4 - USN-369-2

Executive Summary

Summary
Title	postgresql-8.1 vulnerabilities

Informations
Name	USN-369-2	First vendor Publication	2006-11-01
Vendor	Ubuntu	Last vendor Modification	2006-11-01
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:N/I:N/A:P)
Cvss Base Score	4	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	8	Authentication	Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects the following Ubuntu releases:

Ubuntu 6.10

This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the following package versions:

Ubuntu 6.10:
postgresql-8.1 8.1.4-7ubuntu0.1

In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

USN-369-1 fixed three minor PostgreSQL 8.1 vulnerabilities for Ubuntu 6.06 LTS. This update provides the corresponding update for Ubuntu 6.10.

Original advisory details:

Michael Fuhr discovered an incorrect type check when handling unknown
literals. By attempting to coerce such a literal to the ANYARRAY type,
a local authenticated attacker could cause a server crash. (CVE-2006-5541)

Josh Drake and Alvaro Herrera reported a crash when using aggregate
functions in UPDATE statements. A local authenticated attacker could
exploit this to crash the server backend. This update disables this
construct, since it is not very well defined and forbidden by the SQL
standard. (CVE-2006-5540)

Sergey Koposov discovered a flaw in the duration logging. This could
cause a server crash under certain circumstances. (CVE-2006-5542)

Please note that these flaws can usually not be exploited through web
and other applications that use a database and are exposed to
untrusted input, so these flaws do not pose a threat in usual setups.

Original Source

Url : http://www.ubuntu.com/usn/USN-369-2

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10122

Oval ID:	oval:org.mitre.oval:def:10122
Title:	backend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) related to duration logging of V3-protocol Execute messages for (1) COMMIT and (2) ROLLBACK SQL statements.
Description:	backend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) related to duration logging of V3-protocol Execute messages for (1) COMMIT and (2) ROLLBACK SQL statements.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-5542	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section postgresql is earlier than 0:8.1.8-1.el5 AND postgresql-docs is earlier than 0:8.1.8-1.el5 AND postgresql-pl is earlier than 0:8.1.8-1.el5 AND postgresql-tcl is earlier than 0:8.1.8-1.el5 AND postgresql-libs is earlier than 0:8.1.8-1.el5 AND postgresql-contrib is earlier than 0:8.1.8-1.el5 AND postgresql-python is earlier than 0:8.1.8-1.el5 AND postgresql-test is earlier than 0:8.1.8-1.el5 AND postgresql-server is earlier than 0:8.1.8-1.el5 AND postgresql-devel is earlier than 0:8.1.8-1.el5

Definition Id: oval:org.mitre.oval:def:10905

Oval ID:	oval:org.mitre.oval:def:10905
Title:	backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.
Description:	backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-5541	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section postgresql is earlier than 0:8.1.8-1.el5 AND postgresql-docs is earlier than 0:8.1.8-1.el5 AND postgresql-pl is earlier than 0:8.1.8-1.el5 AND postgresql-tcl is earlier than 0:8.1.8-1.el5 AND postgresql-libs is earlier than 0:8.1.8-1.el5 AND postgresql-contrib is earlier than 0:8.1.8-1.el5 AND postgresql-python is earlier than 0:8.1.8-1.el5 AND postgresql-test is earlier than 0:8.1.8-1.el5 AND postgresql-server is earlier than 0:8.1.8-1.el5 AND postgresql-devel is earlier than 0:8.1.8-1.el5

Definition Id: oval:org.mitre.oval:def:11425

Oval ID:	oval:org.mitre.oval:def:11425
Title:	backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization."
Description:	backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-5540	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section rh-postgresql-devel is earlier than 0:7.3.18-1 AND rh-postgresql-server is earlier than 0:7.3.18-1 AND rh-postgresql-python is earlier than 0:7.3.18-1 AND rh-postgresql-libs is earlier than 0:7.3.18-1 AND rh-postgresql-docs is earlier than 0:7.3.18-1 AND rh-postgresql-test is earlier than 0:7.3.18-1 AND rh-postgresql-pl is earlier than 0:7.3.18-1 AND rh-postgresql-tcl is earlier than 0:7.3.18-1 AND rh-postgresql is earlier than 0:7.3.18-1 AND rh-postgresql-contrib is earlier than 0:7.3.18-1 AND rh-postgresql-jdbc is earlier than 0:7.3.18-1 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section postgresql is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-docs is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-pl is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-tcl is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-libs is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-contrib is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-python is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-test is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-jdbc is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-server is earlier than 0:7.4.16-1.RHEL4.1 AND postgresql-devel is earlier than 0:7.4.16-1.RHEL4.1 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section postgresql is earlier than 0:8.1.8-1.el5 AND postgresql-docs is earlier than 0:8.1.8-1.el5 AND postgresql-pl is earlier than 0:8.1.8-1.el5 AND postgresql-tcl is earlier than 0:8.1.8-1.el5 AND postgresql-libs is earlier than 0:8.1.8-1.el5 AND postgresql-contrib is earlier than 0:8.1.8-1.el5 AND postgresql-python is earlier than 0:8.1.8-1.el5 AND postgresql-test is earlier than 0:8.1.8-1.el5 AND postgresql-server is earlier than 0:8.1.8-1.el5 AND postgresql-devel is earlier than 0:8.1.8-1.el5

CPE : Common Platform Enumeration

Type	Description	Count
Application	Postgresql cpe:2.3:a:postgresql:postgresql:8.1.4:::::::* cpe:2.3:a:postgresql:postgresql:8.1.3:::::::* cpe:2.3:a:postgresql:postgresql:8.1.2:::::::* cpe:2.3:a:postgresql:postgresql:8.1.1:::::::* cpe:2.3:a:postgresql:postgresql:8.1.0:::::::* cpe:2.3:a:postgresql:postgresql:8.1:::::::* cpe:2.3:a:postgresql:postgresql:8.0.9:::::::* cpe:2.3:a:postgresql:postgresql:8.0.8:::::::* cpe:2.3:a:postgresql:postgresql:8.0.7:::::::* cpe:2.3:a:postgresql:postgresql:8.0.6:::::::* cpe:2.3:a:postgresql:postgresql:8.0.5:::::::* cpe:2.3:a:postgresql:postgresql:8.0.4:::::::* cpe:2.3:a:postgresql:postgresql:8.0.317:::::::* cpe:2.3:a:postgresql:postgresql:8.0.3:::::::* cpe:2.3:a:postgresql:postgresql:8.0.26:::::::* cpe:2.3:a:postgresql:postgresql:8.0.25:::::::* cpe:2.3:a:postgresql:postgresql:8.0.24:::::::* cpe:2.3:a:postgresql:postgresql:8.0.23:::::::* cpe:2.3:a:postgresql:postgresql:8.0.22:::::::* cpe:2.3:a:postgresql:postgresql:8.0.21:::::::* cpe:2.3:a:postgresql:postgresql:8.0.20:::::::* cpe:2.3:a:postgresql:postgresql:8.0.2:::::::* cpe:2.3:a:postgresql:postgresql:8.0.19:::::::* cpe:2.3:a:postgresql:postgresql:8.0.18:::::::* cpe:2.3:a:postgresql:postgresql:8.0.17:::::::* cpe:2.3:a:postgresql:postgresql:8.0.16:::::::* cpe:2.3:a:postgresql:postgresql:8.0.15:::::::* cpe:2.3:a:postgresql:postgresql:8.0.14:::::::* cpe:2.3:a:postgresql:postgresql:8.0.13:::::::* cpe:2.3:a:postgresql:postgresql:8.0.12:::::::* cpe:2.3:a:postgresql:postgresql:8.0.11:::::::* cpe:2.3:a:postgresql:postgresql:8.0.10:::::::* cpe:2.3:a:postgresql:postgresql:8.0.1:::::::* cpe:2.3:a:postgresql:postgresql:8.0.0:::::::* cpe:2.3:a:postgresql:postgresql:8.0:::::::* cpe:2.3:a:postgresql:postgresql:7.4.9:::::::* cpe:2.3:a:postgresql:postgresql:7.4.8:::::::* cpe:2.3:a:postgresql:postgresql:7.4.7:::::::* cpe:2.3:a:postgresql:postgresql:7.4.6:::::::* cpe:2.3:a:postgresql:postgresql:7.4.5:::::::* cpe:2.3:a:postgresql:postgresql:7.4.4:::::::* cpe:2.3:a:postgresql:postgresql:7.4.30:::::::* cpe:2.3:a:postgresql:postgresql:7.4.3:::::::* cpe:2.3:a:postgresql:postgresql:7.4.29:::::::* cpe:2.3:a:postgresql:postgresql:7.4.28:::::::* cpe:2.3:a:postgresql:postgresql:7.4.27:::::::* cpe:2.3:a:postgresql:postgresql:7.4.26:::::::* cpe:2.3:a:postgresql:postgresql:7.4.25:::::::* cpe:2.3:a:postgresql:postgresql:7.4.24:::::::* cpe:2.3:a:postgresql:postgresql:7.4.23:::::::* cpe:2.3:a:postgresql:postgresql:7.4.22:::::::* cpe:2.3:a:postgresql:postgresql:7.4.21:::::::* cpe:2.3:a:postgresql:postgresql:7.4.20:::::::* cpe:2.3:a:postgresql:postgresql:7.4.2:::::::* cpe:2.3:a:postgresql:postgresql:7.4.19:::::::* cpe:2.3:a:postgresql:postgresql:7.4.18:::::::* cpe:2.3:a:postgresql:postgresql:7.4.17:::::::* cpe:2.3:a:postgresql:postgresql:7.4.16:::::::* cpe:2.3:a:postgresql:postgresql:7.4.15:::::::* cpe:2.3:a:postgresql:postgresql:7.4.14:::::::* cpe:2.3:a:postgresql:postgresql:7.4.13:::::::* cpe:2.3:a:postgresql:postgresql:7.4.12:::::::* cpe:2.3:a:postgresql:postgresql:7.4.11:::::::* cpe:2.3:a:postgresql:postgresql:7.4.10:::::::* cpe:2.3:a:postgresql:postgresql:7.4.1:::::::* cpe:2.3:a:postgresql:postgresql:7.4:::::::* cpe:2.3:a:postgresql:postgresql:7.3.9:::::::* cpe:2.3:a:postgresql:postgresql:7.3.8:::::::* cpe:2.3:a:postgresql:postgresql:7.3.7:::::::* cpe:2.3:a:postgresql:postgresql:7.3.6:::::::* cpe:2.3:a:postgresql:postgresql:7.3.5:::::::* cpe:2.3:a:postgresql:postgresql:7.3.4:::::::* cpe:2.3:a:postgresql:postgresql:7.3.3:::::::* cpe:2.3:a:postgresql:postgresql:7.3.21:::::::* cpe:2.3:a:postgresql:postgresql:7.3.20:::::::* cpe:2.3:a:postgresql:postgresql:7.3.2:::::::* cpe:2.3:a:postgresql:postgresql:7.3.19:::::::* cpe:2.3:a:postgresql:postgresql:7.3.18:::::::* cpe:2.3:a:postgresql:postgresql:7.3.17:::::::* cpe:2.3:a:postgresql:postgresql:7.3.16:::::::* cpe:2.3:a:postgresql:postgresql:7.3.15:::::::* cpe:2.3:a:postgresql:postgresql:7.3.14:::::::* cpe:2.3:a:postgresql:postgresql:7.3.13:::::::* cpe:2.3:a:postgresql:postgresql:7.3.12:::::::* cpe:2.3:a:postgresql:postgresql:7.3.11:::::::* cpe:2.3:a:postgresql:postgresql:7.3.10:::::::* cpe:2.3:a:postgresql:postgresql:7.3.1:::::::* cpe:2.3:a:postgresql:postgresql:7.3.0:::::::* cpe:2.3:a:postgresql:postgresql:7.3:::::::* cpe:2.3:a:postgresql:postgresql:7.2.8:::::::* cpe:2.3:a:postgresql:postgresql:7.2.7:::::::* cpe:2.3:a:postgresql:postgresql:7.2.6:::::::* cpe:2.3:a:postgresql:postgresql:7.2.5:::::::* cpe:2.3:a:postgresql:postgresql:7.2.4:::::::* cpe:2.3:a:postgresql:postgresql:7.2.3:::::::* cpe:2.3:a:postgresql:postgresql:7.2.2:::::::* cpe:2.3:a:postgresql:postgresql:7.2.1:::::::* cpe:2.3:a:postgresql:postgresql:7.2:::::::* cpe:2.3:a:postgresql:postgresql:7.1.3:::::::* cpe:2.3:a:postgresql:postgresql:7.1.2:::::::* cpe:2.3:a:postgresql:postgresql:7.1.1:::::::* cpe:2.3:a:postgresql:postgresql:7.1:::::::* cpe:2.3:a:postgresql:postgresql:7.0.3:::::::* cpe:2.3:a:postgresql:postgresql:7.0.2:::::::* cpe:2.3:a:postgresql:postgresql:7.0.1:::::::* cpe:2.3:a:postgresql:postgresql:7.0:::::::* cpe:2.3:a:postgresql:postgresql:6.5.3.1:::::::* cpe:2.3:a:postgresql:postgresql:6.5.3:::::::* cpe:2.3:a:postgresql:postgresql:6.5.2:::::::* cpe:2.3:a:postgresql:postgresql:6.5.1:::::::* cpe:2.3:a:postgresql:postgresql:6.5.0:::::::* cpe:2.3:a:postgresql:postgresql:6.5:::::::* cpe:2.3:a:postgresql:postgresql:6.4.2:::::::* cpe:2.3:a:postgresql:postgresql:6.4.1:::::::* cpe:2.3:a:postgresql:postgresql:6.4:::::::* cpe:2.3:a:postgresql:postgresql:6.3.2:::::::* cpe:2.3:a:postgresql:postgresql:6.3.1:::::::* cpe:2.3:a:postgresql:postgresql:6.3:::::::* cpe:2.3:a:postgresql:postgresql:6.2.1:::::::* cpe:2.3:a:postgresql:postgresql:6.2:::::::* cpe:2.3:a:postgresql:postgresql:6.1.1:::::::* cpe:2.3:a:postgresql:postgresql:6.1:::::::* cpe:2.3:a:postgresql:postgresql:6.0:::::::* cpe:2.3:a:postgresql:postgresql:1.09:::::::* cpe:2.3:a:postgresql:postgresql:1.08:::::::* cpe:2.3:a:postgresql:postgresql:1.02:::::::* cpe:2.3:a:postgresql:postgresql:1.01:::::::* cpe:2.3:a:postgresql:postgresql:1.0:::::::* cpe:2.3:a:postgresql:postgresql:::::::: cpe:2.3:a:postgresql:postgresql:-:::::debian:: cpe:2.3:a:postgresql:postgresql:-:::::ubuntu:: cpe:2.3:a:postgresql:postgresql:-:::::::*	132

OpenVAS Exploits

Date	Description
2009-10-10	Name : SLES9: Security update for PostgreSQL File : nvt/sles9p5020025.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
30020	PostgreSQL ANYARRAY Unknown Literal Handling DoS
30019	PostgreSQL V3-protocol Execute Message Logging DoS
30018	PostgreSQL UPDATE Statement Aggregate Functions DoS

Nessus® Vulnerability Scanner

Date	Description
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2007-0064.nasl - Type : ACT_GATHER_INFO
2007-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_postgresql-2276.nasl - Type : ACT_GATHER_INFO
2007-11-10	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-369-1.nasl - Type : ACT_GATHER_INFO
2007-11-10	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-369-2.nasl - Type : ACT_GATHER_INFO
2007-05-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0068.nasl - Type : ACT_GATHER_INFO
2007-02-18	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-194.nasl - Type : ACT_GATHER_INFO
2007-02-09	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0064.nasl - Type : ACT_GATHER_INFO
2007-02-09	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0064.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 12:03:53	Multiple Updates
2013-05-11 12:25:39	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	3
CPE ID(s)	132
osvdb(s)	3
Openvas Exploit(s)	1
Nessus® Exploit(s)	8

	Related
4	USN-369-1
4	CVE-2006-5542
4	CVE-2006-5541
4	CVE-2006-5540
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 4 more Alert(s)

4 - USN-369-2

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU