Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2018-1052

Published: August 31, 2023Last modified: August 31, 2023

Description

Memory disclosure vulnerability in table partitioning was found in postgresql 10.x before 10.2, allowing an authenticated attacker to read arbitrary bytes of server memory via purpose-crafted insert to a partitioned table.

Severity score breakdown

ParameterValue
Base score6.5
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredLOW
User interactionNONE
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactNONE
Availability impactNONE
VectorCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSpostgresql15Not affected (15.4-r0)
Streampostgresql15Not affected (15.4-r0)

References

ON THIS PAGE