A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
CPE | Name | Operator | Version |
---|---|---|---|
ubuntu_linux | eq | 16.04 | |
ubuntu_linux | eq | 14.04 | |
ubuntu_linux | eq | 17.10 | |
postgresql | ge | 9.3 | |
postgresql | lt | 9.3.22 | |
postgresql | ge | 9.4 | |
postgresql | lt | 9.4.17 | |
postgresql | ge | 9.5 | |
postgresql | lt | 9.5.12 | |
postgresql | ge | 9.6 |