CVE-2017-15098

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2017-15098

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-15098.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-15098

Downstream

ALPINE-CVE-2017-15098

BELL-CVE-2017-15098

CLEANSTART-2026-HJ04971

DSA-4027-1

DSA-4028-1

RHSA-2018:2511

RHSA-2018:2566

SUSE-SU-2017:3391-1

SUSE-SU-2018:0077-1

SUSE-SU-2018:0081-1

UBUNTU-CVE-2017-15098

USN-3479-1

openSUSE-SU-2024:11184-1

Related

Published

2017-11-22T17:29:00Z

Modified

2026-02-05T13:25:08.106839Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS Calculator

Summary

[none]

Details

Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, and 9.3.x before 9.3.20 can crash the server or disclose a few bytes of server memory.

References

Affected packages