PostgreSQL字符串填充函数本地缓冲区溢出漏洞(CNVD-2002-3889)

admin
admin
admin
0
文章
0
评论
2023-12-26 12:06:49 Ali_nonvd 来源:ZONE.CI 全球网 0 阅读模式
PostgreSQL字符串填充函数本地缓冲区溢出漏洞(CNVD-2002-3889)

CVE编号

N/A

利用情况

暂无

补丁情况

N/A

披露时间

2002-10-21
漏洞描述
PostgreSQL是一款增强对象-关系数据库管理程序,支持SQL标准子集扩展,适用于多种操作系统下。PostgreSQL字符串填充函数对用户提交的输入缺少正确处理,本地攻击者可以利用这个漏洞进行缓冲区溢出攻击,导致权限提升。src/backend/utils/adt/oracle_compat.c文件中的lpad()和rpad()函数用于对已经存在的字符串填补到一定长度。这两个函数没有正确处理用户提交的超长的整数参数,可导致缓冲区破坏,精心构建提交的参数可以提升权限。这个漏洞只影响使用特殊通用编码建立的数据,如使用"UNICODE"编码建立的数据库存在此问题。
解决建议
Conectiva---------Conectiva已经为此发布了一个安全公告(CLA-2002:524)以及相应补丁:CLA-2002:524:postgresql链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000524补丁下载:ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/postgresql-7.0.3-11U60_2cl.src.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-clients-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-clients-X11-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-devel-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-devel-static-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-doc-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-jdbc-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-lib-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-odbc-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-perl-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-python-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-tcl-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/6.0/RPMS/postgresql-test-7.0.3-11U60_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/SRPMS/postgresql-7.1.3-1U70_3cl.src.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-clients-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-clients-X11-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-contrib-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-devel-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-devel-static-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-doc-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-lib-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-odbc-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-perl-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-python-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-tcl-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/7.0/RPMS/postgresql-test-7.1.3-1U70_3cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/SRPMS/postgresql-7.2.2-1U80_2cl.src.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-clients-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-clients-X11-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-contrib-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-devel-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-devel-static-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-doc-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-lib-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-odbc-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-perl-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-python-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-tcl-7.2.2-1U80_2cl.i386.rpmftp://atualizacoes.conectiva.com.br/8/RPMS/postgresql-test-7.2.2-1U80_2cl.i386.rpmConectiva Linux version 6.0及以上版本的用户可以使用apt进行RPM包的更新:- 把以下的文本行加入到/etc/apt/sources.list文件中:rpm [cncbr] ftp://atualizacoes.conectiva.com.br 6.0/conectiva updates(如果你不是使用6.0版本,用合适的版本号代替上面的6.0)- 执行: apt-get update- 更新以后,再执行: apt-get upgradeDebian------Debian已经为此发布了一个安全公告(DSA-165-1)以及相应补丁:DSA-165-1:New PostgreSQL packages fix several vulnerabilities链接:http://www.debian.org/security/2002/dsa-165补丁下载:Source archives:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2.dscSize/MD5 checksum: 898 0c0e93f2ccf5ce9facc4a465b6292cd8http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2.diff.gzSize/MD5 checksum: 156968 5f2ef24ed154bd4de57dc5726ac3cc86http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3.orig.tar.gzSize/MD5 checksum: 6833791 098d1ee4316500a2d033ced3ebd5b831Architecture independent components:http://security.debian.org/pool/updates/main/p/postgresql/postgresql-doc_6.5.3-27.2_all.debSize/MD5 checksum: 2174496 79be7470e7ed11d31a42fc39c9a2d31cAlpha architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_alpha.debSize/MD5 checksum: 881594 8e998e45147625c1193cdd2d76ce2180http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_alpha.debSize/MD5 checksum: 99800 de594d91602d7488e15b17c791177b3chttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_alpha.debSize/MD5 checksum: 105720 fb4db53673387a3d2316be3c2c712553http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_alpha.debSize/MD5 checksum: 263928 9236097a2fd2563f553eddc1837dcec0ARM architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_arm.debSize/MD5 checksum: 722526 007e62202fdc2e90e035089dffd72b14http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_arm.debSize/MD5 checksum: 89978 fcf9df5c2492ab78004327e001ef2c1fhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_arm.debSize/MD5 checksum: 97820 01a66c480ee709733b28fe052f2c2374http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_arm.debSize/MD5 checksum: 239052 971adf428f0eb32f57e6ac028f653c2dIntel IA-32 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_i386.debSize/MD5 checksum: 687334 8b448ec3a6c1e6cd52bca10b5cc48cc3http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_i386.debSize/MD5 checksum: 88128 4d3b874a135665ff355001fada0fddefhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_i386.debSize/MD5 checksum: 95942 0ebcebc831c984a7b18d61cbed5875a0http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_i386.debSize/MD5 checksum: 233256 a15449922f2ac541b2ef6c5d108c9e80Motorola 680x0 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_m68k.debSize/MD5 checksum: 648568 04bfd07630393444bf0fe0fe9cddec46http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_m68k.debSize/MD5 checksum: 83542 13ff333a8d436d4c35a9edbcf609c695http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_m68k.debSize/MD5 checksum: 95810 dbe390fa02b7e6fd8c851504e9ee038fhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_m68k.debSize/MD5 checksum: 231918 20a4eb3180cae532ecbcd0746606c324PowerPC architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_powerpc.debSize/MD5 checksum: 730152 1e02e009522175777d1e07baadf19278http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_powerpc.debSize/MD5 checksum: 87736 3ebcf8ca5a0865b5098cd38a5bd21330http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_powerpc.debSize/MD5 checksum: 99108 f18306dbdc39f59fec68ebe698200b24http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_powerpc.debSize/MD5 checksum: 251990 c55b7e233046b78b82f14312b3bd7ef5Sun Sparc architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_6.5.3-27.2_sparc.debSize/MD5 checksum: 715944 7508c6790fa0a27d2c1f0e3aeee05a7ahttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_6.5.3-27.2_sparc.debSize/MD5 checksum: 94714 764b44e5556ddf84f8bbabc76932d3f2http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_6.5.3-27.2_sparc.debSize/MD5 checksum: 99438 7f9e005d970e914886a796733e8fb9d7http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_6.5.3-27.2_sparc.debSize/MD5 checksum: 235090 412d135c6f5b2f811ca1829fc58971ccDebian GNU/Linux 3.0 alias woody- --------------------------------Source archives:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2.dscSize/MD5 checksum: 966 608f67b79934e98459ca278879f6b742http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2.diff.gzSize/MD5 checksum: 108324 c02c93a8b361d3da4c0703aeb68618bahttp://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1.orig.tar.gzSize/MD5 checksum: 9237680 d075e9c49135899645dff57bc58d6233Architecture independent components:http://security.debian.org/pool/updates/main/p/postgresql/postgresql-doc_7.2.1-2woody2_all.debSize/MD5 checksum: 1962362 e881e3b62e524dcfd36fc20624939ab5Alpha architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_alpha.debSize/MD5 checksum: 1816268 50ac206e7e3493b672014f6ecc70010dhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_alpha.debSize/MD5 checksum: 319026 130d19aee5351f6411c8af835ddbf7bchttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_alpha.debSize/MD5 checksum: 386660 ec7f4c9403549db4664722aea7e68f3dhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_alpha.debSize/MD5 checksum: 539598 426361b14677071337cda4782720b7e1ARM architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_arm.debSize/MD5 checksum: 1599594 2bb62ee39fdb23117a668a42efbf61e0http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_arm.debSize/MD5 checksum: 284670 b570f4e391beba66b94bed46e238b210http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_arm.debSize/MD5 checksum: 340194 279f464364be344e21122cefbb409e49http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_arm.debSize/MD5 checksum: 509944 2997e961cad38ebaed1462885a33964eIntel IA-32 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_i386.debSize/MD5 checksum: 1550462 57b8949853a7b1b85b91c40e0ff6f50fhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_i386.debSize/MD5 checksum: 280466 d0322e0e9297ed7f93e742c3a7c87e3ehttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_i386.debSize/MD5 checksum: 329492 a499acbee40aee5044a9777f6f208cf0http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_i386.debSize/MD5 checksum: 495648 4cbe718afd5717d2b463a799a7963c48Intel IA-64 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_ia64.debSize/MD5 checksum: 2091424 ae4a192a487d27d92365905e6b6a140chttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_ia64.debSize/MD5 checksum: 362760 2f369d4f74f31c0ee49f253ace0ba341http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_ia64.debSize/MD5 checksum: 434010 97aa15eaf45c8126455410832aace650http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_ia64.debSize/MD5 checksum: 554460 cc2b261cbc7d74395955787538ee1be4HP Precision architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_hppa.debSize/MD5 checksum: 1825936 d4123b1fb38be1b5f590c7647ac67d09http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_hppa.debSize/MD5 checksum: 303976 2ed721a638cc122e9df2c7c8d9c3136chttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_hppa.debSize/MD5 checksum: 371292 eca7dda3a5770e9559431c91591bd011http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_hppa.debSize/MD5 checksum: 523432 39037260439d1a0e7657057081b025acMotorola 680x0 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_m68k.debSize/MD5 checksum: 1582574 0821e366132154d678a265eb905fafeahttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_m68k.debSize/MD5 checksum: 269228 4f0d8a52aab71f35ed927ecb8b459a04http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_m68k.debSize/MD5 checksum: 324506 defc39e7b301a0e8e3eaa31e95f44bd1http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_m68k.debSize/MD5 checksum: 489576 d0e07f1c808bcea4b079ee666af89e18Big endian MIPS architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_mips.debSize/MD5 checksum: 1749892 038f144371c532a7054310ebafc0fabfhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_mips.debSize/MD5 checksum: 293452 5f2933c441851dc091e5fd3689883333http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_mips.debSize/MD5 checksum: 343074 88123045ac6311fcaf75a04123d99a11http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_mips.debSize/MD5 checksum: 514694 87275f4241190fef029bd5550b1bc60fLittle endian MIPS architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_mipsel.debSize/MD5 checksum: 1661496 549f289431252de4a3f568e70ea239aahttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_mipsel.debSize/MD5 checksum: 293778 cd3985f57d9146bf029e8b1341305ba3http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_mipsel.debSize/MD5 checksum: 342846 27b7dc830124cd7172da925d2cd41a28http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_mipsel.debSize/MD5 checksum: 511992 ce6368fcf94ea24f99b03ed966ae3a1bPowerPC architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_powerpc.debSize/MD5 checksum: 1700298 110f547a75ef7e029cf0a85f6d0371b4http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_powerpc.debSize/MD5 checksum: 287804 89157efe96d18948dc2be1e3197c6ce8http://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_powerpc.debSize/MD5 checksum: 341156 62010d6c0229a9be34dfadba6d596a27http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_powerpc.debSize/MD5 checksum: 510338 62a64b00fa3d6778684e9d09ea1a7184IBM S/390 architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_s390.debSize/MD5 checksum: 1655658 338ea4946f02a733a5847fa21691a69bhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_s390.debSize/MD5 checksum: 281394 7d1dd1d5cc597d0a4cd3ce4fce711c1fhttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_s390.debSize/MD5 checksum: 337208 cbecafbcf64329be5f1427c1dfd53611http://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_s390.debSize/MD5 checksum: 500784 b96c9bc7ef7f7f6af453c97bc1847c3dSun Sparc architecture:http://security.debian.org/pool/updates/main/p/postgresql/postgresql_7.2.1-2woody2_sparc.debSize/MD5 checksum: 1671132 f7ce98738c9fffd61d249b25e85e64d4http://security.debian.org/pool/updates/main/p/postgresql/postgresql-client_7.2.1-2woody2_sparc.debSize/MD5 checksum: 288190 ed62e7c92a30fd818e4758ab5c37ceaahttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-contrib_7.2.1-2woody2_sparc.debSize/MD5 checksum: 370490 7416f29f108b2583a040c0211d2050achttp://security.debian.org/pool/updates/main/p/postgresql/postgresql-dev_7.2.1-2woody2_sparc.debSize/MD5 checksum: 501558 8c0f2688e7cdc815c49b88a2772c3cebPlease note that all python source packages produce more binarypackages than the ones listed above. They are not relevant for thefixed problems, though.补丁安装方法:1. 手工安装补丁包:首先,使用下面的命令来下载补丁软件:# wget url (url是补丁下载链接地址然后,使用下面的命令来安装补丁:# dpkg -i file.deb (file是相应的补丁名2. 使用apt-get自动安装补丁包:首先,使用下面的命令更新内部数据库:# apt-get update然后,使用下面的命令安装更新软件包:# apt-get upgradeFreeBSD-------FreeBSD已经为此发布了一个安全公告(FreeBSD-SN-02:05)以及相应补丁:FreeBSD-SN-02:05:security issues in ports链接:ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.ascS.u.S.E.--------S.u.S.E.已经为此发布了一个安全公告(SuSE-SA:2002:038)以及相应补丁:SuSE-SA:2002:038:postgresql链接:http://www.suse.com/de/security/2002_038_postgresql.html补丁下载:i386 Intel Platform:SuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap2/postgresql-libs-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap2/postgresql-libs-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-contrib-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-contrib-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-devel-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-devel-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-docs-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-docs-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-jdbc-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-jdbc-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-odbc-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-odbc-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-perl-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-perl-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-python-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-python-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-server-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-server-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-tcl-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-tcl-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-test-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-test-7.2-103.i386.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-tk-7.2-103.i386.patch.rpmSuSE-8.0ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap3/postgresql-tk-7.2-103.i386.rpmsource rpm:ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/postgresql-7.2-103.src.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap2/postgresql-libs-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-contrib-7.1.3-116.i386.rpmfd4de823cfc05743a9919eaedfSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-devel-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-docs-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-jdbc-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-odbc-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-perl-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-python-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-server-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-tcl-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-test-7.1.3-116.i386.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/i386/update/7.3/ap3/postgresql-tk-7.1.3-116.i386.rpmsource rpm:ftp://ftp.suse.com/pub/suse/i386/update/7.3/zq1/postgresql-7.1.3-116.src.rpmSparc Platform:Due to lack of resources new packages will be made available later withoutany further notice.AXP Alpha Platform:Due to lack of resources new packages will be made available later withoutany further notice.PPC Power PC Platform:SuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap2/postgresql-libs-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-contrib-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-devel-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-docs-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-jdbc-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-odbc-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-perl-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-python-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-server-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-tcl-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-test-7.1.3-95.ppc.rpmSuSE-7.3ftp://ftp.suse.com/pub/suse/ppc/update/7.3/ap3/postgresql-tk-7.1.3-95.ppc.rpmsource rpm:ftp://ftp.suse.com/pub/suse/ppc/update/7.3/zq1/postgresql-7.1.3-95.src.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-devel-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-jdbc-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-lib-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-odbc-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-perl-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-python-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-server-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-tcl-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-test-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap2/postgresql-tk-7.0.3-23.ppc.rpmSuSE-7.1ftp://ftp.suse.com/pub/suse/ppc/update/7.1/ap3/postgresql-7.0.3-23.ppc.rpmsource rpm:ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/postgresql-7.0.3-23.src.rpm补丁安装方法:用“rpm -Fhv file.rpm”命令安装文件,完成后,如果rsync服务是用inetd启动的,向inetd进程发送信号重启之。如果rsync是用“rsync --daemon”命令启动的,则再用此命令重启rsync服务。
参考链接
https://www.cnvd.org.cn/flaw/show/CNVD-2002-3889
CVSS3评分 N/A
  • 攻击路径 N/A
  • 攻击复杂度 N/A
  • 权限要求 N/A
  • 影响范围 N/A
  • 用户交互 N/A
  • 可用性 N/A
  • 保密性 N/A
  • 完整性 N/A
N/A
CWE-ID 漏洞类型
- avd.aliyun.com
weinxin
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网
安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
安全领域涉猎者-乌云独行地带
ZONE.CI 全球网
评论:0   参与:  0