CVE Vulnerabilities

CVE-2007-4772

Published: Jan 09, 2008 | Modified: Oct 09, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.

Affected Software

Name Vendor Start Version End Version
Postgresql Postgresql 7.4 *
Postgresql Postgresql 8.0 *
Postgresql Postgresql 8.1 *
Postgresql Postgresql 8.2 *
Tcl/tk Tcl * *

References