CVE-2005-1410 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-1410 Interim 1 5 2024-09-19T02:24:00Z current 2021-05-30T12:32:37Z 2024-09-19T02:24:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-1410 The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/42BUX3N2P7Q67HIM6RW4AE7PT5VDLC7L/#42BUX3N2P7Q67HIM6RW4AE7PT5VDLC7L E-Mail link for SUSE-SA:2005:036 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KQN7V5NXQWZX3DDUC5GQ4OX4W2D6M7OJ/#KQN7V5NXQWZX3DDUC5GQ4OX4W2D6M7OJ E-Mail link for SUSE-SR:2005:013 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AZWHWWQ7CD6EPQY4GQ5HZRMKP6OMVNMD/#AZWHWWQ7CD6EPQY4GQ5HZRMKP6OMVNMD E-Mail link for SUSE-SR:2005:014 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5VIROCU7NX5T6YT6YZR4Y3KIV6JNKPJX/#5VIROCU7NX5T6YT6YZR4Y3KIV6JNKPJX E-Mail link for SUSE-SR:2005:015 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FJG5THV2U3YLJOFXYTS4V52643JM54I4/#FJG5THV2U3YLJOFXYTS4V52643JM54I4 E-Mail link for SUSE-SR:2005:016 https://www.suse.com/support/security/rating/ SUSE Security Ratings The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments. CVE-2005-1410 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P