drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in postgresql
Name: |
Denial of Service in postgresql |
|
ID: |
TLSA-2009-14 |
|
Distribution: |
TurboLinux |
|
Plattformen: |
Turbolinux Client 2008, Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 11 Server x64 Edition, Turbolinux 11 Server, Turbolinux Appliance Server 3.0, Turbolinux Appliance Server 3.0 x64 Edition |
|
Datum: |
Mi, 13. Mai 2009, 03:50 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0922 |
|
Applikationen: |
PostgreSQL |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
-------------------------------------------------------------------------- Turbolinux Security Advisory TLSA-2009-14 http://www.turbolinux.co.jp/security/ security-team@turbolinux.co.jp --------------------------------------------------------------------------
Original released date: 12 May 2009 Last revised: 12 May 2009
Package: postgresql
Summary: postgresql denial of service
More information: The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library.
PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified encoding, as demonstrated using mismatched encoding conversion requests. (CVE-2009-0922)
Affected Products: - Turbolinux Client 2008 - Turbolinux Appliance Server 3.0 x64 Edition - Turbolinux Appliance Server 3.0 - Turbolinux 11 Server x64 Edition - Turbolinux 11 Server - Turbolinux Appliance Server 2.0 - Turbolinux FUJI - Turbolinux 10 Server x64 Edition - Turbolinux 10 Server
<Turbolinux Client 2008>
Source Packages Size: MD5
postgresql-8.2.6-3.src.rpm 18815421 69186bc02ccc86808016395fb9a0ca39
Binary Packages Size: MD5
postgresql-8.2.6-3.i586.rpm 3154036 c6a208efa934d938a167dad8b465661a postgresql-devel-8.2.6-3.i586.rpm 1280973 bf1e135d833ace706b6254201f807a09 postgresql-libs-8.2.6-3.i586.rpm 214511 6c6d255f6bfa85543e22b994390fda70
<Turbolinux Appliance Server 3.0 x64 Edition>
Source Packages Size: MD5
postgresql-8.2.6-3.src.rpm 18901391 6dbb8671497baeaa217ab802391e725b
Binary Packages Size: MD5
postgresql-8.2.6-3.x86_64.rpm 3799715 f71f14a951d2f070d697938cbbd9f26f postgresql-contrib-8.2.6-3.x86_64.rpm 1446974 f9938c1b0673c60e05198b39a66da35f postgresql-devel-8.2.6-3.x86_64.rpm 1419314 4997e364881ef17c91d1030cb3c94786 postgresql-libs-8.2.6-3.x86_64.rpm 448221 032ba7a4ff81452e04024f14fe036e1a postgresql-plperl-8.2.6-3.x86_64.rpm 746607 36eaf9d5764fd3698ef850da8c5ac5a8 postgresql-plpython-8.2.6-3.x86_64.rpm 82567 1df1cd90830c295dfbacae2fc8845c57 postgresql-python-8.2.6-3.x86_64.rpm 105703 91cac7319c3cf0d824d01d61ed81a4ba postgresql-server-8.2.6-3.x86_64.rpm 7874611 c7bce2b7cb1e921b5b0b1e47c0c89444 postgresql-test-8.2.6-3.x86_64.rpm 1254134 02234e0da10d8474056bb83957ed2859
<Turbolinux Appliance Server 3.0>
Source Packages Size: MD5
postgresql-8.2.6-3.src.rpm 18901391 6dbb8671497baeaa217ab802391e725b
Binary Packages Size: MD5
postgresql-8.2.6-3.i686.rpm 3185324 fc0804807f4197dd42137fb974300b11 postgresql-contrib-8.2.6-3.i686.rpm 498314 dae0790b04fee1631f470002c46526e0 postgresql-devel-8.2.6-3.i686.rpm 1272907 c0335ba77e74cfa796d539146f7fcadb postgresql-libs-8.2.6-3.i686.rpm 201493 0ca39da5ffccb714fad9399500af8a22 postgresql-plperl-8.2.6-3.i686.rpm 606492 fa92ae1b2f0a0b2b0631b5c549e48a31 postgresql-plpython-8.2.6-3.i686.rpm 41067 69b8fead860bfed2948bf9bef258a9bb postgresql-python-8.2.6-3.i686.rpm 76110 538278272d52359bbd7f4eed3f56850e postgresql-server-8.2.6-3.i686.rpm 4263769 1dd3cb4076de3f0a6a5b5ce524d73780 postgresql-test-8.2.6-3.i686.rpm 1226981 84588c8984d077a4548c58775ed00577
<Turbolinux 11 Server x64 Edition>
Source Packages Size: MD5
postgresql-8.2.6-3.src.rpm 18815009 8f152c107a0300b2b799e8d44aa5bcd1 postgresql-libs-32bit-8.2.6-3.src.rpm 418259 46ee2b7cbc5832d297b4ca878a738b6b
Binary Packages Size: MD5
postgresql-8.2.6-3.x86_64.rpm 3799715 f71f14a951d2f070d697938cbbd9f26f postgresql-contrib-8.2.6-3.x86_64.rpm 1446974 f9938c1b0673c60e05198b39a66da35f postgresql-devel-8.2.6-3.x86_64.rpm 1419314 4997e364881ef17c91d1030cb3c94786 postgresql-libs-32bit-8.2.6-3.x86_64.rpm 117979 d6657db505197c247b33919caa8bcce5 postgresql-libs-8.2.6-3.x86_64.rpm 448221 032ba7a4ff81452e04024f14fe036e1a postgresql-plperl-8.2.6-3.x86_64.rpm 746607 36eaf9d5764fd3698ef850da8c5ac5a8 postgresql-plpython-8.2.6-3.x86_64.rpm 82567 1df1cd90830c295dfbacae2fc8845c57 postgresql-python-8.2.6-3.x86_64.rpm 105703 91cac7319c3cf0d824d01d61ed81a4ba postgresql-server-8.2.6-3.x86_64.rpm 7874611 c7bce2b7cb1e921b5b0b1e47c0c89444 postgresql-test-8.2.6-3.x86_64.rpm 1254134 02234e0da10d8474056bb83957ed2859
<Turbolinux 11 Server>
Source Packages Size: MD5
postgresql-8.2.6-3.src.rpm 18901391 6dbb8671497baeaa217ab802391e725b
Binary Packages Size: MD5
postgresql-8.2.6-3.i686.rpm 3185324 fc0804807f4197dd42137fb974300b11 postgresql-contrib-8.2.6-3.i686.rpm 498314 dae0790b04fee1631f470002c46526e0 postgresql-devel-8.2.6-3.i686.rpm 1272907 c0335ba77e74cfa796d539146f7fcadb postgresql-libs-8.2.6-3.i686.rpm 201493 0ca39da5ffccb714fad9399500af8a22 postgresql-plperl-8.2.6-3.i686.rpm 606492 fa92ae1b2f0a0b2b0631b5c549e48a31 postgresql-plpython-8.2.6-3.i686.rpm 41067 69b8fead860bfed2948bf9bef258a9bb postgresql-python-8.2.6-3.i686.rpm 76110 538278272d52359bbd7f4eed3f56850e postgresql-server-8.2.6-3.i686.rpm 4263769 1dd3cb4076de3f0a6a5b5ce524d73780 postgresql-test-8.2.6-3.i686.rpm 1226981 84588c8984d077a4548c58775ed00577
<Turbolinux Appliance Server 2.0>
Source Packages Size: MD5
postgresql-7.4.25-1.src.rpm 12372378 051160bdb15b657ceec365b300f47598
Binary Packages Size: MD5
postgresql-7.4.25-1.i586.rpm 1363136 e51c06d07405b9110ab7705020b943c1 postgresql-contrib-7.4.25-1.i586.rpm 3759104 76fa59da4e1daacd014c398e50259b65 postgresql-devel-7.4.25-1.i586.rpm 861182 45dd05b45e3b1d229cb7ba5113da3ad3 postgresql-jdbc-7.4.25-1.i586.rpm 696214 7f6cc52a3be12223e233f6a47247c820 postgresql-libs-7.4.25-1.i586.rpm 123802 2cd51316bf2c7ae9c75ec8468b60c61a postgresql-odbc-7.4.25-1.i586.rpm 138243 5c08a2fab1210387a53158a8b6ff2b09 postgresql-perl-7.4.25-1.i586.rpm 611041 de9465a5b2069ef9ef910a731d9469a5 postgresql-python-7.4.25-1.i586.rpm 414597 9fb69f9b9a7e5b2ced269d62c0b80b1b postgresql-server-7.4.25-1.i586.rpm 2451785 667d387e149b967f3708079fcb79a706 postgresql-tcl-7.4.25-1.i586.rpm 53073 2beef9d1a05c715efce39869b35e2f60 postgresql-tk-7.4.25-1.i586.rpm 24398 ebfd1f06356f177044fed19d3f068273
<Turbolinux FUJI>
Source Packages Size: MD5
postgresql-8.0.15-3.src.rpm 13397128 4d51bbdde7e88130ccc628d24d2e40ef
Binary Packages Size: MD5
postgresql-libs-8.0.15-3.i686.rpm 2600601 5f51d48cdf5e43e8b6d1af27f14e345a
<Turbolinux 10 Server x64 Edition>
Source Packages Size: MD5
postgresql-8.0.15-3.src.rpm 13352880 7ac32af5d4b71c8b35fe2a195e7b8d48 postgresql-libs-32bit-8.0.15-3.src.rpm 2506477 05152a922e8e0f9236fb0224df5cdd7e
Binary Packages Size: MD5
postgresql-8.0.15-3.x86_64.rpm 625654 9ba15bd1aa6c3c44a9cf31376fbf163b postgresql-contrib-8.0.15-3.x86_64.rpm 4502633 285ad6a973bac44b66ce710290ca4949 postgresql-devel-8.0.15-3.x86_64.rpm 677109 2622e68b950a49036be140d6b7969283 postgresql-docs-8.0.15-3.x86_64.rpm 1268973 9517150d0492b5fcefad724d6f2b88b6 postgresql-jdbc-8.0.15-3.x86_64.rpm 870149 92b8b2299a7ba7978d935c0dcb4567b2 postgresql-libs-32bit-8.0.15-3.x86_64.rpm 2669325 fd66faa55f9a294040b750899e55f080 postgresql-libs-8.0.15-3.x86_64.rpm 2826327 954394cb4356d0df626c990842e0430a postgresql-odbc-8.0.15-3.x86_64.rpm 171165 96479605b369ae6f802d208a83a5f7b7 postgresql-perl-8.0.15-3.x86_64.rpm 625040 6985a937713e5b7c44023a1d301a31c4 postgresql-python-8.0.15-3.x86_64.rpm 469837 816cc7e0510ec006203bc32a0384fe77 postgresql-server-8.0.15-3.x86_64.rpm 2910121 c62adce57031f61edd03787f8ec21863 postgresql-tcl-8.0.15-3.x86_64.rpm 39896 283e8a5c730ef9c54d46b6902fdbfe83 postgresql-test-8.0.15-3.x86_64.rpm 1001857 3ba06be446b2cea042288cb6e8a98e68 postgresql-tk-8.0.15-3.x86_64.rpm 20882 a88ebe7727a40467e630540248592c56
<Turbolinux 10 Server>
Source Packages Size: MD5
postgresql-7.4.25-1.src.rpm 12372378 051160bdb15b657ceec365b300f47598
Binary Packages Size: MD5
postgresql-7.4.25-1.i586.rpm 1363136 e51c06d07405b9110ab7705020b943c1 postgresql-contrib-7.4.25-1.i586.rpm 3759104 76fa59da4e1daacd014c398e50259b65 postgresql-docs-7.4.25-1.i586.rpm 1112776 4034d630c3fdd20b830f28ffe97c7366 postgresql-devel-7.4.25-1.i586.rpm 861182 45dd05b45e3b1d229cb7ba5113da3ad3 postgresql-jdbc-7.4.25-1.i586.rpm 696214 7f6cc52a3be12223e233f6a47247c820 postgresql-libs-7.4.25-1.i586.rpm 123802 2cd51316bf2c7ae9c75ec8468b60c61a postgresql-odbc-7.4.25-1.i586.rpm 138243 5c08a2fab1210387a53158a8b6ff2b09 postgresql-perl-7.4.25-1.i586.rpm 611041 de9465a5b2069ef9ef910a731d9469a5 postgresql-python-7.4.25-1.i586.rpm 414597 9fb69f9b9a7e5b2ced269d62c0b80b1b postgresql-server-7.4.25-1.i586.rpm 2451785 667d387e149b967f3708079fcb79a706 postgresql-tcl-7.4.25-1.i586.rpm 53073 2beef9d1a05c715efce39869b35e2f60 postgresql-test-7.4.25-1.i586.rpm 928340 72c98d0ec57658b8c40625f09c2c3ee1 postgresql-tk-7.4.25-1.i586.rpm 24398 ebfd1f06356f177044fed19d3f068273
References:
CVE [CVE-2009-0922] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0922
-------------------------------------------------------------------------- Revision History 12 May 2009 Initial release --------------------------------------------------------------------------
Copyright(C) 2009 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux)
iEYEARECAAYFAkoJR1QACgkQK0LzjOqIJMy6GgCgnz0mn+KjJRSewLvMXeM7vOJL 2DMAoJT59i2nZbyaP+dbmmY2egIF0e5s =VeX7 -----END PGP SIGNATURE-----
|
|
|
|