CVE-2016-0773
Description
PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 allows remote attackers to cause a denial of service (infinite loop or buffer overflow and crash) via a large Unicode character range in a regular expression.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
12.452
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update PostgressSQL to 9.1.20 | Windows |
| Update PostgressSQL to 9.3.11 | Windows |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.5.1 | Windows |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.4.6 | Windows |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.3.11 | Windows |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.2.15 | Windows |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.1.20 | Windows |
| Object-relational SQL database (USN-2894-1) postgresql-9.1_9.1.20-0ubuntu0.12.04_i386.deb | Linux |
| Object-relational SQL database (USN-2894-1) postgresql-9.1_9.1.20-0ubuntu0.12.04_amd64.deb | Linux |
| Object-relational SQL database (USN-2894-1) postgresql-9.3_9.3.11-0ubuntu0.14.04_i386.deb | Linux |
| Object-relational SQL database (USN-2894-1) postgresql-9.3_9.3.11-0ubuntu0.14.04_amd64.deb | Linux |
| Object-relational SQL database (USN-2894-1) postgresql-9.4_9.4.6-0ubuntu0.15.10_i386.deb | Linux |
| Object-relational SQL database (USN-2894-1) postgresql-9.4_9.4.6-0ubuntu0.15.10_amd64.deb | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Desktop 12 ) postgresql93-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Server 12 ) postgresql93-contrib-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Server 12 ) postgresql93-contrib-debuginfo-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Desktop 12 ) postgresql93-debuginfo-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Desktop 12 ) postgresql93-debugsource-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Server 12 ) postgresql93-docs-9.3.11-14.2.noarch.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Server 12 ) postgresql93-server-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0539-1(SUSE Linux Enterprise Server 12 ) postgresql93-server-debuginfo-9.3.11-14.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libecpg6-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libecpg6-debuginfo-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libpq5-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libpq5-32bit-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libpq5-debuginfo-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) libpq5-debuginfo-32bit-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) postgresql94-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Server 12 ) postgresql94-contrib-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Server 12 ) postgresql94-contrib-debuginfo-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) postgresql94-debuginfo-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) postgresql94-debugsource-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Server 12 ) postgresql94-docs-9.4.6-7.2.noarch.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Desktop 12 ) postgresql94-libs-debugsource-9.4.6-7.1.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Server 12 ) postgresql94-server-9.4.6-7.2.x86_64.rpm | Linux |
| SUSE-SU-2016:0555-1(SUSE Linux Enterprise Server 12 ) postgresql94-server-debuginfo-9.4.6-7.2.x86_64.rpm | Linux |
| Update PostgressSQL to 9.1.20 (For Linux) | Linux |
| Update PostgressSQL to 9.3.11 (For Linux) | Linux |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.5.1 (For Linux) | Linux |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.4.6 (For Linux) | Linux |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.3.11 (For Linux) | Linux |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.2.15 (For Linux) | Linux |
| Vulnerabilities CVE-2016-0773 are fixed in PostgreSQL 9.1.20 (For Linux) | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0773) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234