CVE-2018-1052

State: PUBLISHED · Published: 2018-02-09 · Updated: 2024-09-16 · Assigner: redhat

Description

Memory disclosure vulnerability in table partitioning was found in postgresql 10.x before 10.2, allowing an authenticated attacker to read arbitrary bytes of server memory via purpose-crafted insert to a partitioned table.

CWE

CWE-200 — CWE-200

Affected

The PostgreSQL Global Development Group / postgresql — v=10.x before 10.2 [affected]

CVSS

(none)

References

https://www.postgresql.org/about/news/1829/ x_refsource_CONFIRM
http://www.securityfocus.com/bid/102987 vdb-entry, x_refsource_BID

Source

cvelistV5-main/cves/2018/1xxx/CVE-2018-1052.json