Описание
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.
Отчет
Although the NVD assigns this issue a Moderate rating, Red Hat classifies it as Low severity because the practical impact is limited and requires multiple specific conditions. The vulnerability allows a privileged database role (pg_signal_backend) to send signals to certain background worker processes. However, PostgreSQL’s core background workers are designed to safely handle such signals and automatically recover without disrupting the database service. For a denial-of-service condition to occur, the system must be running a non-core extension that introduces a custom background worker which is not designed to restart safely after receiving a signal. In other words, the issue does not affect standard PostgreSQL installations and only impacts specialized configurations using third-party extensions. Even in affected scenarios, the impact is limited to disruption of a specific auxiliary background task and does not result in complete database failure, data loss, or compromise of confidentiality or integrity. Because exploitation requires a high-privileged user and affects only certain non-default configurations with limited operational impact, Red Hat considers the real-world risk to be Low.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | postgresql | Out of support scope | ||
| Red Hat Enterprise Linux 7 | postgresql | Fix deferred | ||
| Red Hat Enterprise Linux 8 | postgresql:10/postgresql | Fix deferred | ||
| Red Hat Enterprise Linux 8 | postgresql:16/postgresql | Not affected | ||
| Red Hat Enterprise Linux 9 | postgresql:16/postgresql | Not affected | ||
| Red Hat Software Collections | rh-postgresql10-postgresql | Fix deferred | ||
| Red Hat Advanced Cluster Security 4.2 | advanced-cluster-security/rhacs-central-db-rhel8 | Fixed | RHSA-2024:0337 | 22.01.2024 |
| Red Hat Advanced Cluster Security 4.2 | advanced-cluster-security/rhacs-main-rhel8 | Fixed | RHSA-2024:0337 | 22.01.2024 |
| Red Hat Advanced Cluster Security 4.2 | advanced-cluster-security/rhacs-operator-bundle | Fixed | RHSA-2024:0337 | 22.01.2024 |
| Red Hat Advanced Cluster Security 4.2 | advanced-cluster-security/rhacs-scanner-db-rhel8 | Fixed | RHSA-2024:0337 | 22.01.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
2.2 Low
CVSS3
Связанные уязвимости
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.
A flaw was found in PostgreSQL involving the pg_cancel_backend role th ...
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.
EPSS
2.2 Low
CVSS3