SB2018101032 - Multiple vulnerabilities in PostgreSQL
Published: October 10, 2018 Updated: June 23, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Input validation error (CVE-ID: CVE-2009-4136)
The vulnerability allows a remote user to read and manipulate data.
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.
2) Cryptographic issues (CVE-ID: CVE-2009-4034)
The vulnerability allows a remote non-authenticated attacker to manipulate or delete data.
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '�' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Remediation
Install update from vendor's website.
References
- http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html
- http://marc.info/?l=bugtraq&m=134124585221119&w=2
- http://osvdb.org/61039
- http://secunia.com/advisories/37663
- http://secunia.com/advisories/39820
- http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:333
- http://www.postgresql.org/docs/current/static/release-7-4-27.html
- http://www.postgresql.org/docs/current/static/release-8-0-23.html
- http://www.postgresql.org/docs/current/static/release-8-1-19.html
- http://www.postgresql.org/docs/current/static/release-8-2-15.html
- http://www.postgresql.org/docs/current/static/release-8-3-9.html
- http://www.postgresql.org/docs/current/static/release-8-4-2.html
- http://www.postgresql.org/support/security.html
- http://www.redhat.com/support/errata/RHSA-2010-0427.html
- http://www.redhat.com/support/errata/RHSA-2010-0428.html
- http://www.redhat.com/support/errata/RHSA-2010-0429.html
- http://www.securityfocus.com/archive/1/509917/100/0/threaded
- http://www.securityfocus.com/bid/37333
- http://www.securitytracker.com/id?1023326
- http://www.vupen.com/english/advisories/2009/3519
- http://www.vupen.com/english/advisories/2010/1197
- https://bugzilla.redhat.com/show_bug.cgi?id=546321
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9358
- https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html
- https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html
- http://osvdb.org/61038
- http://www.securityfocus.com/bid/37334
- http://www.securitytracker.com/id?1023325