Denial of Service Vulnerability in pgbouncer Pooler for PostgreSQL
CVE-2012-4575

Currently unrated

Key Information:

Vendor

Pgbouncer Project

Status
Pgbouncer
Vendor
CVE Published:
18 November 2012

What is CVE-2012-4575?

The pgbouncer pooler version 1.5.2 for PostgreSQL contains a vulnerability in the add_database function located in objects.c. This flaw allows remote attackers to exploit the system by sending a request that includes a long database name. Such requests can result in a denial of service by causing a daemon outage, disrupting access to database services. It is crucial for users and administrators of pgbouncer to be aware of this vulnerability to take preventive measures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/56371
vdb-entryx_refsource_BID
http://git.postgresql.org/gitweb/?p=pgbouncer.git%3Ba=com...
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=872527
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.