CVE-2018-1058
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
Affected products
The PostgreSQL Global Development Group · postgresqlWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:2511https://access.redhat.com/errata/RHSA-2018:2566https://access.redhat.com/errata/RHSA-2018:3816https://bugzilla.redhat.com/show_bug.cgi?id=1547044https://usn.ubuntu.com/3589-1/https://www.postgresql.org/about/news/1834/http://www.securityfocus.com/bid/103221