Anolis OS update for postgresql:13 module
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-2625 CVE-2022-41862 |
| CWE-ID | CWE-264 CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Anolis OS Operating systems & Components / Operating system postgresql-test-rpm-macros Operating systems & Components / Operating system package or component postgresql-upgrade-devel Operating systems & Components / Operating system package or component postgresql-upgrade Operating systems & Components / Operating system package or component postgresql-test Operating systems & Components / Operating system package or component postgresql-static Operating systems & Components / Operating system package or component postgresql-server-devel Operating systems & Components / Operating system package or component postgresql-server Operating systems & Components / Operating system package or component postgresql-pltcl Operating systems & Components / Operating system package or component postgresql-plpython3 Operating systems & Components / Operating system package or component postgresql-plperl Operating systems & Components / Operating system package or component postgresql-docs Operating systems & Components / Operating system package or component postgresql-contrib Operating systems & Components / Operating system package or component postgresql Operating systems & Components / Operating system package or component pg_repack Operating systems & Components / Operating system package or component pgaudit Operating systems & Components / Operating system package or component postgres-decoderbufs Operating systems & Components / Operating system package or component |
| Vendor | OpenAnolis |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU66429
Risk: Low
CVSSv4.0: 0.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-2625
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote user to escalate privileges within the database.
The vulnerability exists due to extension scripts can replace objects that do not belong to the extension when using the CREATE OR REPLACE or CREATE IF NOT EXISTS commands. A remote user with (1) permissions to create non-temporary objects in at least one schema, (2) ability to lure
or wait for an administrator to create or update an affected extension
in that schema, and (3) ability to lure or wait for a victim to use the
object targeted in CREATE OR REPLACE or CREATE IF NOT EXISTS can run arbitrary code as the victim role.
Install updates from vendor's repository.
Vulnerable software versionsAnolis OS: 8
postgresql-test-rpm-macros: before 13.10-1.0.1
postgresql-upgrade-devel: before 13.10-1.0.1
postgresql-upgrade: before 13.10-1.0.1
postgresql-test: before 13.10-1.0.1
postgresql-static: before 13.10-1.0.1
postgresql-server-devel: before 13.10-1.0.1
postgresql-server: before 13.10-1.0.1
postgresql-pltcl: before 13.10-1.0.1
postgresql-plpython3: before 13.10-1.0.1
postgresql-plperl: before 13.10-1.0.1
postgresql-docs: before 13.10-1.0.1
postgresql-contrib: before 13.10-1.0.1
postgresql: before 13.10-1.0.1
pg_repack: before 1.4.6-3
pgaudit: before 1.5.0-1
postgres-decoderbufs: before 0.10.0-2
CPE2.3- cpe:2.3:o:openanolis:anolis_os:8:*:*:*:*:*:*:*
- cpe:2.3:a:openanolis:postgresql-test-rpm-macros:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-upgrade-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-upgrade:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-test:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-static:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-server-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-server:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-pltcl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-plpython3:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-plperl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-docs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-contrib:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:pg_repack:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:pgaudit:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgres-decoderbufs:*:*:*:*:*:anolis_os:*:*
https://anas.openanolis.cn/errata/detail/ANSA-2023:0111
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU72088
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-41862
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition. A remote attacker can send an unterminated string during the establishment of Kerberos transport encryption, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall updates from vendor's repository.
Vulnerable software versionsAnolis OS: 8
postgresql-test-rpm-macros: before 13.10-1.0.1
postgresql-upgrade-devel: before 13.10-1.0.1
postgresql-upgrade: before 13.10-1.0.1
postgresql-test: before 13.10-1.0.1
postgresql-static: before 13.10-1.0.1
postgresql-server-devel: before 13.10-1.0.1
postgresql-server: before 13.10-1.0.1
postgresql-pltcl: before 13.10-1.0.1
postgresql-plpython3: before 13.10-1.0.1
postgresql-plperl: before 13.10-1.0.1
postgresql-docs: before 13.10-1.0.1
postgresql-contrib: before 13.10-1.0.1
postgresql: before 13.10-1.0.1
pg_repack: before 1.4.6-3
pgaudit: before 1.5.0-1
postgres-decoderbufs: before 0.10.0-2
CPE2.3- cpe:2.3:o:openanolis:anolis_os:8:*:*:*:*:*:*:*
- cpe:2.3:a:openanolis:postgresql-test-rpm-macros:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-upgrade-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-upgrade:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-test:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-static:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-server-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-server:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-pltcl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-plpython3:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-plperl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-docs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql-contrib:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgresql:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:pg_repack:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:pgaudit:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:postgres-decoderbufs:*:*:*:*:*:anolis_os:*:*
https://anas.openanolis.cn/errata/detail/ANSA-2023:0111
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
