363-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta September 03, 2020 https://wiki.debian.org/LTS -...
CVE-2020-17446
asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...
CVE-2020-17446
CVE-2020-17446 affects the asyncpg library (Python) prior to version 0.21.0. A crafted server response from a malicious PostgreSQL server can trigger a crash or execute arbitrary code on the database client due to access to an uninitialized pointer in the array data decoder. The connected documen...