CVE-2015-3166

The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified impact via unknown vectors, as demonstrated by an out-of-memory error.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
postgresqlpostgresql
𝑥
< 9.0.20
postgresqlpostgresql
9.1 ≤
𝑥
< 9.1.16
postgresqlpostgresql
9.2 ≤
𝑥
< 9.2.11
postgresqlpostgresql
9.3 ≤
𝑥
< 9.3.7
postgresqlpostgresql
9.4 ≤
𝑥
< 9.4.2
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
canonicalubuntu_linux
12.04
canonicalubuntu_linux
14.04
canonicalubuntu_linux
14.10
canonicalubuntu_linux
15.04
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
postgresql-8.4
precise
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
postgresql-9.1
precise
Fixed 9.1.16-0ubuntu0.12.04
released
trusty
Fixed 9.1.16-0ubuntu0.14.04
released
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
postgresql-9.3
precise
dne
trusty
Fixed 9.3.7-0ubuntu0.14.04
released
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
postgresql-9.4
precise
dne
trusty
dne
utopic
Fixed 9.4.2-0ubuntu0.14.10
released
vivid
Fixed 9.4.2-0ubuntu0.15.04
released
wily
Fixed 9.4.2-1
released
xenial
dne
yakkety
dne
zesty
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libecpg6
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
libpq5
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
libpq5-32bit
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-contrib
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-docs
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-plperl
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-plpython
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-pltcl
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql10-server
suse enterprise sap 12 SP5
10.10-1.15.1
fixed
suse enterprise server 12 SP5
10.10-1.15.1
fixed
postgresql93
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
postgresql93-contrib
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
postgresql93-docs
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
postgresql93-server
suse enterprise sap 12
9.3.8-8.1
fixed
suse enterprise server 12
9.3.8-8.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
postgresql
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-contrib
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-devel
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-docs
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-libs
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-plperl
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-plpython
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-pltcl
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-server
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-test
RHEL 6
0:8.4.20-3.el6_6
fixed
RHEL 7
0:9.2.13-1.el7_1
fixed
postgresql-upgrade
RHEL 7
0:9.2.13-1.el7_1
fixed
Common Weakness Enumeration
References
http://ubuntu.com/usn/usn-2621-1
http://www.debian.org/security/2015/dsa-3269
http://www.debian.org/security/2015/dsa-3270
http://www.postgresql.org/about/news/1587/
http://www.postgresql.org/docs/9.0/static/release-9-0-20.html
http://www.postgresql.org/docs/9.1/static/release-9-1-16.html
http://www.postgresql.org/docs/9.2/static/release-9-2-11.html
http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
http://www.postgresql.org/docs/9.4/static/release-9-4-2.html
http://ubuntu.com/usn/usn-2621-1
http://www.debian.org/security/2015/dsa-3269
http://www.debian.org/security/2015/dsa-3270
http://www.postgresql.org/about/news/1587/
http://www.postgresql.org/docs/9.0/static/release-9-0-20.html
http://www.postgresql.org/docs/9.1/static/release-9-1-16.html
http://www.postgresql.org/docs/9.2/static/release-9-2-11.html
http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
http://www.postgresql.org/docs/9.4/static/release-9-4-2.html