This bug was fixed in the package pgbouncer - 1.5.2-2ubuntu0.1 --------------- pgbouncer (1.5.2-2ubuntu0.1) quantal-security; urgency=low
* SECURITY UPDATE: denial of service when too long db name is provided (LP: #1083414) - debian/patches/1-CVE-2012-4575.patch: objects.c(add_database): fail gracefully if too long db name. Based on upstream patch. - CVE-2012-4575 -- Christian Kuersteiner <ckuer...@gmx.ch> Mon, 03 Dec 2012 13:53:28 +0700 ** Changed in: pgbouncer (Ubuntu Quantal) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1083414 Title: DoS-Vulnerability in pgbouncer To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pgbouncer/+bug/1083414/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs