← voltar
CVE-2010-2759

CVE-2010-2759

EPSS 1.8%
Bugzilla 2.23.1 through 3.2.7, 3.3.1 through 3.4.7, 3.5.1 through 3.6.1, and 3.7 through 3.7.2, when PostgreSQL is used, does not properly handle large integers in (1) bug and (2) attachment phrases, which allows remote authenticated users to cause a denial of service (bug invisibility) via a crafted comment.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/046518.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-August/046534.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-August/046546.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=583690https://bugzilla.redhat.com/show_bug.cgi?id=623423http://secunia.com/advisories/40892http://secunia.com/advisories/41128http://www.bugzilla.org/security/3.2.7/http://www.securityfocus.com/bid/42275http://www.vupen.com/english/advisories/2010/2035http://www.vupen.com/english/advisories/2010/2205