CVE-2018-1115

CVE-2018-1115

Name

CVE-2018-1115

Description

postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.

NVD Severity

high

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Patch	https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=7b34740
Issue Tracking	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1115
Third Party Advisory	http://www.securityfocus.com/bid/104285
Third Party Advisory	https://access.redhat.com/errata/RHSA-2018:2566
Third Party Advisory	https://access.redhat.com/errata/RHSA-2018:2565
Third Party Advisory	https://security.gentoo.org/glsa/201810-08
Mailing List	http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html

Type

URI

Patch

https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=7b34740

Issue Tracking

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1115

Third Party Advisory

http://www.securityfocus.com/bid/104285

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2566

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2565

Third Party Advisory

https://security.gentoo.org/glsa/201810-08

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:postgresql:postgresql::::::::`	postgresql	>= 10.0	< 10.4
`cpe:2.3:a:postgresql:postgresql::::::::`	postgresql	>= None	< 9.6.9

CPE URI

Source package

Min version

Max version

cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*

postgresql

>= 10.0

< 10.4

cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*

postgresql

>= None

< 9.6.9

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
postgresql15	edge-main	10.4-r0	None	fixed
postgresql15	edge-community	10.4-r0	None	fixed
postgresql15	3.20-main	10.4-r0	None	fixed
postgresql15	3.19-main	10.4-r0	None	fixed
postgresql15	3.18-main	10.4-r0	None	fixed
postgresql15	3.17-main	10.4-r0	None	fixed
postgresql14	edge-main	10.4-r0	None	fixed
postgresql14	edge-community	10.4-r0	None	fixed
postgresql14	3.20-community	10.4-r0	None	fixed
postgresql14	3.19-community	10.4-r0	None	fixed
postgresql14	3.18-main	10.4-r0	None	fixed
postgresql14	3.17-main	10.4-r0	None	fixed
postgresql	edge-main	10.4-r0	None	fixed
postgresql	edge-main	10.3-r0	None	possibly vulnerable
postgresql	edge-main	10.2-r0	None	possibly vulnerable
postgresql	edge-main	10.1-r0	None	possibly vulnerable
postgresql	edge-main	9.6.4-r0	None	possibly vulnerable
postgresql	edge-main	9.6.3-r0	None	possibly vulnerable
postgresql	3.12-main	10.4-r0	None	fixed
postgresql	3.11-main	10.4-r0	None	fixed
postgresql	3.10-main	10.4-r0	None	fixed

Source package

Branch

Version

Maintainer

Status

postgresql15

edge-main

10.4-r0

None

fixed

postgresql15

edge-community