PostgreSQL Information Disclosure and Denial of Service Vulnerabilities

info
discussion
exploit
solution
references

PostgreSQL Information Disclosure and Denial of Service Vulnerabilities

PostgreSQL is prone to information-disclosure and denial-of-service vulnerabilities; fixes are available.

An attacker can exploit these vulnerabilities to cause the backend database to crash and reveal sensitive information. This may lead to other attacks.

These issues affect versions 8.0, 8.1, and 8.2. The second issue described also affects version 7.3 and 7.4.