PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Postgresql | Postgresql | 9.4 (including) | 9.4.13 (excluding) |
Postgresql | Postgresql | 9.5 (including) | 9.5.8 (excluding) |
Postgresql | Postgresql | 9.6 (including) | 9.6.4 (excluding) |