Ubuntu
pgbouncer package

  1. Bug #1083414
  2. Comment #8

Comment 8 for bug 1083414

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package pgbouncer - 1.4.2-2ubuntu0.1

---------------
pgbouncer (1.4.2-2ubuntu0.1) precise-security; urgency=low

  * SECURITY UPDATE: denial of service when too long db name is provided
    (LP: #1083414)
    - debian/patches/2-CVE-2012-4575.patch: objects.c(add_database): fail
      gracefully if too long db name. Based on upstream patch.
    - CVE-2012-4575
 -- Christian Kuersteiner <email address hidden> Tue, 04 Dec 2012 22:21:56 +0700