Description
INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1,
9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contents that
the invoker lacks privilege to read. These exploits affect only tables
where the attacker lacks full read access but has both INSERT and UPDATE
privileges. Exploits bypass row level security policies and lack of SELECT
privilege.
Notes
| sbeattie | RLS and ON CONFLICT DO UPDATE introduced in 9.5 |
Package
| Upstream: | released
(10.1)
|
| Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
| Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
| Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
| Ubuntu 18.04 LTS (Bionic Beaver): | not-affected
(10.1-1)
|
Package
| Upstream: | not-affected
|
| Ubuntu 12.04 ESM (Precise Pangolin): | not-affected
|
| Ubuntu 14.04 ESM (Trusty Tahr): | DNE
(trusty was not-affected)
|
| Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
| Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
| Upstream: | needs-triage
|
| Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
| Ubuntu 14.04 ESM (Trusty Tahr): | not-affected
|
| Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
| Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
| Upstream: | needs-triage
|
| Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
| Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
| Ubuntu 16.04 LTS (Xenial Xerus): | released
(9.5.10-0ubuntu0.16.04)
|
| Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Package
| Upstream: | needs-triage
|
| Ubuntu 12.04 ESM (Precise Pangolin): | DNE
|
| Ubuntu 14.04 ESM (Trusty Tahr): | DNE
|
| Ubuntu 16.04 LTS (Xenial Xerus): | DNE
|
| Ubuntu 18.04 LTS (Bionic Beaver): | DNE
|
Updated: 2020-03-18 22:48:56 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)