CVE-2018-1115

postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
postgresqlpostgresql
𝑥
< 9.6.9
postgresqlpostgresql
10.0 ≤
𝑥
< 10.4
opensuseleap
15.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
postgresql-10
artful
dne
bionic
Fixed 10.4-0ubuntu0.18.04
released
trusty
dne
xenial
dne
postgresql-9.1
artful
dne
bionic
dne
trusty
dne
xenial
dne
postgresql-9.3
artful
dne
bionic
dne
trusty
not-affected
xenial
dne
postgresql-9.5
artful
dne
bionic
dne
trusty
dne
xenial
not-affected
postgresql-9.6
artful
ignored
bionic
dne
trusty
dne
xenial
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libecpg6
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.25
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.25
fixed
libpq5
suse enterprise desktop 15
10.5-4.5.1
fixed
suse enterprise desktop 15 SP1
10.6-6.25
fixed
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.25
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.25
fixed
libpq5-32bit
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
postgresql10
suse enterprise desktop 15
10.5-4.5.1
fixed
suse enterprise desktop 15 SP1
10.6-6.26
fixed
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-contrib
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-devel
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.25
fixed
suse enterprise sap 15 SP2
10.12-8.13.9
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.25
fixed
suse enterprise server 15 SP2
10.12-8.13.9
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-docs
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
postgresql10-plperl
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-plpython
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-pltcl
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql10-server
suse enterprise sap 15
10.5-4.5.1
fixed
suse enterprise sap 15 SP1
10.6-6.26
fixed
suse enterprise sap 15 SP2
10.12-8.13.10
fixed
suse enterprise sap 15 SP3
10.16-8.29.1
fixed
suse enterprise server 15
10.5-4.5.1
fixed
suse enterprise server 15 SP1
10.6-6.26
fixed
suse enterprise server 15 SP2
10.12-8.13.10
fixed
suse enterprise server 15 SP3
10.16-8.29.1
fixed
postgresql96
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
postgresql96-contrib
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
postgresql96-docs
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
postgresql96-server
suse enterprise sap 12 SP3
9.6.9-3.19.1
fixed
suse enterprise server 12 SP3
9.6.9-3.19.1
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html
http://www.securityfocus.com/bid/104285
https://access.redhat.com/errata/RHSA-2018:2565
https://access.redhat.com/errata/RHSA-2018:2566
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1115
https://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commitdiff%3Bh=7b34740
https://security.gentoo.org/glsa/201810-08
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html
http://www.securityfocus.com/bid/104285
https://access.redhat.com/errata/RHSA-2018:2565
https://access.redhat.com/errata/RHSA-2018:2566
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1115
https://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commitdiff%3Bh=7b34740
https://security.gentoo.org/glsa/201810-08