CVE-2017-7485
First published: Thu May 04 2017(Updated: )
In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3, it was found that the PGREQUIRESSL environment variable was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/postgresql | <9.2.21 | 9.2.21 |
| redhat/postgresql | <9.3.17 | 9.3.17 |
| redhat/postgresql | <9.4.12 | 9.4.12 |
| redhat/postgresql | <9.5.7 | 9.5.7 |
| redhat/postgresql | <9.6.3 | 9.6.3 |
| PostgreSQL Common | =9.3 | |
| PostgreSQL Common | =9.3.1 | |
| PostgreSQL Common | =9.3.2 | |
| PostgreSQL Common | =9.3.3 | |
| PostgreSQL Common | =9.3.4 | |
| PostgreSQL Common | =9.3.5 | |
| PostgreSQL Common | =9.3.6 | |
| PostgreSQL Common | =9.3.7 | |
| PostgreSQL Common | =9.3.8 | |
| PostgreSQL Common | =9.3.9 | |
| PostgreSQL Common | =9.3.10 | |
| PostgreSQL Common | =9.3.11 | |
| PostgreSQL Common | =9.3.12 | |
| PostgreSQL Common | =9.3.13 | |
| PostgreSQL Common | =9.3.14 | |
| PostgreSQL Common | =9.3.15 | |
| PostgreSQL Common | =9.3.16 | |
| PostgreSQL Common | =9.4 | |
| PostgreSQL Common | =9.4.1 | |
| PostgreSQL Common | =9.4.2 | |
| PostgreSQL Common | =9.4.3 | |
| PostgreSQL Common | =9.4.4 | |
| PostgreSQL Common | =9.4.5 | |
| PostgreSQL Common | =9.4.6 | |
| PostgreSQL Common | =9.4.7 | |
| PostgreSQL Common | =9.4.8 | |
| PostgreSQL Common | =9.4.9 | |
| PostgreSQL Common | =9.4.10 | |
| PostgreSQL Common | =9.4.11 | |
| PostgreSQL Common | =9.5 | |
| PostgreSQL Common | =9.5.1 | |
| PostgreSQL Common | =9.5.2 | |
| PostgreSQL Common | =9.5.3 | |
| PostgreSQL Common | =9.5.4 | |
| PostgreSQL Common | =9.5.5 | |
| PostgreSQL Common | =9.5.6 | |
| PostgreSQL Common | =9.6 | |
| PostgreSQL Common | =9.6.1 | |
| PostgreSQL Common | =9.6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2017/dsa-3851
- http://www.securityfocus.com/bid/98461
- http://www.securitytracker.com/id/1038476
- https://access.redhat.com/errata/RHSA-2017:1677
- https://access.redhat.com/errata/RHSA-2017:1678
- https://access.redhat.com/errata/RHSA-2017:1838
- https://access.redhat.com/errata/RHSA-2017:2425
- https://security.gentoo.org/glsa/201710-06
- https://www.postgresql.org/about/news/1746/
- https://github.com/postgres/postgres/commit/0170b10
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1450116
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1450117
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1450115
- https://bugzilla.redhat.com/show_bug.cgi?id=1448086
Frequently Asked Questions
What is the severity of CVE-2017-7485?
The severity of CVE-2017-7485 is considered medium due to the potential for a Man-in-the-Middle attack.
How do I fix CVE-2017-7485?
To fix CVE-2017-7485, update PostgreSQL to version 9.3.17, 9.4.12, 9.5.7, 9.6.3 or later.
What versions of PostgreSQL are affected by CVE-2017-7485?
PostgreSQL versions 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 are affected by CVE-2017-7485.
Is the PGREQUIRESSL environment variable related to CVE-2017-7485?
Yes, CVE-2017-7485 involves the PGREQUIRESSL environment variable not enforcing an SSL/TLS connection.
What attack vectors could exploit CVE-2017-7485?
An active Man-in-the-Middle attacker could exploit CVE-2017-7485 by stripping SSL/TLS connections.
- agent/type
- agent/weakness
- agent/last-modified-date
- agent/first-publish-date
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-7485
- agent/software-canonical-lookup
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/postgresql
- canonical/postgresql common
- version/postgresql common/9.3
- version/postgresql common/9.3.1
- version/postgresql common/9.3.2
- version/postgresql common/9.3.3
- version/postgresql common/9.3.4
- version/postgresql common/9.3.5
- version/postgresql common/9.3.6
- version/postgresql common/9.3.7
- version/postgresql common/9.3.8
- version/postgresql common/9.3.9
- version/postgresql common/9.3.10
- version/postgresql common/9.3.11
- version/postgresql common/9.3.12
- version/postgresql common/9.3.13
- version/postgresql common/9.3.14
- version/postgresql common/9.3.15
- version/postgresql common/9.3.16
- version/postgresql common/9.4
- version/postgresql common/9.4.1
- version/postgresql common/9.4.2
- version/postgresql common/9.4.3
- version/postgresql common/9.4.4
- version/postgresql common/9.4.5
- version/postgresql common/9.4.6
- version/postgresql common/9.4.7
- version/postgresql common/9.4.8
- version/postgresql common/9.4.9
- version/postgresql common/9.4.10
- version/postgresql common/9.4.11
- version/postgresql common/9.5
- version/postgresql common/9.5.1
- version/postgresql common/9.5.2
- version/postgresql common/9.5.3
- version/postgresql common/9.5.4
- version/postgresql common/9.5.5
- version/postgresql common/9.5.6
- version/postgresql common/9.6
- version/postgresql common/9.6.1
- version/postgresql common/9.6.2