Gentoo Security Advisory GLSA 200505-12 (postgresql) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200505-12.

Solution

http://www.postgresql.org/about/news.315 # emerge --sync # emerge --ask --oneshot --verbose dev-db/postgresql http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200505-12 http://bugs.gentoo.org/show_bug.cgi?id=91231 http://www.postgresql.org/about/news.315 http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1409 http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1410 http://www.postgresql.org/about/news.315

Insight

PostgreSQL is vulnerable to Denial of Service attacks and possibly allows unprivileged users to gain administrator rights.

Severity

Classification

CVE CVE-2005-1409, CVE-2005-1410
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200408-14 (acroread)
Gentoo Security Advisory GLSA 200407-22 (dev-db/phpmyadmin)
Gentoo Security Advisory GLSA 200408-19 (courier-imap)
Gentoo Security Advisory GLSA 200409-13 (lha)
Gentoo Security Advisory GLSA 200408-25 (MoinMoin)

Take action and discover your vulnerabilities