WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL Other Vulnerability (CVE-2015-3165)

Description

Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.

Remediation

References

Related Vulnerabilities

ReviveAdserver 7PK - Security Features Vulnerability (CVE-2016-9470)

Joomla! Core 3.x.x Information Disclosure (3.1.0 - 3.8.7)

WordPress 4.4.x PHP Object Injection (4.4 - 4.4.24)

WordPress Plugin Mz-jajak 'id' Parameter SQL Injection (2.1)

Ruby Improper Input Validation Vulnerability (CVE-2013-1821)

Severity

Medium

Classification

CVE-2015-3165

Tags

Missing Update Known Vulnerabilities