Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200608-10 Normal: Pike SQL Injection Threat

gentoo
Calendar Grey August 6, 2006
Dist Gentoo Esm H88
Gentoo notification regarding pike SQL injection vulnerability enabling unrestricted query execution. Immediate patching is advised for users at risk.
A flaw in the input handling could lead to the execution of arbitrary SQL statements in the underlying PostgreSQL database.

Summary

Gentoo Linux Security Advisory GLSA 200608-10 https://security.gentoo.org/ Severity: Normal Title: pike: SQL injection vulnerability Date: August 06, 2006 Bugs: #136065 ID: 200608-10

Synopsis ======= A flaw in the input handling could lead to the execution of arbitrary SQL statements in the underlying PostgreSQL database.
Background ========= Pike is a general purpose programming language, able to be used for multiple tasks.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-lang/pike < 7.6.86 >= 7.6.86
========== Some input is not properly sanitised before being used in a SQL statement in the underlying PostgreSQL database.
Impact ===== A remot...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo sql injection input handling normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo sql injection input handling normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here