Ubuntu
pgbouncer package

  1. Bug #1083414
  2. Comment #4

Comment 4 for bug 1083414

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package pgbouncer - 1.5.2-2ubuntu0.1

---------------
pgbouncer (1.5.2-2ubuntu0.1) quantal-security; urgency=low

  * SECURITY UPDATE: denial of service when too long db name is provided
    (LP: #1083414)
    - debian/patches/1-CVE-2012-4575.patch: objects.c(add_database): fail
      gracefully if too long db name. Based on upstream patch.
    - CVE-2012-4575
 -- Christian Kuersteiner <email address hidden> Mon, 03 Dec 2012 13:53:28 +0700