Description

Multiple stack-based buffer overflows in json parsing in PostgreSQL before 9.3.x before 9.3.10 and 9.4.x before 9.4.5 allow attackers to cause a denial of service (server crash) via unspecified vectors, which are not properly handled in (1) json or (2) jsonb values.

Remediation

References

CVE-2015-5289

Related Vulnerabilities

PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-1581)

Jboss EAP Improper Access Control Vulnerability (CVE-2013-4213)

WordPress Plugin Waitlist Woocommerce (Back in stock notifier) Cross-Site Request Forgery (2.5.1)

Grafana Improper Authentication Vulnerability (CVE-2021-39226)

WordPress Plugin Ocean Extra Cross-Site Request Forgery (1.6.5)

Severity

Medium

Classification

CVE-2015-5289 CWE-119

Tags

Missing Update Known Vulnerabilities