{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-08-11T00:00:00", "descriptions": [{"lang": "en", "value": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-04T19:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "RHSA-2016:1781", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1781.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/docs/current/static/release-9-4-9.html"}, {"name": "1036617", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1036617"}, {"name": "RHSA-2016:1821", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1821.html"}, {"name": "DSA-3646", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2016/dsa-3646"}, {"name": "GLSA-201701-33", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201701-33"}, {"name": "RHSA-2017:2425", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2017:2425"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/docs/current/static/release-9-5-4.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/docs/current/static/release-9-3-14.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/about/news/1688/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/docs/current/static/release-9-2-18.html"}, {"name": "92435", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/92435"}, {"name": "RHSA-2016:2606", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-2606.html"}, {"name": "RHSA-2016:1820", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1820.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.postgresql.org/docs/current/static/release-9-1-23.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2016-5424", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "RHSA-2016:1781", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-1781.html"}, {"name": "https://www.postgresql.org/docs/current/static/release-9-4-9.html", "refsource": "CONFIRM", "url": "https://www.postgresql.org/docs/current/static/release-9-4-9.html"}, {"name": "1036617", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1036617"}, {"name": "RHSA-2016:1821", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-1821.html"}, {"name": "DSA-3646", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2016/dsa-3646"}, {"name": "GLSA-201701-33", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201701-33"}, {"name": "RHSA-2017:2425", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2017:2425"}, {"name": "https://www.postgresql.org/docs/current/static/release-9-5-4.html", "refsource": "CONFIRM", "url": "https://www.postgresql.org/docs/current/static/release-9-5-4.html"}, {"name": "https://www.postgresql.org/docs/current/static/release-9-3-14.html", "refsource": "CONFIRM", "url": "https://www.postgresql.org/docs/current/static/release-9-3-14.html"}, {"name": "https://www.postgresql.org/about/news/1688/", "refsource": "CONFIRM", "url": "https://www.postgresql.org/about/news/1688/"}, {"name": "https://www.postgresql.org/docs/current/static/release-9-2-18.html", "refsource": "CONFIRM", "url": "https://www.postgresql.org/docs/current/static/release-9-2-18.html"}, {"name": "92435", "refsource": "BID", "url": "http://www.securityfocus.com/bid/92435"}, {"name": "RHSA-2016:2606", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-2606.html"}, {"name": "RHSA-2016:1820", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-1820.html"}, {"name": "https://www.postgresql.org/docs/current/static/release-9-1-23.html", "refsource": "CONFIRM", "url": "https://www.postgresql.org/docs/current/static/release-9-1-23.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T01:00:59.909Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2016:1781", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1781.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/docs/current/static/release-9-4-9.html"}, {"name": "1036617", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1036617"}, {"name": "RHSA-2016:1821", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1821.html"}, {"name": "DSA-3646", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2016/dsa-3646"}, {"name": "GLSA-201701-33", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201701-33"}, {"name": "RHSA-2017:2425", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2017:2425"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/docs/current/static/release-9-5-4.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/docs/current/static/release-9-3-14.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/about/news/1688/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/docs/current/static/release-9-2-18.html"}, {"name": "92435", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/92435"}, {"name": "RHSA-2016:2606", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-2606.html"}, {"name": "RHSA-2016:1820", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1820.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.postgresql.org/docs/current/static/release-9-1-23.html"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-5424", "datePublished": "2016-12-09T23:00:00", "dateReserved": "2016-06-10T00:00:00", "dateUpdated": "2024-08-06T01:00:59.909Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "matchCriteriaId": "4CB60B43-0107-45CB-A520-7135515095F6", "versionEndIncluding": "9.1.22", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2:*:*:*:*:*:*:*", "matchCriteriaId": "AD27648F-E2FF-4779-97F9-2632DCC6B16D", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "CEFB4916-8B59-4534-804C-CF9DA1B18508", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "3413A3AB-45A3-48E1-9B30-1194C4E7D49D", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "5760CE83-4802-42A0-9338-E1E634882450", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "6B41009E-4028-4D82-B8D0-8B949EDC0A68", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "832F3EBE-A92C-4FB3-BF3C-0E7B750F966B", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "1571EE80-55A6-4F91-909B-C46BA19EC76F", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "2848E3BC-293A-4A75-BEB7-C2F1637AD3E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "ADC9133E-94FC-4199-BD69-BBB46CF3799F", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.9:*:*:*:*:*:*:*", "matchCriteriaId": "200172CE-40AB-49E3-93D1-9947E3CBFFF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "E90B21A9-19A7-4DCB-A2FE-C558CCB6BBB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.11:*:*:*:*:*:*:*", "matchCriteriaId": "924D1F84-EC50-44C3-A156-DC8E3A5E3909", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.12:*:*:*:*:*:*:*", "matchCriteriaId": "4A5EAF3B-B148-4B57-8E4E-0B5365003DFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.13:*:*:*:*:*:*:*", "matchCriteriaId": "D5CE8DB4-CD97-4F60-9080-9FB093BD60CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.14:*:*:*:*:*:*:*", "matchCriteriaId": "9B5AA780-4378-4959-9256-510C65E6E5B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.15:*:*:*:*:*:*:*", "matchCriteriaId": "74C9EB31-5D8E-4583-BC95-700F53854964", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.16:*:*:*:*:*:*:*", "matchCriteriaId": "3700FF66-108C-47C2-B4C2-1CB0B5575EDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.2.17:*:*:*:*:*:*:*", "matchCriteriaId": "239F26B4-CFB2-4D7A-939E-0215A336A490", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3:*:*:*:*:*:*:*", "matchCriteriaId": "5B890251-95EB-44F3-A6A7-F718F3C807B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "D2E5BD02-8C3D-4687-88DE-1C00366270E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "709F5DF9-9F3A-42C3-890B-521B13118C0E", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "14D85A34-C897-4E52-8F97-18CA51C5461A", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "A40DAD2B-A6D4-43D8-B282-A3C672356D6A", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "FC2FE391-9414-480E-A9B1-CF70280E315E", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "55B6A4ED-FA3B-4251-BF82-755F95277CF9", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "C7142DF3-124D-43D7-ADD9-70F4F7298557", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "28DEA438-A0ED-49DC-AE51-4E9D8D4B6E7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.9:*:*:*:*:*:*:*", "matchCriteriaId": "810B184F-6FB8-48D8-A569-F47BA43C4862", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.10:*:*:*:*:*:*:*", "matchCriteriaId": "064BF155-7E2D-47B9-BD2B-C6E9FC06F5FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.11:*:*:*:*:*:*:*", "matchCriteriaId": "676A81BD-7EEE-4770-B9AC-451B09844D6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.12:*:*:*:*:*:*:*", "matchCriteriaId": "30F23D38-BDD6-48E6-A6B2-29CD962EED99", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.3.13:*:*:*:*:*:*:*", "matchCriteriaId": "89833234-3890-4E2E-8FCF-09925D83ED67", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4:*:*:*:*:*:*:*", "matchCriteriaId": "77D1323D-3096-4D0F-823A-ECAC9017646D", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "8A587AF3-5E70-4455-8621-DFD048207DE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "526AFF26-B3EC-41C3-AC4C-85BFA3F99AC8", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "89D2CAB7-C3D9-4F21-B902-2E498D00EFEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "88797795-8B1C-455F-8C52-6169B2E47D53", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "DBDE0CC8-F1DF-4723-8FCB-9A33EA8B12D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "90F13667-019B-49DF-929C-3D376FCDE6E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "B9E20AA3-C0D3-492C-AF3B-9F61550E6983", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "251C78CA-EEC0-49A8-A3D2-3C86D16CCB7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.5:*:*:*:*:*:*:*", "matchCriteriaId": "9FF7FC5B-C9E3-4109-B3D6-9AC06F75DCB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "D2C15A86-9ED9-492E-877B-86963DAA761A", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "9EF74623-EF0E-455D-ADEB-9E336B539D86", "vulnerable": true}, {"criteria": "cpe:2.3:a:postgresql:postgresql:9.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "FACD7AB7-34E9-4DFC-A788-7B9BF745D780", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation."}, {"lang": "es", "value": "PostgreSQL en versiones anteriores a 9.1.23, 9.2.x en versiones anteriores a 9.2.18, 9.3.x en versiones anteriores a 9.3.14, 9.4.x en versiones anteriores a 9.4.9 y 9.5.x en versiones anteriores a 9.5.4 podr\u00edan permitir a usuarios remotos autenticados con el rol CREATEDB o CREATEROLE obtener privilegios de superusuario a trav\u00e9s de un car\u00e1cter (1) \" (comillas dobles), (2) \\ (barra invertida), (3) retorno de carro o (4) nueva linea en (a) una base de datos o (b) el nombre del rol que se maneja incorrectamente durante una operaci\u00f3n administrativa."}], "id": "CVE-2016-5424", "lastModified": "2018-01-05T02:31:01.527", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-12-09T23:59:02.050", "references": [{"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-1781.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-1820.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-1821.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-2606.html"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2016/dsa-3646"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/92435"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1036617"}, {"source": "secalert@redhat.com", "url": "https://access.redhat.com/errata/RHSA-2017:2425"}, {"source": "secalert@redhat.com", "url": "https://security.gentoo.org/glsa/201701-33"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory", "VDB Entry"], "url": "https://www.postgresql.org/about/news/1688/"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.postgresql.org/docs/current/static/release-9-1-23.html"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.postgresql.org/docs/current/static/release-9-2-18.html"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.postgresql.org/docs/current/static/release-9-3-14.html"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.postgresql.org/docs/current/static/release-9-4-9.html"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://www.postgresql.org/docs/current/static/release-9-5-4.html"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank the PostgreSQL project for reporting this issue. Upstream acknowledges Nathan Bossart as the original reporter.", "affected_release": [{"advisory": "RHSA-2016:2606", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "postgresql-0:9.2.18-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2016-11-03T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "rh-postgresql95-0:2.2-3.el6", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "rh-postgresql95-postgresql-0:9.5.7-2.el6", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "spacewalk-backend-0:2.3.3-53.el6sat", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "spacewalk-postgresql-server-0:9.5-1.el6sat", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "spacewalk-setup-postgresql-0:2.3.0-27.el6sat", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "spacewalk-utils-0:2.3.2-32.el6sat", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2017:2425", "cpe": "cpe:/a:redhat:network_satellite:5.7::el6", "package": "spacewalk-web-0:2.3.2-35.el6sat", "product_name": "Red Hat Satellite 5.7", "release_date": "2017-08-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "postgresql92-postgresql-0:9.2.18-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "postgresql92-postgresql-0:9.2.18-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "postgresql92-postgresql-0:9.2.18-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el6", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el6", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "postgresql92-postgresql-0:9.2.18-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "postgresql92-postgresql-0:9.2.18-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1781", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql94-postgresql-0:9.4.9-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date": "2016-08-31T00:00:00Z"}, {"advisory": "RHSA-2016:1820", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "postgresql92-postgresql-0:9.2.18-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date": "2016-09-07T00:00:00Z"}, {"advisory": "RHSA-2016:1821", "cpe": "cpe:/a:redhat:rhel_software_collections:2::el7", "package": "rh-postgresql95-postgresql-0:9.5.4-1.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS", "release_date": "2016-09-07T00:00:00Z"}], "bugzilla": {"description": "postgresql: privilege escalation via crafted database and role names", "id": "1364002", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1364002"}, "csaw": false, "cvss": {"cvss_base_score": "6.0", "cvss_scoring_vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "status": "verified"}, "cvss3": {"cvss3_base_score": "7.6", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-20", "details": ["PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.", "A flaw was found in the way PostgreSQL client programs handled database and role names containing newlines, carriage returns, double quotes, or backslashes. By crafting such an object name, roles with the CREATEDB or CREATEROLE option could escalate their privileges to superuser when a superuser next executes maintenance with a vulnerable client program."], "name": "CVE-2016-5424", "package_state": [{"cpe": "cpe:/a:redhat:cloudforms_managementengine:5", "fix_state": "Affected", "package_name": "postgresql", "product_name": "CloudForms Management Engine 5"}, {"cpe": "cpe:/a:redhat:cloudforms_managementengine:5", "fix_state": "Affected", "package_name": "postgresql92-postgresql", "product_name": "CloudForms Management Engine 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "postgresql", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "postgresql84", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Will not fix", "package_name": "postgresql", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2016-08-11T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-5424\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-5424"], "threat_severity": "Moderate", "upstream_fix": "postgresql 9.5.4, postgresql 9.4.9, postgresql 9.3.14, postgresql 9.2.18, postgresql 9.1.23"}