CVE-2018-1115

Опубликовано: 10 мая 2018

Источник: redhat

CVSS3: 4.2

EPSS Низкий

Описание

postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.

It was found that pg_catalog.pg_logfile_rotate(), from the adminpack extension, did not follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could use this flaw to force log rotation.

Отчет

This issue does not appear to affect the versions of postgresql as shipped with Red Hat Satellite version 5, CloudForms version 4, Red Hat Single Sign-On 7, and Fuse Service Works 6.

Затронутые пакеты

Платформа	Пакет	Состояние
CloudForms Management Engine 5	postgresql94	Not affected
CloudForms Management Engine 5	rh-postgresql95-postgresql	Not affected
Red Hat Enterprise Linux 5	postgresql	Not affected
Red Hat Enterprise Linux 5	postgresql84	Not affected
Red Hat Enterprise Linux 6	postgresql	Not affected
Red Hat Enterprise Linux 7	postgresql	Not affected
Red Hat Enterprise Linux 8	postgresql	Not affected
Red Hat JBoss Fuse Service Works 6	postgresql	Not affected
Red Hat JBoss Operations Network 3	postgresql	Out of support scope
Red Hat Mobile Application Platform 4	postgresql	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-732

https://bugzilla.redhat.com/show_bug.cgi?id=1573276postgresql: Too-permissive access control list on function pg_logfile_rotate()

EPSS

Процентиль: 60%

0.0041

Низкий

4.2 Medium

CVSS3

Связанные уязвимости

CVE-2018-1115

CVSS3: 9.1

ubuntu

около 7 лет назад

CVE-2018-1115

CVSS3: 9.1

nvd

около 7 лет назад

CVE-2018-1115

CVSS3: 9.1

debian

около 7 лет назад

postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack ...

openSUSE-SU-2018:1900-1

suse-cvrf

почти 7 лет назад