CVE-2009-2943

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2009-2943

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-2943.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2009-2943

Downstream

DEBIAN-CVE-2009-2943

DSA-1909-1

Published

2009-10-22T16:30:00Z

Modified

2025-08-09T19:01:28Z

Summary

[none]

Details

The postgresql-ocaml bindings 1.5.4, 1.7.0, and 1.12.1 for PostgreSQL libpq do not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings.

References

http://secunia.com/advisories/37048
http://www.debian.org/security/2009/dsa-1909
http://www.osvdb.org/59029

CVE-2009-2943

Affected packages