CVE-2006-0678

Publication date 14 February 2006

Last updated 24 July 2024


Ubuntu priority

PostgreSQL 7.3.x before 7.3.14, 7.4.x before 7.4.12, 8.0.x before 8.0.7, and 8.1.x before 8.1.3, when compiled with Asserts enabled, allows local users to cause a denial of service (server crash) via a crafted SET SESSION AUTHORIZATION command, a different vulnerability than CVE-2006-0553.

Status

Package Ubuntu Release Status
postgresql 7.04 feisty Not in release
6.10 edgy
Not affected
6.06 LTS dapper
Not affected
postgresql-7.4 7.04 feisty Not in release
6.10 edgy
Fixed 7.4.12-3
6.06 LTS dapper
Fixed 7.4.12-3
postgresql-8.0 7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper
Fixed 8.0.7-2build1

References

Related Ubuntu Security Notices (USN)

    • USN-258-1
    • PostgreSQL vulnerability
    • 27 February 2006

Other references