openEuler 22.03 LTS update for postgresql

Published: 2022-11-11

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2021-23214 CVE-2021-23222
CWE-ID	CWE-311
Exploitation vector	Local network
Public exploit	N/A
Vulnerable software	openEuler Operating systems & Components / Operating system postgresql-test-rpm-macros Operating systems & Components / Operating system package or component postgresql-static Operating systems & Components / Operating system package or component postgresql-pltcl Operating systems & Components / Operating system package or component postgresql-plperl Operating systems & Components / Operating system package or component postgresql-docs Operating systems & Components / Operating system package or component postgresql-test Operating systems & Components / Operating system package or component postgresql-server-devel Operating systems & Components / Operating system package or component postgresql-debugsource Operating systems & Components / Operating system package or component postgresql-llvmjit Operating systems & Components / Operating system package or component postgresql-contrib Operating systems & Components / Operating system package or component postgresql-server Operating systems & Components / Operating system package or component postgresql-plpython3 Operating systems & Components / Operating system package or component postgresql-debuginfo Operating systems & Components / Operating system package or component postgresql Operating systems & Components / Operating system package or component
Vendor	openEuler

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Missing Encryption of Sensitive Data

EUVDB-ID: #VU58113

Risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-23214

CWE-ID: CWE-311 - Missing Encryption of Sensitive Data

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to the way PostgreSQL handles encrypted connections. When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS

postgresql-test-rpm-macros: before 13.3-7

postgresql-static: before 13.3-7

postgresql-pltcl: before 13.3-7

postgresql-plperl: before 13.3-7

postgresql-docs: before 13.3-7

postgresql-test: before 13.3-7

postgresql-server-devel: before 13.3-7

postgresql-debugsource: before 13.3-7

postgresql-llvmjit: before 13.3-7

postgresql-contrib: before 13.3-7

postgresql-server: before 13.3-7

postgresql-plpython3: before 13.3-7

postgresql-debuginfo: before 13.3-7

postgresql: before 13.3-7

CPE2.3

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2061

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Missing Encryption of Sensitive Data

EUVDB-ID: #VU58114