CVE-2022-21724

Name
CVE-2022-21724
Description
pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attacked when attacker control the jdbc url or properties. pgjdbc instantiates plugin instances based on class names provided via `authenticationPluginClassName`, `sslhostnameverifier`, `socketFactory`, `sslfactory`, `sslpasswordcallback` connection properties. However, the driver did not verify if the class implements the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary classes. Users using plugins are advised to upgrade. There are no known workarounds for this issue.
NVD Severity
high
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
CONFIRM https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-v7wg-cpwc-24m4
MISC https://github.com/pgjdbc/pgjdbc/commit/f4d0ed69c0b3aae8531d83d6af4c57f22312c813
Third Party Advisory https://security.netapp.com/advisory/ntap-20220311-0005/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BVEO7BEFXPBVHSPYL3YKQWZI6DYXQLFS/
Mailing List https://lists.debian.org/debian-lts-announce/2022/05/msg00027.html
Third Party Advisory https://www.debian.org/security/2022/dsa-5196
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVEO7BEFXPBVHSPYL3YKQWZI6DYXQLFS/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:postgresql:pgjdbc:*:*:*:*:*:*:*:* pgjdbc >= None < 42.2.25
cpe:2.3:a:postgresql:pgjdbc:*:*:*:*:*:*:*:* pgjdbc >= 42.3.0 < 42.3.2
cpe:2.3:a:postgresql:postgresql_jdbc_driver:*:*:*:*:*:*:*:* postgresql_jdbc_driver >= None < 42.2.25
cpe:2.3:a:postgresql:postgresql_jdbc_driver:*:*:*:*:*:*:*:* postgresql_jdbc_driver >= 42.3.0 < 42.3.2
cpe:2.3:a:postgresql:postgresql_jdbc_driver:42.3.2:rc1:*:*:*:*:*:* postgresql_jdbc_driver == None == 42.3.2

Vulnerable and fixed packages

Source package Branch Version Maintainer Status