CVE-2023-5868 | THREATINT

Description

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes, potentially revealing notable and confidential information. This issue exists due to excessive data output in aggregate function calls, enabling remote users to read some portion of system memory.

PUBLISHED Reserved 2023-10-31 | Published 2023-12-10 | Updated 2026-03-12 | Assigner redhat

MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Problem types

Function Call With Incorrect Argument Type

Product status

Default status

affected

4.2.4-6 (rpm) before *

unaffected

Default status

affected

4.2.4-6 (rpm) before *

unaffected

Default status

affected

4.2.4-7 (rpm) before *

unaffected

Default status

affected

4.2.4-6 (rpm) before *

unaffected

Default status

affected

4.2.4-7 (rpm) before *

unaffected

Default status

affected

8090020231114113712.a75119d5 (rpm) before *

unaffected

Default status

affected

8090020231128173330.a75119d5 (rpm) before *

unaffected

Default status

affected

8090020231114113548.a75119d5 (rpm) before *

unaffected

Default status

affected

8020020231128165246.4cda2c84 (rpm) before *

unaffected

Default status

affected

8020020231128165246.4cda2c84 (rpm) before *

unaffected

Default status

affected

8020020231128165246.4cda2c84 (rpm) before *

unaffected

Default status

affected

8040020231127153301.522a0ee4 (rpm) before *

unaffected

Default status

affected

8040020231127154806.522a0ee4 (rpm) before *

unaffected

Default status

affected

8040020231127153301.522a0ee4 (rpm) before *

unaffected

Default status

affected

8040020231127154806.522a0ee4 (rpm) before *

unaffected

Default status

affected

8040020231127153301.522a0ee4 (rpm) before *

unaffected

Default status

affected

8040020231127154806.522a0ee4 (rpm) before *

unaffected

Default status

affected

8060020231114115246.ad008a3a (rpm) before *

unaffected

Default status

affected

8060020231128165328.ad008a3a (rpm) before *

unaffected

Default status

affected

8080020231114105206.63b34585 (rpm) before *

unaffected

Default status

affected

8080020231128165335.63b34585 (rpm) before *

unaffected

Default status

affected

8080020231113134015.63b34585 (rpm) before *

unaffected

Default status

affected

0:13.13-1.el9_3 (rpm) before *

unaffected

Default status

affected

9030020231120082734.rhel9 (rpm) before *

unaffected

Default status

affected

0:13.13-1.el9_0 (rpm) before *

unaffected

Default status

affected

0:13.13-1.el9_2 (rpm) before *

unaffected

Default status

affected

9020020231115020618.rhel9 (rpm) before *

unaffected

Default status

affected

0:12.17-1.el7 (rpm) before *

unaffected

Default status

affected

0:13.13-1.el7 (rpm) before *

unaffected

Default status

affected

3.74.8-9 (rpm) before *

unaffected

Default status

affected

3.74.8-9 (rpm) before *

unaffected

Default status

affected

3.74.8-7 (rpm) before *

unaffected

Default status

affected

3.74.8-9 (rpm) before *

unaffected

Default status

affected

3.74.8-9 (rpm) before *

unaffected

Default status

affected

4.1.6-6 (rpm) before *

unaffected

Default status

affected

4.1.6-6 (rpm) before *

unaffected

Default status

affected

4.1.6-6 (rpm) before *

unaffected

Default status

affected

4.1.6-6 (rpm) before *

unaffected

Default status

affected

4.1.6-6 (rpm) before *

unaffected

Default status

unknown

Default status

affected

Default status

affected

Default status

unaffected

Default status

unaffected

Default status

affected

Timeline

2023-10-31:	Reported to Red Hat.
2023-11-09:	Made public.

Credits

Upstream acknowledges Jingzhou Fu as the original reporter.

References

access.redhat.com/errata/RHSA-2023:7545 (RHSA-2023:7545) vendor-advisory

access.redhat.com/errata/RHSA-2023:7579 (RHSA-2023:7579) vendor-advisory

access.redhat.com/errata/RHSA-2023:7580 (RHSA-2023:7580) vendor-advisory

access.redhat.com/errata/RHSA-2023:7581 (RHSA-2023:7581) vendor-advisory

access.redhat.com/errata/RHSA-2023:7616 (RHSA-2023:7616) vendor-advisory

access.redhat.com/errata/RHSA-2023:7656 (RHSA-2023:7656) vendor-advisory

access.redhat.com/errata/RHSA-2023:7666 (RHSA-2023:7666) vendor-advisory

access.redhat.com/errata/RHSA-2023:7667 (RHSA-2023:7667) vendor-advisory

access.redhat.com/errata/RHSA-2023:7694 (RHSA-2023:7694) vendor-advisory

access.redhat.com/errata/RHSA-2023:7695 (RHSA-2023:7695) vendor-advisory

access.redhat.com/errata/RHSA-2023:7714 (RHSA-2023:7714) vendor-advisory

access.redhat.com/errata/RHSA-2023:7770 (RHSA-2023:7770) vendor-advisory

access.redhat.com/errata/RHSA-2023:7772 (RHSA-2023:7772) vendor-advisory

access.redhat.com/errata/RHSA-2023:7784 (RHSA-2023:7784) vendor-advisory

access.redhat.com/errata/RHSA-2023:7785 (RHSA-2023:7785) vendor-advisory

access.redhat.com/errata/RHSA-2023:7883 (RHSA-2023:7883) vendor-advisory

access.redhat.com/errata/RHSA-2023:7884 (RHSA-2023:7884) vendor-advisory

access.redhat.com/errata/RHSA-2023:7885 (RHSA-2023:7885) vendor-advisory

access.redhat.com/errata/RHSA-2024:0304 (RHSA-2024:0304) vendor-advisory

access.redhat.com/errata/RHSA-2024:0332 (RHSA-2024:0332) vendor-advisory

access.redhat.com/errata/RHSA-2024:0337 (RHSA-2024:0337) vendor-advisory

access.redhat.com/security/cve/CVE-2023-5868 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2247168 (RHBZ#2247168) issue-tracking

security.netapp.com/advisory/ntap-20240119-0003/

www.postgresql.org/...1410-1313-1217-and-1122-released-2749/

www.postgresql.org/support/security/CVE-2023-5868/

lists.debian.org/debian-lts-announce/2023/11/msg00007.html

access.redhat.com/errata/RHSA-2023:7545 (RHSA-2023:7545) vendor-advisory

access.redhat.com/errata/RHSA-2023:7579 (RHSA-2023:7579) vendor-advisory

access.redhat.com/errata/RHSA-2023:7580 (RHSA-2023:7580) vendor-advisory

access.redhat.com/errata/RHSA-2023:7581 (RHSA-2023:7581) vendor-advisory

access.redhat.com/errata/RHSA-2023:7616 (RHSA-2023:7616) vendor-advisory

access.redhat.com/errata/RHSA-2023:7656 (RHSA-2023:7656) vendor-advisory

access.redhat.com/errata/RHSA-2023:7666 (RHSA-2023:7666) vendor-advisory

access.redhat.com/errata/RHSA-2023:7667 (RHSA-2023:7667) vendor-advisory

access.redhat.com/errata/RHSA-2023:7694 (RHSA-2023:7694) vendor-advisory

access.redhat.com/errata/RHSA-2023:7695 (RHSA-2023:7695) vendor-advisory

access.redhat.com/errata/RHSA-2023:7714 (RHSA-2023:7714) vendor-advisory

access.redhat.com/errata/RHSA-2023:7770 (RHSA-2023:7770) vendor-advisory

access.redhat.com/errata/RHSA-2023:7772 (RHSA-2023:7772) vendor-advisory

access.redhat.com/errata/RHSA-2023:7784 (RHSA-2023:7784) vendor-advisory

access.redhat.com/errata/RHSA-2023:7785 (RHSA-2023:7785) vendor-advisory

access.redhat.com/errata/RHSA-2023:7883 (RHSA-2023:7883) vendor-advisory

access.redhat.com/errata/RHSA-2023:7884 (RHSA-2023:7884) vendor-advisory

access.redhat.com/errata/RHSA-2023:7885 (RHSA-2023:7885) vendor-advisory

access.redhat.com/errata/RHSA-2024:0304 (RHSA-2024:0304) vendor-advisory

access.redhat.com/errata/RHSA-2024:0332 (RHSA-2024:0332) vendor-advisory

access.redhat.com/errata/RHSA-2024:0337 (RHSA-2024:0337) vendor-advisory

access.redhat.com/security/cve/CVE-2023-5868 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2247168 (RHBZ#2247168) issue-tracking

www.postgresql.org/...1410-1313-1217-and-1122-released-2749/

www.postgresql.org/support/security/CVE-2023-5868/

cve.org (CVE-2023-5868)

nvd.nist.gov (CVE-2023-5868)

Download JSON