CVE-2005-1410

NONE EPSS 32.4%
Published May 3, 200521y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 3, 2005 21y ago
Last Modified Jun 16, 2026 2w ago

Description

The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.

Threat Intelligence

EPSS Exploit Probability
32.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 9

VendorProductVersionRange
postgresqlpostgresql7.4any
postgresqlpostgresql7.4.3any
postgresqlpostgresql7.4.5any
postgresqlpostgresql7.4.6any
postgresqlpostgresql7.4.7any
postgresqlpostgresql8.0any
postgresqlpostgresql8.0.1any
postgresqlpostgresql8.0.2any
trustixsecure_linux2.0any

References 9

  • archives.postgresql.org http://archives.postgresql.org/pgsql-announce/2005-05/msg00001.php
    Patch
  • novell.com http://www.novell.com/linux/security/advisories/2005_36_sudo.html
  • postgresql.org http://www.postgresql.org/about/news.315
    Patch
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-433.html
  • securityfocus.com http://www.securityfocus.com/archive/1/426302/30/6680/threaded
  • securityfocus.com http://www.securityfocus.com/bid/13475
    Patch
  • vupen.com http://www.vupen.com/english/advisories/2005/0453
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1086
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9343

Remediation