CVE-2016-2193

Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 9.5.2

Description The issue is related to errors in security settings, allowing a remote attacker to bypass existing access restrictions by leveraging a session that performs queries as more than one role. This is due to the improper maintenance of row-security status in cached plans.

Recommendations For versions prior to 9.5.2, update to version 9.5.2 or later to resolve the issue. As a temporary workaround, consider restricting access to roles that perform queries as more than one role to minimize the risk of exploitation.