SSL Certificate Verification Vulnerability in PostgreSQL by PostgreSQL Global Development Group
CVE-2012-0867
Currently unrated
What is CVE-2012-0867?
The vulnerability arises from a flaw in the SSL certificate verification process within specific versions of PostgreSQL, where the common name is truncated to 32 characters. This flaw could allow remote attackers to spoof SSL connections to the database server if the hostname matches the limited length, posing a risk to the integrity of secure communications on affected systems.
