Description

backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.

Remediation

References

CVE-2006-5541

Related Vulnerabilities

Perl Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-6329)

OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2016-2177)

DOMPurify Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-26870)

GlassFish CVE-2017-3249 Vulnerability (CVE-2017-3249)

MySQL CVE-2022-21370 Vulnerability (CVE-2022-21370)

Severity

Medium

Classification

CVE-2006-5541

Tags

Missing Update Known Vulnerabilities