CVE-2006-5541

backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY.

🔗 References (44)

• cve@mitrehttp://projects.commandprompt.com/public/pgsql/changeset/26457
• cve@mitrehttp://secunia.com/advisories/22562
• cve@mitrehttp://secunia.com/advisories/22584
• cve@mitrehttp://secunia.com/advisories/22606
• cve@mitrehttp://secunia.com/advisories/22636
• cve@mitrehttp://secunia.com/advisories/23048
• cve@mitrehttp://secunia.com/advisories/23132
• cve@mitrehttp://secunia.com/advisories/24577
• cve@mitrehttp://securitytracker.com/id?1017115
• cve@mitrehttp://support.avaya.com/elmodocs2/security/ASA-2007-117.htm
• cve@mitrehttp://support.novell.com/techcenter/psdb/59650c03a8bc5ae310cd7898bd106ad2.html
• cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2006:194
• cve@mitrehttp://www.novell.com/linux/security/advisories/2006_27_sr.html
• cve@mitrehttp://www.postgresql.org/about/news.664
• cve@mitrehttp://www.redhat.com/support/errata/RHSA-2007-0067.html