KLA11092
Denial of service vulnerability in PostgreSQL
Updated: 08/28/2017
CVSS
?
4.0
Detect date
?
08/10/2017
Severity
?
Warning
Description

A missing permssion check in the lo_put() function was found in PostgreSQL. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely by overwriting contents of the entire large object.

Affected products

PostgreSQL 9.4.x before 9.4.13
PostgreSQL 9.5.x before 9.5.8
PostgreSQL 9.6.x before 9.6.4

Solution

Update to the latest version
Download PostgreSQL

Original advisories

PostgreSQL Security Update Release

Impacts
?
DoS 
[?]
Related products
PostgreSQL
CVE-IDS
?

CVE-2017-7548