CVE-2021-32028

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions postgresql (affected versions not specified)

Description A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this issue is to data confidentiality. This issue is related to memory disclosure errors in the implementation of the INSERT ... ON CONFLICT ... DO UPDATE command.

Recommendations At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Memory Leak

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-200

Related Identifiers

ALSA-2021:2360

ALSA-2021:2372

ALSA-2021:2375

ALT-PU-2021-1820

ALT-PU-2021-1821

ALT-PU-2021-1822

ALT-PU-2021-1823

ALT-PU-2021-1824

ALT-PU-2021-1826

ALT-PU-2021-1848

ALT-PU-2021-1849

ALT-PU-2021-1850

ALT-PU-2021-1851

ALT-PU-2021-1852

ALT-PU-2021-1902

ALT-PU-2021-1903

ALT-PU-2021-1904

ALT-PU-2021-1905

ALT-PU-2021-2604

ALT-PU-2021-3564

BDU:2021-02775

BIT-POSTGRESQL-2021-32028

CESA-2021_2360

CESA-2021_2361

CESA-2021_2372

CESA-2021_2375

CLEANSTART-2026-FW42039

CLEANSTART-2026-HJ04971

CVE-2021-32028

DLA-2662-1

DSA-4915-1

ECHO-6788-82B2-DD38

JLSEC-2026-32

OESA-2021-1439

OESA-2022-1706

OPENSUSE-SU-2021:0894-1

OPENSUSE-SU-2021:1785-1

OPENSUSE-SU-2021:1970-1

OPENSUSE-SU-2021:1994-1

OPENSUSE-SU-2021_0894-1

OPENSUSE-SU-2021_1785-1

OPENSUSE-SU-2021_1970-1

OPENSUSE-SU-2021_1994-1

OPENSUSE-SU-2024:11184-1

OPENSUSE-SU-2024:11185-1

OPENSUSE-SU-2024:11186-1

OPENSUSE-SU-2024:11187-1

OPENSUSE-SU-2024:12387-1

OPENSUSE-SU-2024:13243-1

OPENSUSE-SU-2024:14360-1

OPENSUSE-SU-2025:15580-1

RHSA-2021:2360

RHSA-2021:2361

RHSA-2021:2372

RHSA-2021:2375

RHSA-2021:2389

RHSA-2021:2390

RHSA-2021:2391

RHSA-2021:2392

RHSA-2021:2393

RHSA-2021:2394

RHSA-2021:2395

RHSA-2021:2396

RHSA-2021_2360

RHSA-2021_2361

RHSA-2021_2372

RHSA-2021_2375

RLSA-2021:2360

RLSA-2021:2361

RLSA-2021:2372

RLSA-2021:2375

SUSE-SU-2021:1782-1

SUSE-SU-2021:1783-1

SUSE-SU-2021:1784-1

SUSE-SU-2021:1785-1

SUSE-SU-2021:1785-2

SUSE-SU-2021:1970-1

SUSE-SU-2021:1994-1

SUSE-SU-2021:2777-1

SUSE-SU-2021:3481-1

SUSE-SU-2022:2958-1

USN-4972-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Postgresql

Red Hat

Rocky Linux

Suse

Ubuntu

CVE-2021-32028

Weakness Enumeration

Related Identifiers

Affected Products

References · 243