Risk | High |
Patch available | YES |
Number of vulnerabilities | 3 |
CVE-ID | CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 |
CWE-ID | CWE-20 CWE-119 CWE-200 |
Exploitation vector | Network |
Public exploit | N/A |
Vulnerable software Subscribe |
Amazon Linux AMI Operating systems & Components / Operating system |
Vendor | Amazon Web Services |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
EUVDB-ID: #VU33829
Risk: Medium
CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2015-3165
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to perform service disruption.
Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence. <a href="http://cwe.mitre.org/data/definitions/415.html">CWE-415: Double Free</a>
MitigationUpdate the affected packages:
i686:Vulnerable software versions
postgresql8-test-8.4.20-3.50.amzn1.i686
postgresql8-libs-8.4.20-3.50.amzn1.i686
postgresql8-plpython-8.4.20-3.50.amzn1.i686
postgresql8-contrib-8.4.20-3.50.amzn1.i686
postgresql8-server-8.4.20-3.50.amzn1.i686
postgresql8-pltcl-8.4.20-3.50.amzn1.i686
postgresql8-docs-8.4.20-3.50.amzn1.i686
postgresql8-debuginfo-8.4.20-3.50.amzn1.i686
postgresql8-devel-8.4.20-3.50.amzn1.i686
postgresql8-8.4.20-3.50.amzn1.i686
postgresql8-plperl-8.4.20-3.50.amzn1.i686
src:
postgresql8-8.4.20-3.50.amzn1.src
x86_64:
postgresql8-server-8.4.20-3.50.amzn1.x86_64
postgresql8-pltcl-8.4.20-3.50.amzn1.x86_64
postgresql8-devel-8.4.20-3.50.amzn1.x86_64
postgresql8-plperl-8.4.20-3.50.amzn1.x86_64
postgresql8-plpython-8.4.20-3.50.amzn1.x86_64
postgresql8-8.4.20-3.50.amzn1.x86_64
postgresql8-libs-8.4.20-3.50.amzn1.x86_64
postgresql8-contrib-8.4.20-3.50.amzn1.x86_64
postgresql8-docs-8.4.20-3.50.amzn1.x86_64
postgresql8-debuginfo-8.4.20-3.50.amzn1.x86_64
postgresql8-test-8.4.20-3.50.amzn1.x86_64
Amazon Linux AMI: All versions
External linkshttp://alas.aws.amazon.com/ALAS-2015-556.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU30589
Risk: High
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2015-3166
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified impact via unknown vectors, as demonstrated by an out-of-memory error.
MitigationUpdate the affected packages:
i686:Vulnerable software versions
postgresql8-test-8.4.20-3.50.amzn1.i686
postgresql8-libs-8.4.20-3.50.amzn1.i686
postgresql8-plpython-8.4.20-3.50.amzn1.i686
postgresql8-contrib-8.4.20-3.50.amzn1.i686
postgresql8-server-8.4.20-3.50.amzn1.i686
postgresql8-pltcl-8.4.20-3.50.amzn1.i686
postgresql8-docs-8.4.20-3.50.amzn1.i686
postgresql8-debuginfo-8.4.20-3.50.amzn1.i686
postgresql8-devel-8.4.20-3.50.amzn1.i686
postgresql8-8.4.20-3.50.amzn1.i686
postgresql8-plperl-8.4.20-3.50.amzn1.i686
src:
postgresql8-8.4.20-3.50.amzn1.src
x86_64:
postgresql8-server-8.4.20-3.50.amzn1.x86_64
postgresql8-pltcl-8.4.20-3.50.amzn1.x86_64
postgresql8-devel-8.4.20-3.50.amzn1.x86_64
postgresql8-plperl-8.4.20-3.50.amzn1.x86_64
postgresql8-plpython-8.4.20-3.50.amzn1.x86_64
postgresql8-8.4.20-3.50.amzn1.x86_64
postgresql8-libs-8.4.20-3.50.amzn1.x86_64
postgresql8-contrib-8.4.20-3.50.amzn1.x86_64
postgresql8-docs-8.4.20-3.50.amzn1.x86_64
postgresql8-debuginfo-8.4.20-3.50.amzn1.x86_64
postgresql8-test-8.4.20-3.50.amzn1.x86_64
Amazon Linux AMI: All versions
External linkshttp://alas.aws.amazon.com/ALAS-2015-556.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU30590
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2015-3167
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
contrib/pgcrypto in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for attackers to obtain the key via a brute force attack.
MitigationUpdate the affected packages:
i686:Vulnerable software versions
postgresql8-test-8.4.20-3.50.amzn1.i686
postgresql8-libs-8.4.20-3.50.amzn1.i686
postgresql8-plpython-8.4.20-3.50.amzn1.i686
postgresql8-contrib-8.4.20-3.50.amzn1.i686
postgresql8-server-8.4.20-3.50.amzn1.i686
postgresql8-pltcl-8.4.20-3.50.amzn1.i686
postgresql8-docs-8.4.20-3.50.amzn1.i686
postgresql8-debuginfo-8.4.20-3.50.amzn1.i686
postgresql8-devel-8.4.20-3.50.amzn1.i686
postgresql8-8.4.20-3.50.amzn1.i686
postgresql8-plperl-8.4.20-3.50.amzn1.i686
src:
postgresql8-8.4.20-3.50.amzn1.src
x86_64:
postgresql8-server-8.4.20-3.50.amzn1.x86_64
postgresql8-pltcl-8.4.20-3.50.amzn1.x86_64
postgresql8-devel-8.4.20-3.50.amzn1.x86_64
postgresql8-plperl-8.4.20-3.50.amzn1.x86_64
postgresql8-plpython-8.4.20-3.50.amzn1.x86_64
postgresql8-8.4.20-3.50.amzn1.x86_64
postgresql8-libs-8.4.20-3.50.amzn1.x86_64
postgresql8-contrib-8.4.20-3.50.amzn1.x86_64
postgresql8-docs-8.4.20-3.50.amzn1.x86_64
postgresql8-debuginfo-8.4.20-3.50.amzn1.x86_64
postgresql8-test-8.4.20-3.50.amzn1.x86_64
Amazon Linux AMI: All versions
External linkshttp://alas.aws.amazon.com/ALAS-2015-556.html
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.