ubuntu · CVE-2015-0243

Quick triage

Priority: medium Published: 2015-02-06 00:00:00 UTC Updated: 2025-08-25 21:31:21 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-0243 medium priority: Ubuntu including 4 source packages (postgresql-8.4, postgresql-9.1, postgresql-9.3, postgresql-9.4), 40 status rows across 10 suites (lucid, precise, trusty, upstream, utopic, vivid, wily, xenial, yakkety, zesty): DNE 28, released 8, ignored 2, not-affected 2.

Description:

Multiple buffer overflows in contrib/pgcrypto in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

cvelogic Threat Intelligence