Description
Buffer overflows in the (1) TZ and (2) SET TIME ZONE enivronment variables for PostgreSQL 7.2.1 and earlier allow local users to cause a denial of service and possibly execute arbitrary code.
Remediation
References
Related Vulnerabilities
PostgreSQL CVE-2023-2454 Vulnerability (CVE-2023-2454)
Django Resource Management Errors Vulnerability (CVE-2015-0221)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6514)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7833)