CVE-2019-3466

The pg_ctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
debianCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
postgresqlpostgresql-common
𝑥
< 210
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
canonicalubuntu_linux
19.04
canonicalubuntu_linux
19.10
debiandebian_linux
9.0
debiandebian_linux
10.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
postgresql-common
bullseye
225+deb11u1
fixed
bookworm
248
fixed
sid
265
fixed
trixie
265
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
postgresql-common
eoan
Fixed 204ubuntu0.1
released
disco
Fixed 199ubuntu0.1
released
bionic
Fixed 190ubuntu0.1
released
xenial
Fixed 173ubuntu0.3
released
trusty
Fixed 154ubuntu1.1+esm1
released
Common Weakness Enumeration
References
https://blog.mirch.io/2019/11/15/cve-2019-3466-debian-ubuntu-pg_ctlcluster-privilege-escalation/
https://usn.ubuntu.com/4194-2/
https://blog.mirch.io/2019/11/15/cve-2019-3466-debian-ubuntu-pg_ctlcluster-privilege-escalation/
https://usn.ubuntu.com/4194-2/