Unrated severityNVD Advisory· Published Feb 2, 2011· Updated Jun 16, 2026
CVE-2010-4015
CVE-2010-4015
Description
Buffer overflow in the gettoken function in contrib/intarray/_int_bool.c in the intarray array module in PostgreSQL 9.0.x before 9.0.3, 8.4.x before 8.4.7, 8.3.x before 8.3.14, and 8.2.x before 8.2.20 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via integers with a large number of digits to unspecified functions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
45cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*+ 44 more
- cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.15:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.17:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.18:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.19:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.10:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.11:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.12:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.13:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:8.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:9.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:postgresql:postgresql:9.0.2:*:*:*:*:*:*:*
- (no CPE)range: <9.0.3
Patches
Vulnerability mechanics
References
29- secunia.com/advisories/43144nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0262nvdVendor Advisory
- git.postgresql.org/gitwebnvd
- kb.juniper.net/InfoCenter/indexnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-February/053817.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-February/053888.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.htmlnvd
- marc.infonvd
- osvdb.org/70740nvd
- secunia.com/advisories/43154nvd
- secunia.com/advisories/43155nvd
- secunia.com/advisories/43187nvd
- secunia.com/advisories/43188nvd
- secunia.com/advisories/43240nvd
- www.debian.org/security/2011/dsa-2157nvd
- www.mandriva.com/security/advisoriesnvd
- www.postgresql.org/about/news.1289nvd
- www.postgresql.org/support/securitynvd
- www.redhat.com/support/errata/RHSA-2011-0197.htmlnvd
- www.redhat.com/support/errata/RHSA-2011-0198.htmlnvd
- www.securityfocus.com/bid/46084nvd
- www.ubuntu.com/usn/USN-1058-1nvd
- www.vupen.com/english/advisories/2011/0278nvd
- www.vupen.com/english/advisories/2011/0283nvd
- www.vupen.com/english/advisories/2011/0287nvd
- www.vupen.com/english/advisories/2011/0299nvd
- www.vupen.com/english/advisories/2011/0303nvd
- www.vupen.com/english/advisories/2011/0349nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/65060nvd
News mentions
0No linked articles in our index yet.