Gentoo Security Advisory GLSA 200505-12 (postgresql) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200505-12.

Solution

http://www.postgresql.org/about/news.315 # emerge --sync # emerge --ask --oneshot --verbose dev-db/postgresql http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200505-12 http://bugs.gentoo.org/show_bug.cgi?id=91231 http://www.postgresql.org/about/news.315 http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1409 http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1410 http://www.postgresql.org/about/news.315

Insight

PostgreSQL is vulnerable to Denial of Service attacks and possibly allows unprivileged users to gain administrator rights.

Severity

Classification

CVE CVE-2005-1409, CVE-2005-1410

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200405-21 (MC)
Gentoo Security Advisory GLSA 200403-01 (libxml)
Gentoo Security Advisory GLSA 200403-09 (mc)
Gentoo Security Advisory GLSA 200310-03 (Apache)
Gentoo Security Advisory GLSA 200407-11 (app-text/wv)

Take action and discover your vulnerabilities