diff options
| author | delphij <delphij@FreeBSD.org> | 2015-06-11 01:34:21 +0800 |
|---|---|---|
| committer | delphij <delphij@FreeBSD.org> | 2015-06-11 01:34:21 +0800 |
| commit | 883af28af2ca82701d9a19b43c7d7f8e0a44f90d (patch) | |
| tree | eba4b0fb5a4c76c43748600610ef10a8be439c2b /security | |
| parent | 4b786e1ecb3f83416554d0a643db1a17f6f16f00 (diff) | |
| download | freebsd-ports-gnome-883af28af2ca82701d9a19b43c7d7f8e0a44f90d.tar.gz freebsd-ports-gnome-883af28af2ca82701d9a19b43c7d7f8e0a44f90d.tar.zst freebsd-ports-gnome-883af28af2ca82701d9a19b43c7d7f8e0a44f90d.zip | |
Document pgbouncer remote denial of service vulnerability.
PR: 200537
Submitted by: Jason Unovitch
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 6be759f704a7..d7eb55aea837 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -57,6 +57,35 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="8fbd4187-0f18-11e5-b6a8-002590263bf5"> + <topic>pgbouncer -- remote denial of service</topic> + <affects> + <package> + <name>pgbouncer</name> + <range><lt>1.5.5</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>PgBouncer reports:</p> + <blockquote cite="https://pgbouncer.github.io/2015/04/pgbouncer-1-5-5/"> + <p>Fix remote crash - invalid packet order causes lookup of NULL pointer. Not + exploitable, just DoS.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2015-4054</cvename> + <url>https://pgbouncer.github.io/2015/04/pgbouncer-1-5-5/</url> + <mlist>http://www.openwall.com/lists/oss-security/2015/05/21/2</mlist> + <freebsdpr>200507</freebsdpr> + </references> + <dates> + <discovery>2015-04-08</discovery> + <entry>2015-06-10</entry> + </dates> + </vuln> + <vuln vid="a40ec970-0efa-11e5-90e4-d050996490d0"> <topic>cups -- multiple vulnerabilities</topic> <affects> |