postgresql: multiple vulnerabilities [LWN.net]

Package(s):

postgresql-8.1, postgresql-8.3

CVE #(s):

CVE-2009-3229 CVE-2009-3230 CVE-2009-3231

Created:

September 21, 2009

Updated:

March 8, 2010

Description:

From the Ubuntu advisory:

It was discovered that PostgreSQL could be made to unload and reload an already loaded module by using the LOAD command. A remote authenticated attacker could exploit this to cause a denial of service. This issue did not affect Ubuntu 6.06 LTS. (CVE-2009-3229)

Due to an incomplete fix for CVE-2007-6600, RESET ROLE and RESET SESSION AUTHORIZATION operations were allowed inside security-definer functions. A remote authenticated attacker could exploit this to escalate privileges within PostgreSQL. (CVE-2009-3230)

It was discovered that PostgreSQL did not properly perform LDAP authentication under certain circumstances. When configured to use LDAP with anonymous binds, a remote attacker could bypass authentication by supplying an empty password. This issue did not affect Ubuntu 6.06 LTS. (CVE-2009-3231)

Alerts:

Gentoo	201110-22	postgresql-base	2011-10-25
rPath	rPSA-2010-0012-1	postgresql	2010-03-07
Mandriva	MDVSA-2009:251-1	postgresql8.2	2009-12-08
Red Hat	RHSA-2009:1461-01	Red Hat Application Stack	2009-09-23
Ubuntu	USN-834-1	postgresql-8.1, postgresql-8.3	2009-09-21
CentOS	CESA-2009:1485	postgresql	2009-10-07
Red Hat	RHSA-2009:1484-01	postgresql	2009-10-07
Red Hat	RHSA-2009:1485-01	postgresql	2009-10-07
CentOS	CESA-2009:1484	postgresql	2009-10-09
CentOS	CESA-2009:1484	postgresql	2009-10-30
SuSE	SUSE-SR:2009:017	php5, newt, rubygem-actionpack, rubygem-activesupport, java-1_4_2-ibm, postgresql, samba, phpMyAdmin, viewvc	2009-10-26
SuSE	SUSE-SR:2009:016	silc-toolkit, open-iscsi, strongswan,freeswan,openswan, mutt, openldap2, cyrus-imapd, java-1_6_0-openjdk, postgresql, IBMJava2-JRE/java-1_4_2-ibm, wireshark, freeradius, dovecot	2009-10-13
Debian	DSA-1900-1	postgresql-7.4	2009-10-02