PostgreSQL is prone to information-disclosure and denial-of-service vulnerabilities; fixes are available.An attacker can exploit these vulnerabilities to cause the backend database to crash and reveal sensitive information. This may lead to other attacks. These issues affect versions 8.0, 8.1, and 8.2. The second issue described also affects version 7.3 and 7.4.
Patches are available - a good reference is the following page on SecurityFocus:
http://www.securityfocus.com/bid/22387/solution
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment