VYPR
Unrated severityNVD Advisory· Published Feb 2, 2010· Updated Jun 16, 2026

CVE-2010-0442

CVE-2010-0442

Description

The bitsubstr function in backend/utils/adt/varbit.c in PostgreSQL 8.0.23, 8.1.11, and 8.3.8 allows remote authenticated users to cause a denial of service (daemon crash) or have unspecified other impact via vectors involving a negative integer in the third argument, as demonstrated by a SELECT statement that contains a call to the substring function for a bit string, related to an "overflow."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*range: >=7.4,<7.4.28
    • (no CPE)range: 8.0.23, 8.1.11, 8.3.8

Patches

Vulnerability mechanics

References

26

News mentions

0

No linked articles in our index yet.