CVE-2005-1409

Publication date 3 May 2005

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Description

PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the “Character conversion vulnerability.”

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
postgresql-8.1 7.04 feisty
Fixed 8.1.8-1ubuntu3
6.10 edgy
Fixed 8.1.9-0ubuntu0.6.10
6.06 LTS dapper
Fixed 8.1.9-0ubuntu0.6.06
postgresql 7.04 feisty Not in release
6.10 edgy
Not affected
6.06 LTS dapper
Not affected
postgresql-7.4 7.04 feisty Not in release
6.10 edgy
Fixed 7.4.12-3
6.06 LTS dapper
Fixed 7.4.12-3
postgresql-8.0 7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper
Fixed 8.0.7-2build1
postgresql-8.2 7.04 feisty
Fixed 8.2.4-0ubuntu0.7.04
6.10 edgy Not in release
6.06 LTS dapper Not in release
postgresql-common 7.04 feisty
Fixed 53ubuntu3
6.10 edgy
Fixed 53ubuntu3
6.06 LTS dapper
Fixed 53ubuntu3

References

Related Ubuntu Security Notices (USN)

    • USN-118-1
    • PostgreSQL vulnerabilities
    • 4 May 2005

Other references