Ubuntu
pgbouncer package

  1. Bug #1083414
  2. Comment #9

Comment 9 for bug 1083414

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package pgbouncer - 1.4.2-1ubuntu0.1

---------------
pgbouncer (1.4.2-1ubuntu0.1) oneiric-security; urgency=low

  * SECURITY UPDATE: denial of service when too long db name is provided
    (LP: #1083414)
    - debian/patches/3-CVE-2012-4575.patch: objects.c(add_database): fail
      gracefully if too long db name. Based on upstream patch.
    - CVE-2012-4575
 -- Christian Kuersteiner <email address hidden> Thu, 06 Dec 2012 12:46:08 +0700