[Bug 1083414] Re: DoS-Vulnerability in pgbouncer

Launchpad Bug Tracker Sat, 08 Dec 2012 05:15:42 -0800

This bug was fixed in the package pgbouncer - 1.4.2-2ubuntu0.1

---------------
pgbouncer (1.4.2-2ubuntu0.1) precise-security; urgency=low


  * SECURITY UPDATE: denial of service when too long db name is provided
    (LP: #1083414)
    - debian/patches/2-CVE-2012-4575.patch: objects.c(add_database): fail
      gracefully if too long db name. Based on upstream patch.
    - CVE-2012-4575
 -- Christian Kuersteiner <[email protected]>   Tue, 04 Dec 2012 22:21:56 +0700

** Changed in: pgbouncer (Ubuntu Precise)
       Status: Fix Committed => Fix Released

** Changed in: pgbouncer (Ubuntu Oneiric)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1083414

Title:
  DoS-Vulnerability in pgbouncer

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/pgbouncer/+bug/1083414/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1083414] Re: DoS-Vulnerability in pgbouncer

Reply via email to