The chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-03-28T17:00:00

Updated: 2024-08-06T09:05:38.581Z

Reserved: 2013-12-03T00:00:00

Link: CVE-2014-0066

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-03-31T14:58:15.773

Modified: 2024-11-21T02:01:17.290

Link: CVE-2014-0066

cve-icon Redhat

Severity : Moderate

Publid Date: 2014-02-17T00:00:00Z

Links: CVE-2014-0066 - Bugzilla