Unrated severityNVD Advisory· Published Aug 22, 2023· Updated Aug 4, 2024
CVE-2020-21469
CVE-2020-21469
Description
An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pg_reload_conf access, or a user with sufficient privileges at the OS level (the postgres account or the root account).
Affected products
25- PostgreSQL/PostgreSQLdescription
- osv-coords24 versionspkg:apk/chainguard/libecpg-12pkg:apk/chainguard/libpq-12pkg:apk/chainguard/postgresql-12pkg:apk/chainguard/postgresql-12-basepkg:apk/chainguard/postgresql-12-bitnami-compatpkg:apk/chainguard/postgresql-12-clientpkg:apk/chainguard/postgresql-12-client-basepkg:apk/chainguard/postgresql-12-contribpkg:apk/chainguard/postgresql-12-devpkg:apk/chainguard/postgresql-12-oci-entrypointpkg:apk/chainguard/postgresql-12-oci-entrypoint-basepkg:apk/chainguard/postgresql-12-pgadmin-compatpkg:apk/wolfi/libecpg-12pkg:apk/wolfi/libpq-12pkg:apk/wolfi/postgresql-12pkg:apk/wolfi/postgresql-12-basepkg:apk/wolfi/postgresql-12-bitnami-compatpkg:apk/wolfi/postgresql-12-clientpkg:apk/wolfi/postgresql-12-client-basepkg:apk/wolfi/postgresql-12-contribpkg:apk/wolfi/postgresql-12-devpkg:apk/wolfi/postgresql-12-oci-entrypointpkg:apk/wolfi/postgresql-12-oci-entrypoint-basepkg:bitnami/postgresql
< 0+ 23 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: >= 12.2.0, < 12.2.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.