Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2012-0867
Description:PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof connections when the host name is exactly 32 characters.
Test IDs: 1.3.6.1.4.1.25623.1.0.71146  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-0867
Debian Security Information: DSA-2418 (Google Search)
http://www.debian.org/security/2012/dsa-2418
http://www.mandriva.com/security/advisories?name=MDVSA-2012:026
RedHat Security Advisories: RHSA-2012:0678
http://rhn.redhat.com/errata/RHSA-2012-0678.html
http://secunia.com/advisories/49273
SuSE Security Announcement: openSUSE-SU-2012:1173 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-09/msg00060.html




© 1998-2024 E-Soft Inc. All rights reserved.