Candidate: CVE-2012-4575
PublicDate: 2012-11-18 19:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4575
 http://www.openwall.com/lists/oss-security/2012/11/02/4
Description:
 The add_database function in objects.c in the pgbouncer pooler 1.5.2 for
 PostgreSQL allows remote attackers to cause a denial of service (daemon
 outage) via a long database name in a request.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/pgbouncer/+bug/1083414
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_pgbouncer:
 upstream: http://git.postgresql.org/gitweb/?p=pgbouncer.git;a=commitdiff;h=4b92112b820830b30cd7bc91bef3dd8f35305525
upstream_pgbouncer: released (1.5.2-4)
hardy_pgbouncer: DNE
lucid_pgbouncer: released (1.3.1-3ubuntu0.1)
oneiric_pgbouncer: released (1.4.2-1ubuntu0.1)
precise_pgbouncer: released (1.4.2-2ubuntu0.1)
quantal_pgbouncer: released (1.5.2-2ubuntu0.1)
devel_pgbouncer: not-affected (1.5.2-4)