CVE-2015-0241 — Classic Buffer Overflow in Postgresql

CWE-120 — Classic Buffer Overflow CWE-122 — Heap-based Buffer Overflow10 documents8 sources

Severity

8.8HIGHNVD

EPSS

6.3%

top 9.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Postgresql Postgresql Global Development Group Postgresql Debian Linux

Timeline

PublishedJan 27

Latest updateMay 24

Description

The to_char function in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a (1) large number of digits when processing a numeric formatting template, which triggers a buffer over-read, or (2) crafted timestamp formatting template, which triggers a buffer overflow.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDpostgresql/postgresql9.1.0 — 9.1.15+4

▶CVEListV5postgresql_global_development_group/postgresql5 versions+4

Also affects: Debian Linux 7.0, 8.0

🔴Vulnerability Details

GHSA

GHSA-h47p-j4vf-9qhf: The to_char function in PostgreSQL before 9↗2022-05-24

▶

CVEList

CVE-2015-0241: The to_char function in PostgreSQL before 9↗2020-01-27

▶

OSV

postgresql-8.4, postgresql-9.1, postgresql-9.3, postgresql-9.4 vulnerabilities↗2015-02-11

▶

OSV

CVE-2015-0241: The to_char function in PostgreSQL before 9↗2015-02-06

▶

📋Vendor Advisories

Red Hat

postgresql: buffer overflow in the to_char() function↗2015-02-16

▶

Ubuntu

PostgreSQL vulnerabilities↗2015-02-11

▶

Apple

CVE-2015-0241: OS X Server v5.0.3↗

▶

Apple

CVE-2015-0241: OS X Yosemite v10.10.5 and Security Update 2015-006↗

▶

💬Community

Bugzilla

CVE-2015-0241 postgresql: buffer overflow in the to_char() function↗2015-02-03

▶