Sårbarhed Detalje Syn
Legend :
critical
high
medium
low
other
| id | 43108 |
|---|
| Risiko | other |
|---|
| Familie | Ubuntu Local Security Checks |
|---|
| Kategori | infos |
|---|
| Navn | USN870-1 : pygresql vulnerability |
|---|
| Sammenfatning | pygresql vulnerability |
|---|
| Beskrivelse | Synopsis :
These remote packages are missing security patches :
- python-pygresql
- python-pygresql-dbg
Description :
Steffen Joeris discovered that PyGreSQL 3.8 did not use PostgreSQL's safe
string and bytea functions in its own escaping functions. As a result,
applications written to use PyGreSQL's escaping functions are vulnerable to
SQL injections when processing certain multi-byte character sequences.
Because the safe functions require a database connection, to maintain
backwards compatibility, pg.escape_string() and pg.escape_bytea() are still
available, but applications will have to be adjusted to use the new
pyobj.escape_string() and pyobj.escape_bytea() functions. For example, code
containing:
import pg
connection = pg.connect(...)
escaped = pg.escape_string(untrusted_input)
should be adjusted to use:
import pg
connection = pg.connect(...)
escaped = connection.escape_string(untrusted_input)
Solution :
Upgrade to :
- python-pygresql-3.8.1-3ubuntu0.1 (Ubuntu 8.10)
- python-pygresql-dbg-3.8.1-3ubuntu0.1 (Ubuntu 8.10)
Risk factor :
High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
|
|---|
| CVE |
CVE-2009-2940 |
| Bugtraq |
NOBID |
| Copyright |
(C) 2009 Canonical, Inc. / NASL script (C) 2009 Tenable Network Security, Inc. |
|
|