backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Postgresql | Postgresql | 7.4 (including) | 7.4.14 (excluding) |
Postgresql | Postgresql | 8.0.0 (including) | 8.0.9 (excluding) |
Postgresql | Postgresql | 8.1.0 (including) | 8.1.5 (excluding) |
Red Hat Enterprise Linux 5 | RedHat | postgresql-0:8.1.8-1.el5 | * |
Red Hat Web Application Stack for RHEL 4 | RedHat | postgresql-0:8.1.7-3.el4s1.1 | * |
Postgresql-8.1 | Ubuntu | dapper | * |
Postgresql-8.1 | Ubuntu | devel | * |
Postgresql-8.1 | Ubuntu | edgy | * |
Postgresql-8.1 | Ubuntu | feisty | * |