Login
Newsletter
Werbung
Sicherheit: Denial of Service in postgresql
Aktuelle Meldungen Distributionen
Name: Denial of Service in postgresql
ID: TLSA-2006-36
Distribution: TurboLinux
Plattformen: Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0
Datum: Mi, 8. November 2006, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5540
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5541
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5542
Applikationen: PostgreSQL

Originalnachricht

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2006-36
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 07 Nov 2006
 Last revised: 07 Nov 2006

 Package: postgresql

 Summary: postgresql denial of service attack

 More information:
    PostgreSQL is an advanced Object-Relational database management system
    (DBMS) that supports almost all SQL constructs.
    These vulnerabilities may allow remote attackers to cause a denial of
 service.

 Impact:
    The postgresql allows remote attackers to cause a denial of service.

 Affected Products:
    - Turbolinux Appliance Server 2.0
    - Turbolinux 10 Server x64 Edition
    - Turbolinux 10 Server


 <Turbolinux Appliance Server 2.0>

   Source Packages
   Size: MD5

   postgresql-7.4.14-1.src.rpm
     12262953 79990aee0c0a477d11316c2f35aff4c3

   Binary Packages
   Size: MD5

   postgresql-7.4.14-1.i586.rpm
      1319171 04bdc5b91c690b1c623daf4b21e1a547
   postgresql-contrib-7.4.14-1.i586.rpm
      3746374 27c73055555ed5e752a944ae2cd87253
   postgresql-devel-7.4.14-1.i586.rpm
       859475 a1d4b9a260f7ef361e04e769d32a3e31
   postgresql-jdbc-7.4.14-1.i586.rpm
       695799 cec8230ac75f3216cbb28dda53589a52
   postgresql-libs-7.4.14-1.i586.rpm
       123502 5f7d2ccafad5cdbc36ee99322ab4c90a
   postgresql-odbc-7.4.14-1.i586.rpm
       138664 1bd1b506adfd1f06982f156bd35ddc21
   postgresql-perl-7.4.14-1.i586.rpm
       610622 99ff5dc2057e3255b7bd5bf3b027efcb
   postgresql-python-7.4.14-1.i586.rpm
       414321 3bf303eed8a254eab2dc747bc085a845
   postgresql-server-7.4.14-1.i586.rpm
      2449919 d89f29b33f5fdd9ba1f60656e90405fb
   postgresql-tcl-7.4.14-1.i586.rpm
        52715 e4a8b162ce3094b58acfdcda99751945
   postgresql-tk-7.4.14-1.i586.rpm
        24019 cc4df3f6533f4989d822745a66ee6041

 <Turbolinux 10 Server x64 Edition> 

   Source Packages
   Size: MD5

   postgresql-8.0.9-1.src.rpm
     13251278 b9053b2b956d8873b82502742cf9dee1

   Binary Packages
   Size: MD5

   postgresql-8.0.9-1.x86_64.rpm
       618180 5d313ff2fea5667404cfa254f166070e
   postgresql-contrib-8.0.9-1.x86_64.rpm
      4503340 cc428dcf242d716d9df24230123699c6
   postgresql-devel-8.0.9-1.x86_64.rpm
       675302 1f099622beb3f824d5368c680a57c302
   postgresql-docs-8.0.9-1.x86_64.rpm
      1261438 637afbd7d60d6806ab20f887ad239667
   postgresql-jdbc-8.0.9-1.x86_64.rpm
       869870 0e0623417a3f8b95aee5ebf402ebd208
   postgresql-libs-8.0.9-1.x86_64.rpm
      2827007 d51c1b1052e1fd838a436a452234af8d
   postgresql-odbc-8.0.9-1.x86_64.rpm
       170882 e4e89ed9f4b210206ed31e3b50478368
   postgresql-perl-8.0.9-1.x86_64.rpm
       625111 a02a2e1e26b6b6d7b0d23ae76fbee57f
   postgresql-python-8.0.9-1.x86_64.rpm
       469563 5f6785206e84f2dd923e329966d4c6b7
   postgresql-server-8.0.9-1.x86_64.rpm
      2908626 34e8d45c611366106022f7ce57df2551
   postgresql-tcl-8.0.9-1.x86_64.rpm
        39619 eff02fa7d7b735f01f4c56897941403e
   postgresql-test-8.0.9-1.x86_64.rpm
       999097 34392e91485740d3e8eb2de82b48608a
   postgresql-tk-8.0.9-1.x86_64.rpm
        20621 5cdcb43b6f5179b93d6f4bb063c041d2

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   postgresql-7.4.14-1.src.rpm
     12262953 79990aee0c0a477d11316c2f35aff4c3

   Binary Packages
   Size: MD5

   postgresql-7.4.14-1.i586.rpm
      1319171 04bdc5b91c690b1c623daf4b21e1a547
   postgresql-contrib-7.4.14-1.i586.rpm
      3746374 27c73055555ed5e752a944ae2cd87253
   postgresql-docs-7.4.14-1.i586.rpm
      1084125 45440006dc9bbe37e0d63aa9e00f3091
   postgresql-devel-7.4.14-1.i586.rpm
       859475 a1d4b9a260f7ef361e04e769d32a3e31
   postgresql-jdbc-7.4.14-1.i586.rpm
       695799 cec8230ac75f3216cbb28dda53589a52
   postgresql-libs-7.4.14-1.i586.rpm
       123502 5f7d2ccafad5cdbc36ee99322ab4c90a
   postgresql-odbc-7.4.14-1.i586.rpm
       138664 1bd1b506adfd1f06982f156bd35ddc21
   postgresql-perl-7.4.14-1.i586.rpm
       610622 99ff5dc2057e3255b7bd5bf3b027efcb
   postgresql-python-7.4.14-1.i586.rpm
       414321 3bf303eed8a254eab2dc747bc085a845
   postgresql-server-7.4.14-1.i586.rpm
      2449919 d89f29b33f5fdd9ba1f60656e90405fb
   postgresql-tcl-7.4.14-1.i586.rpm
        52715 e4a8b162ce3094b58acfdcda99751945
   postgresql-test-7.4.14-1.i586.rpm
       925939 c2c1e218bdc923482414ea7e8b415497
   postgresql-tk-7.4.14-1.i586.rpm
        24019 cc4df3f6533f4989d822745a66ee6041


 References:

 CVE
   [CVE-2006-5540]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5540
   [CVE-2006-5541]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5541
   [CVE-2006-5542]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5542

 --------------------------------------------------------------------------
 Revision History
    07 Nov 2006 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2006 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFFUEvaK0LzjOqIJMwRAtEmAJ9z2l/0U2l0VEjE1dHE5oAwG4eoLgCfXpxv
4RrwbSnnJVbPfwPhYDuwqj4=
=TuKI
-----END PGP SIGNATURE-----
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung