CVE-2016-3065

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2016-3065

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-3065.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2016-3065

Downstream

openSUSE-SU-2024:10273-1

Related

Withdrawn

2025-08-20T16:01:33.783142Z

Published

2016-04-11T15:59:06Z

Modified

2025-08-20T03:32:21Z

Severity

9.1 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator

Summary

[none]

Details

The (1) brinpagetype and (2) brinmetapageinfo functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service (server crash) via a crafted bytea value in a BRIN index page.

References

Affected packages

Git / git.postgresql.org/git/postgresql.git

Affected ranges

Type: GIT
Repo: https://git.postgresql.org/git/postgresql.git
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

616eaa396a9bf82d8208a79367d784590be9370d

Last affected

cdd4ed5449bf317cc71b45a8deee0173822e7592