Mandrake Linux Security Advisory : postgresql (MDKSA-2003:102)
High Nessus Plugin ID 14084
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionTwo bugs were discovered that lead to a buffer overflow in PostgreSQL versions 7.2.x and 7.3.x prior to 7.3.4, in the abstract data type (ADT) to ASCII conversion functions. It is believed that, under the right circumstances, an attacker may use this vulnerability to execute arbitrary instructions on the PostgreSQL server.
The provided packages are patched to protect against this vulnerability and all users are encouraged to upgrade immediately.
SolutionUpdate the affected packages.