CVE-2017-15099

State: PUBLISHED · Published: 2017-11-22 · Updated: 2024-09-16 · Assigner: redhat

Description

INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contents that the invoker lacks privilege to read. These exploits affect only tables where the attacker lacks full read access but has both INSERT and UPDATE privileges. Exploits bypass row level security policies and lack of SELECT privilege.

CWE

CWE-200 — CWE-200

Affected

Red Hat, Inc. / postgresql — v=10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10 [affected]

CVSS

(none)

References

http://www.securityfocus.com/bid/101781 vdb-entry, x_refsource_BID
https://access.redhat.com/errata/RHSA-2018:2511 vendor-advisory, x_refsource_REDHAT
https://www.postgresql.org/support/security/ x_refsource_MISC
http://www.securitytracker.com/id/1039752 vdb-entry, x_refsource_SECTRACK
https://www.postgresql.org/about/news/1801/ x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2018:2566 vendor-advisory, x_refsource_REDHAT
https://www.debian.org/security/2017/dsa-4028 vendor-advisory, x_refsource_DEBIAN

Source

cvelistV5-main/cves/2017/15xxx/CVE-2017-15099.json