PT-2016-3304 · Postgresql+1 · Postgresql-Common+1
Dawid Golunski
·
Published
2016-12-20
·
Updated
2017-12-21
·
CVE-2016-1255
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
postgresql-common versions prior to 134wheezy5
postgresql-common versions prior to 165+deb8u2
postgresql-common versions prior to 178
postgresql-common versions prior to 129ubuntu1.2
postgresql-common versions prior to 154ubuntu1.1
postgresql-common versions prior to 173ubuntu0.1
postgresql-common versions prior to 179ubuntu0.1
postgresql-common versions prior to 184ubuntu1.1
Description
The issue is related to a symlink attack on a logfile in /var/log/postgresql, allowing local users to gain root privileges. The vulnerability is caused by incorrect link resolution before accessing a file, which can be exploited to gain unauthorized access to confidential data, cause a denial of service, and impact data integrity.
Recommendations
For versions prior to 134wheezy5, update to version 134wheezy5 or later.
For versions prior to 165+deb8u2, update to version 165+deb8u2 or later.
For versions prior to 178, update to version 178 or later.
For versions prior to 129ubuntu1.2, update to version 129ubuntu1.2 or later.
For versions prior to 154ubuntu1.1, update to version 154ubuntu1.1 or later.
For versions prior to 173ubuntu0.1, update to version 173ubuntu0.1 or later.
For versions prior to 179ubuntu0.1, update to version 179ubuntu0.1 or later.
For versions prior to 184ubuntu1.1, update to version 184ubuntu1.1 or later.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ubuntu
Postgresql-Common