KLA11092
Denial of service vulnerability in PostgreSQL

Updated: 06/03/2020
Detect date
?
08/10/2017
Severity
?
Warning
Description

A missing permssion check in the lo_put() function was found in PostgreSQL. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely by overwriting contents of the entire large object.

Affected products

PostgreSQL 9.4.x before 9.4.13
PostgreSQL 9.5.x before 9.5.8
PostgreSQL 9.6.x before 9.6.4

Solution

Update to the latest version
Download PostgreSQL

Original advisories

PostgreSQL Security Update Release

Impacts
?
DoS 
[?]
Related products
PostgreSQL
CVE-IDS
?
CVE-2017-75484.0Warning
Find out the statistics of the vulnerabilities spreading in your region