Oval Definition:oval:org.mitre.oval:def:10235
Revision Date:2013-04-29Version:12
Title:Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.
Description:Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-6067
Platform(s):CentOS Linux 4
CentOS Linux 5
Oracle Linux 4
Oracle Linux 5
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • OS Section: RHEL4, CentOS4, Oracle Linux 4
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND Configuration section
  • postgresql is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-docs is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-pl is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-tcl is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-libs is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-contrib is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-python is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-test is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-jdbc is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-server is earlier than 0:7.4.19-1.el4_6.1
  • OR postgresql-devel is earlier than 0:7.4.19-1.el4_6.1
  • OR OS Section: RHEL5, CentOS5, Oracle Linux 5
  • RHEL5, CentOS5 or Oracle Linux 5
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • OR Oracle Linux 5.x
  • AND Configuration section
  • postgresql is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-docs is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-pl is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-tcl is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-libs is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-contrib is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-python is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-test is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-server is earlier than 0:8.1.11-1.el5_1.1
  • OR postgresql-devel is earlier than 0:8.1.11-1.el5_1.1
    • BACK