CVE-2017-7548

Summary

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

Affected Software

VendorProductVersion RangeStatus
PostgreSQLpostgresql9.4.x before 9.4.13affected
PostgreSQLpostgresql9.5.x before 9.5.8affected
PostgreSQLpostgresql9.6.x before 9.6.4affected

Weaknesses

  • CWE-862: CWE-862

ADP Enrichment

CVE Program Container

Additional References

References