2010-03-19 20:30:00 2017-09-19 03:30:28

Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with many LEFT JOIN clauses, related to certain hashtable size calculations.

Vector

NETWORK

Complexity

MEDIUM

Authentication

SINGLE_INSTANCE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL
PostgreSQL 8.1.6 PostgreSQL 8.3.5 PostgreSQL 8.1.7 PostgreSQL 8.3.6 PostgreSQL 8.1.8 PostgreSQL 8.3.7 PostgreSQL 8.1.9 PostgreSQL 8.3.8 PostgreSQL 8.1.20 PostgreSQL PostgreSQL 8.0.10 PostgreSQL PostgreSQL 8.0.19 Postgresql Postgresql 8.0.317 (not an official CPE) PostgreSQL 8.3.9 PostgreSQL PostgreSQL 8.0.11 PostgreSQL PostgreSQL 8.0.12 PostgreSQL PostgreSQL 8.0.13 PostgreSQL PostgreSQL 8.0.14 PostgreSQL PostgreSQL 8.0.15 PostgreSQL PostgreSQL 8.0.16 PostgreSQL PostgreSQL 8.0.17 PostgreSQL PostgreSQL 8.0.18 PostgreSQL 8.0 PostgreSQL 8.1 Postgresql Postgresql 8.1.0 (not an official CPE) PostgreSQL 8.1.1 PostgreSQL 8.1.10 PostgreSQL 8.1.11 PostgreSQL 8.1.2 Postgresql Postgresql 8.5 Alpha1 (not an official CPE) Postgresql Postgresql 8.5 Alpha2 (not an official CPE) PostgreSQL 8.1.12 PostgreSQL 8.1.13 PostgreSQL 8.1.14 PostgreSQL 8.1.15 PostgreSQL PostgreSQL 8.0.4 PostgreSQL 8.2.2 PostgreSQL 8.4.1 PostgreSQL PostgreSQL 8.0.5 PostgreSQL 8.2.3 PostgreSQL PostgreSQL 8.0.6 PostgreSQL 8.2.4 PostgreSQL PostgreSQL 8.0.7 PostgreSQL 8.2.5 PostgreSQL 8.2.6 PostgreSQL PostgreSQL 8.0.8 PostgreSQL 8.1.16 PostgreSQL 8.2.7 PostgreSQL PostgreSQL 8.0.9 PostgreSQL 8.1.17 PostgreSQL 8.2.8 PostgreSQL 8.1.18 PostgreSQL 8.1.19 PostgreSQL 8.2.9 PostgreSQL 8.4 Postgresql Postgresql 8.5 (not an official CPE) PostgreSQL 8.2 PostgreSQL 8.3 PostgreSQL 8.2.15 PostgreSQL 8.2.16 PostgreSQL 8.2.13 PostgreSQL 8.2.14 PostgreSQL 8.2.11 PostgreSQL 8.2.12 PostgreSQL 8.2.10 PostgreSQL 8.3.4 PostgreSQL 8.1.5 PostgreSQL 8.3.3 PostgreSQL 8.1.4 PostgreSQL 8.3.2 PostgreSQL 8.1.3 PostgreSQL 8.3.1 PostgreSQL PostgreSQL 8.0.23 PostgreSQL PostgreSQL 8.0.22 PostgreSQL PostgreSQL 8.0.3 PostgreSQL 8.2.1 PostgreSQL PostgreSQL 8.0.21 PostgreSQL PostgreSQL 8.0.20 PostgreSQL PostgreSQL 8.0.2 PostgreSQL PostgreSQL 8.0.1 PostgreSQL 8.3.10 Postgresql Postgresql 8.0.0 (not an official CPE)