CVE-2018-1115
First published: Mon Apr 30 2018(Updated: )
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/postegresql | <10.4 | 10.4 |
| redhat/postegresql | <9.6.9 | 9.6.9 |
| PostgreSQL PostgreSQL | <9.6.9 | |
| PostgreSQL PostgreSQL | >=10.0<10.4 | |
| openSUSE Leap | =15.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1576771
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1576772
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1576773
- https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=7b34740
- https://access.redhat.com/errata/RHSA-2018:2565
- https://access.redhat.com/errata/RHSA-2018:2566
- https://access.redhat.com/support/policy/updates/jboss_notes
- https://bugzilla.redhat.com/show_bug.cgi?id=1573276
- http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html
- http://www.securityfocus.com/bid/104285
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1115
- https://security.gentoo.org/glsa/201810-08
- https://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commitdiff%3Bh=7b34740
Frequently Asked Questions
What is CVE-2018-1115?
CVE-2018-1115 is a vulnerability in PostgreSQL before versions 10.4 and 9.6.9 where the adminpack extension is vulnerable to log rotation exploit.
How severe is CVE-2018-1115?
CVE-2018-1115 has a severity score of 9.1, which is categorized as critical.
What is the affected software for CVE-2018-1115?
The affected software for CVE-2018-1115 includes PostgreSQL versions before 10.4 and 9.6.9 as well as openSUSE Leap 15.1.
What is the remedy for CVE-2018-1115?
The remedy for CVE-2018-1115 is to update affected PostgreSQL versions to 10.4 or 9.6.9, or to update openSUSE Leap 15.1.
How can an attacker exploit CVE-2018-1115?
An attacker who is able to connect to a database with the adminpack extension can exploit CVE-2018-1115 to force log rotation.
- agent/type
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-1115
- agent/software-canonical-lookup
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- package-manager/redhat
- vendor/postgresql
- canonical/postgresql postgresql
- version/postgresql postgresql/10.0
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.1