Upstream information
Description
The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.SUSE information
Overall state of this security issue: Resolved
This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.
| National Vulnerability Database | |
|---|---|
| Base Score | 2.1 |
| Vector | AV:L/AC:L/Au:N/C:N/I:N/A:P |
| Access Vector | Local |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Partial |
SUSE Security Advisories:
- SUSE-SA:2005:036, published Fri, 24 Jun 2005 12:01:00
- SUSE-SR:2005:013, published Wed, 18 May 2005 15:00:00 +0000
- SUSE-SR:2005:014, published Tue, 07 Jun 2005 14:00:00 +0000
- SUSE-SR:2005:015, published Tue, 07 Jun 2005 12:00:00 +0000
- SUSE-SR:2005:016, published Fri, 17 Jun 2005 14:00:00 +0000
SUSE Timeline for this CVE
CVE page created: Fri Jun 28 01:18:12 2013CVE page last modified: Tue Sep 17 15:10:11 2024