Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200601-05
https://security.gentoo.org/
Severity: High
Title: mod_auth_pgsql: Multiple format string vulnerabilities
Date: January 10, 2006
Bugs: #118096
ID: 200601-05
Synopsis
=======
Format string vulnerabilities in mod_auth_pgsql may lead to the
execution of arbitrary code.
Background
=========
mod_auth_pgsql is an Apache2 module that allows user authentication
against a PostgreSQL database.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-www/mod_auth_pgsql < 2.0.3 >= 2.0.3
==========
The error logging functions of mod_auth_pgsql fail to validate certain
strings before passing them to syslog, resulting in format strin...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.