Nom du paquet
perl-DBD-Pg
Date
2012-07-26
Advisory ID
MDVSA-2012:112
Affected versions
MES5 i586 , 2011 i586 , MES5 x86_64 , 2011 x86_64

Problem description

A vulnerability has been discovered and corrected in perl-DBD-Pg:

Two format string flaws were found in the way perl-DBD-Pg. A
rogue server could provide a specially-crafted database warning
or specially-crafted DBD statement, which once processed by the
perl-DBD-Pg interface would lead to perl-DBD-Pg based process crash
(CVE-2012-1151).

The updated packages have been patched to correct this issue.

Updated packages

MES5 i586

 e21135f2054059ec2ac78a6ff1358717  mes5/i586/perl-DBD-Pg-2.10.3-1.1mdvmes5.2.i586.rpm 
 1637efda2de900b887598d905eeb4ad2  mes5/SRPMS/perl-DBD-Pg-2.10.3-1.1mdvmes5.2.src.rpm

2011 i586

 2c13a808bbc295db165eb77c855d9e46  2011/i586/perl-DBD-Pg-2.18.1-1.1-mdv2011.0.i586.rpm 
 86399537b171db26f29d0a039f6f5f63  2011/SRPMS/perl-DBD-Pg-2.18.1-1.1.src.rpm

MES5 x86_64

 345b814ddf32faea25516f934f39e314  mes5/x86_64/perl-DBD-Pg-2.10.3-1.1mdvmes5.2.x86_64.rpm 
 1637efda2de900b887598d905eeb4ad2  mes5/SRPMS/perl-DBD-Pg-2.10.3-1.1mdvmes5.2.src.rpm

2011 x86_64

 7b4cade504373c1b19baacfdb0096fef  2011/x86_64/perl-DBD-Pg-2.18.1-1.1-mdv2011.0.x86_64.rpm 
 86399537b171db26f29d0a039f6f5f63  2011/SRPMS/perl-DBD-Pg-2.18.1-1.1.src.rpm

References