Login
Newsletter
Werbung
Sicherheit: Denial of Service in postgresql
Aktuelle Meldungen Distributionen
Name: Denial of Service in postgresql
ID: TLSA-2009-14
Distribution: TurboLinux
Plattformen: Turbolinux Client 2008, Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 11 Server x64 Edition, Turbolinux 11 Server, Turbolinux Appliance Server 3.0, Turbolinux Appliance Server 3.0 x64 Edition
Datum: Mi, 13. Mai 2009, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0922
Applikationen: PostgreSQL

Originalnachricht

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2009-14
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 12 May 2009
 Last revised: 12 May 2009

 Package: postgresql

 Summary: postgresql denial of service

 More information:
    The OpenSSL Project is a collaborative effort to develop a robust,
    commercial-grade, full-featured Open Source toolkit implementing the
    Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1)
    protocols as well as a full-strength general purpose cryptography library.

    PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote
    authenticated users to cause a denial of service (stack consumption and
 crash)
    by triggering a failure in the conversion of a localized error message to a
 
    client-specified encoding, as demonstrated using mismatched encoding
 conversion requests. (CVE-2009-0922)

 Affected Products:
    - Turbolinux Client 2008
    - Turbolinux Appliance Server 3.0 x64 Edition
    - Turbolinux Appliance Server 3.0
    - Turbolinux 11 Server x64 Edition
    - Turbolinux 11 Server
    - Turbolinux Appliance Server 2.0
    - Turbolinux FUJI
    - Turbolinux 10 Server x64 Edition
    - Turbolinux 10 Server


 <Turbolinux Client 2008>

   Source Packages
   Size: MD5

   postgresql-8.2.6-3.src.rpm
     18815421 69186bc02ccc86808016395fb9a0ca39

   Binary Packages
   Size: MD5

   postgresql-8.2.6-3.i586.rpm
      3154036 c6a208efa934d938a167dad8b465661a
   postgresql-devel-8.2.6-3.i586.rpm
      1280973 bf1e135d833ace706b6254201f807a09
   postgresql-libs-8.2.6-3.i586.rpm
       214511 6c6d255f6bfa85543e22b994390fda70

 <Turbolinux Appliance Server 3.0 x64 Edition>

   Source Packages
   Size: MD5

   postgresql-8.2.6-3.src.rpm
     18901391 6dbb8671497baeaa217ab802391e725b

   Binary Packages
   Size: MD5

   postgresql-8.2.6-3.x86_64.rpm
      3799715 f71f14a951d2f070d697938cbbd9f26f
   postgresql-contrib-8.2.6-3.x86_64.rpm
      1446974 f9938c1b0673c60e05198b39a66da35f
   postgresql-devel-8.2.6-3.x86_64.rpm
      1419314 4997e364881ef17c91d1030cb3c94786
   postgresql-libs-8.2.6-3.x86_64.rpm
       448221 032ba7a4ff81452e04024f14fe036e1a
   postgresql-plperl-8.2.6-3.x86_64.rpm
       746607 36eaf9d5764fd3698ef850da8c5ac5a8
   postgresql-plpython-8.2.6-3.x86_64.rpm
        82567 1df1cd90830c295dfbacae2fc8845c57
   postgresql-python-8.2.6-3.x86_64.rpm
       105703 91cac7319c3cf0d824d01d61ed81a4ba
   postgresql-server-8.2.6-3.x86_64.rpm
      7874611 c7bce2b7cb1e921b5b0b1e47c0c89444
   postgresql-test-8.2.6-3.x86_64.rpm
      1254134 02234e0da10d8474056bb83957ed2859

 <Turbolinux Appliance Server 3.0>

   Source Packages
   Size: MD5

   postgresql-8.2.6-3.src.rpm
     18901391 6dbb8671497baeaa217ab802391e725b

   Binary Packages
   Size: MD5

   postgresql-8.2.6-3.i686.rpm
      3185324 fc0804807f4197dd42137fb974300b11
   postgresql-contrib-8.2.6-3.i686.rpm
       498314 dae0790b04fee1631f470002c46526e0
   postgresql-devel-8.2.6-3.i686.rpm
      1272907 c0335ba77e74cfa796d539146f7fcadb
   postgresql-libs-8.2.6-3.i686.rpm
       201493 0ca39da5ffccb714fad9399500af8a22
   postgresql-plperl-8.2.6-3.i686.rpm
       606492 fa92ae1b2f0a0b2b0631b5c549e48a31
   postgresql-plpython-8.2.6-3.i686.rpm
        41067 69b8fead860bfed2948bf9bef258a9bb
   postgresql-python-8.2.6-3.i686.rpm
        76110 538278272d52359bbd7f4eed3f56850e
   postgresql-server-8.2.6-3.i686.rpm
      4263769 1dd3cb4076de3f0a6a5b5ce524d73780
   postgresql-test-8.2.6-3.i686.rpm
      1226981 84588c8984d077a4548c58775ed00577

 <Turbolinux 11 Server x64 Edition>

   Source Packages
   Size: MD5

   postgresql-8.2.6-3.src.rpm
     18815009 8f152c107a0300b2b799e8d44aa5bcd1
   postgresql-libs-32bit-8.2.6-3.src.rpm
       418259 46ee2b7cbc5832d297b4ca878a738b6b

   Binary Packages
   Size: MD5

   postgresql-8.2.6-3.x86_64.rpm
      3799715 f71f14a951d2f070d697938cbbd9f26f
   postgresql-contrib-8.2.6-3.x86_64.rpm
      1446974 f9938c1b0673c60e05198b39a66da35f
   postgresql-devel-8.2.6-3.x86_64.rpm
      1419314 4997e364881ef17c91d1030cb3c94786
   postgresql-libs-32bit-8.2.6-3.x86_64.rpm
       117979 d6657db505197c247b33919caa8bcce5
   postgresql-libs-8.2.6-3.x86_64.rpm
       448221 032ba7a4ff81452e04024f14fe036e1a
   postgresql-plperl-8.2.6-3.x86_64.rpm
       746607 36eaf9d5764fd3698ef850da8c5ac5a8
   postgresql-plpython-8.2.6-3.x86_64.rpm
        82567 1df1cd90830c295dfbacae2fc8845c57
   postgresql-python-8.2.6-3.x86_64.rpm
       105703 91cac7319c3cf0d824d01d61ed81a4ba
   postgresql-server-8.2.6-3.x86_64.rpm
      7874611 c7bce2b7cb1e921b5b0b1e47c0c89444
   postgresql-test-8.2.6-3.x86_64.rpm
      1254134 02234e0da10d8474056bb83957ed2859

 <Turbolinux 11 Server>

   Source Packages
   Size: MD5

   postgresql-8.2.6-3.src.rpm
     18901391 6dbb8671497baeaa217ab802391e725b

   Binary Packages
   Size: MD5

   postgresql-8.2.6-3.i686.rpm
      3185324 fc0804807f4197dd42137fb974300b11
   postgresql-contrib-8.2.6-3.i686.rpm
       498314 dae0790b04fee1631f470002c46526e0
   postgresql-devel-8.2.6-3.i686.rpm
      1272907 c0335ba77e74cfa796d539146f7fcadb
   postgresql-libs-8.2.6-3.i686.rpm
       201493 0ca39da5ffccb714fad9399500af8a22
   postgresql-plperl-8.2.6-3.i686.rpm
       606492 fa92ae1b2f0a0b2b0631b5c549e48a31
   postgresql-plpython-8.2.6-3.i686.rpm
        41067 69b8fead860bfed2948bf9bef258a9bb
   postgresql-python-8.2.6-3.i686.rpm
        76110 538278272d52359bbd7f4eed3f56850e
   postgresql-server-8.2.6-3.i686.rpm
      4263769 1dd3cb4076de3f0a6a5b5ce524d73780
   postgresql-test-8.2.6-3.i686.rpm
      1226981 84588c8984d077a4548c58775ed00577

 <Turbolinux Appliance Server 2.0>

   Source Packages
   Size: MD5

   postgresql-7.4.25-1.src.rpm
     12372378 051160bdb15b657ceec365b300f47598

   Binary Packages
   Size: MD5

   postgresql-7.4.25-1.i586.rpm
      1363136 e51c06d07405b9110ab7705020b943c1
   postgresql-contrib-7.4.25-1.i586.rpm
      3759104 76fa59da4e1daacd014c398e50259b65
   postgresql-devel-7.4.25-1.i586.rpm
       861182 45dd05b45e3b1d229cb7ba5113da3ad3
   postgresql-jdbc-7.4.25-1.i586.rpm
       696214 7f6cc52a3be12223e233f6a47247c820
   postgresql-libs-7.4.25-1.i586.rpm
       123802 2cd51316bf2c7ae9c75ec8468b60c61a
   postgresql-odbc-7.4.25-1.i586.rpm
       138243 5c08a2fab1210387a53158a8b6ff2b09
   postgresql-perl-7.4.25-1.i586.rpm
       611041 de9465a5b2069ef9ef910a731d9469a5
   postgresql-python-7.4.25-1.i586.rpm
       414597 9fb69f9b9a7e5b2ced269d62c0b80b1b
   postgresql-server-7.4.25-1.i586.rpm
      2451785 667d387e149b967f3708079fcb79a706
   postgresql-tcl-7.4.25-1.i586.rpm
        53073 2beef9d1a05c715efce39869b35e2f60
   postgresql-tk-7.4.25-1.i586.rpm
        24398 ebfd1f06356f177044fed19d3f068273

 <Turbolinux FUJI>

   Source Packages
   Size: MD5

   postgresql-8.0.15-3.src.rpm
     13397128 4d51bbdde7e88130ccc628d24d2e40ef

   Binary Packages
   Size: MD5

   postgresql-libs-8.0.15-3.i686.rpm
      2600601 5f51d48cdf5e43e8b6d1af27f14e345a

 <Turbolinux 10 Server x64 Edition>

   Source Packages
   Size: MD5

   postgresql-8.0.15-3.src.rpm
     13352880 7ac32af5d4b71c8b35fe2a195e7b8d48
   postgresql-libs-32bit-8.0.15-3.src.rpm
      2506477 05152a922e8e0f9236fb0224df5cdd7e

   Binary Packages
   Size: MD5

   postgresql-8.0.15-3.x86_64.rpm
       625654 9ba15bd1aa6c3c44a9cf31376fbf163b
   postgresql-contrib-8.0.15-3.x86_64.rpm
      4502633 285ad6a973bac44b66ce710290ca4949
   postgresql-devel-8.0.15-3.x86_64.rpm
       677109 2622e68b950a49036be140d6b7969283
   postgresql-docs-8.0.15-3.x86_64.rpm
      1268973 9517150d0492b5fcefad724d6f2b88b6
   postgresql-jdbc-8.0.15-3.x86_64.rpm
       870149 92b8b2299a7ba7978d935c0dcb4567b2
   postgresql-libs-32bit-8.0.15-3.x86_64.rpm
      2669325 fd66faa55f9a294040b750899e55f080
   postgresql-libs-8.0.15-3.x86_64.rpm
      2826327 954394cb4356d0df626c990842e0430a
   postgresql-odbc-8.0.15-3.x86_64.rpm
       171165 96479605b369ae6f802d208a83a5f7b7
   postgresql-perl-8.0.15-3.x86_64.rpm
       625040 6985a937713e5b7c44023a1d301a31c4
   postgresql-python-8.0.15-3.x86_64.rpm
       469837 816cc7e0510ec006203bc32a0384fe77
   postgresql-server-8.0.15-3.x86_64.rpm
      2910121 c62adce57031f61edd03787f8ec21863
   postgresql-tcl-8.0.15-3.x86_64.rpm
        39896 283e8a5c730ef9c54d46b6902fdbfe83
   postgresql-test-8.0.15-3.x86_64.rpm
      1001857 3ba06be446b2cea042288cb6e8a98e68
   postgresql-tk-8.0.15-3.x86_64.rpm
        20882 a88ebe7727a40467e630540248592c56

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   postgresql-7.4.25-1.src.rpm
     12372378 051160bdb15b657ceec365b300f47598

   Binary Packages
   Size: MD5

   postgresql-7.4.25-1.i586.rpm
      1363136 e51c06d07405b9110ab7705020b943c1
   postgresql-contrib-7.4.25-1.i586.rpm
      3759104 76fa59da4e1daacd014c398e50259b65
   postgresql-docs-7.4.25-1.i586.rpm
      1112776 4034d630c3fdd20b830f28ffe97c7366
   postgresql-devel-7.4.25-1.i586.rpm
       861182 45dd05b45e3b1d229cb7ba5113da3ad3
   postgresql-jdbc-7.4.25-1.i586.rpm
       696214 7f6cc52a3be12223e233f6a47247c820
   postgresql-libs-7.4.25-1.i586.rpm
       123802 2cd51316bf2c7ae9c75ec8468b60c61a
   postgresql-odbc-7.4.25-1.i586.rpm
       138243 5c08a2fab1210387a53158a8b6ff2b09
   postgresql-perl-7.4.25-1.i586.rpm
       611041 de9465a5b2069ef9ef910a731d9469a5
   postgresql-python-7.4.25-1.i586.rpm
       414597 9fb69f9b9a7e5b2ced269d62c0b80b1b
   postgresql-server-7.4.25-1.i586.rpm
      2451785 667d387e149b967f3708079fcb79a706
   postgresql-tcl-7.4.25-1.i586.rpm
        53073 2beef9d1a05c715efce39869b35e2f60
   postgresql-test-7.4.25-1.i586.rpm
       928340 72c98d0ec57658b8c40625f09c2c3ee1
   postgresql-tk-7.4.25-1.i586.rpm
        24398 ebfd1f06356f177044fed19d3f068273


 References:

 CVE
   [CVE-2009-0922]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0922

 --------------------------------------------------------------------------
 Revision History
    12 May 2009 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2009 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)

iEYEARECAAYFAkoJR1QACgkQK0LzjOqIJMy6GgCgnz0mn+KjJRSewLvMXeM7vOJL
2DMAoJT59i2nZbyaP+dbmmY2egIF0e5s
=VeX7
-----END PGP SIGNATURE-----
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung