CVE-2015-1352 (retired)

Priority
Description
The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql)
extension in PHP through 5.6.7 does not validate token extraction for table
names, which allows remote attackers to cause a denial of service (NULL
pointer dereference and application crash) via a crafted name.
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 15:52:40 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)