Commit 223d0c9e authored by Christoph Berg's avatar Christoph Berg

Fix remote crash - invalid packet order causes lookup of NULL pointer. Not...

Fix remote crash - invalid packet order causes lookup of NULL pointer. Not exploitable, just DoS. (CVE-2015-4054) Cherry-picked from upstream 1.5.5.
parent 630ad37c
pgbouncer (1.5.4-6+deb8u1) jessie; urgency=medium
* Fix remote crash - invalid packet order causes lookup of NULL pointer.
Not exploitable, just DoS. (CVE-2015-4054)
Cherry-picked from upstream 1.5.5.
-- Christoph Berg <myon@debian.org> Sat, 23 May 2015 22:58:29 +0200
pgbouncer (1.5.4-6) unstable; urgency=low pgbouncer (1.5.4-6) unstable; urgency=low
* Fix duplicate install file which caused pgbouncer.ini to get lost. * Fix duplicate install file which caused pgbouncer.ini to get lost.
......
From upstream 1.5.5:
Fix remote crash - invalid packet order causes lookup of NULL pointer.
Not exploitable, just DoS.
CVE-2015-4054
http://www.openwall.com/lists/oss-security/2015/05/22/5
--- a/src/client.c
+++ b/src/client.c
@@ -262,6 +262,12 @@ static bool handle_client_startup(PgSock
}
break;
case 'p': /* PasswordMessage */
+ /* too early */
+ if (!client->auth_user) {
+ disconnect_client(client, true, "client password pkt before startup packet");
+ return false;
+ }
+
/* haven't requested it */
if (cf_auth_type <= AUTH_TRUST) {
disconnect_client(client, true, "unrequested passwd pkt");
debian-config debian-config
1.5.5.diff
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment