Description
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service.
Below is a complete list of vulnerabilities:
- Memory disclosure vulnerability in aggregate function calls can be exploited to obtain sensitive information.
- Buffer overrun vulnerability in array modification can be exploited to obtain sensitive information.
- Denial of service vulnerability can be exploited to cause denial of service.
Original advisories
PostgreSQL: CVE-2023-5868: Memory disclosure in aggregate function calls
- PostgreSQL: CVE-2023-5869: Buffer overrun from integer overflow in array modification
- PostgreSQL: CVE-2023-5870: Role “pg_cancel_backend” can signal certain superuser processes
Related products
CVE list
- CVE-2023-5868 unknown
- CVE-2023-5869 unknown
- CVE-2023-5870 unknown
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!