CVE-2023-5869: Postgresql: buffer overrun from integer overflow in array modification
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing specially crafted data. This enables the execution of arbitrary code on the target system, allowing users to write arbitrary bytes to memory and extensively read the server's memory.
Other sources
PostgreSQL is vulnerable to a buffer overflow, caused by improper bounds checking by the SQL array values. By sending a specially crafted request, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system.
— IBM
While modifying certain SQL array values, missing overflow checks let authenticated database users write arbitrary bytes to a memory area that facilitates arbitrary code execution. Missing overflow checks also let authenticated database users read a wide area of server memory. The CVE-2021-32027 fix covered some attacks of this description, but it missed others.
— Red Hat
Affected Software
Event History
Frequently Asked Questions
What is CVE-2023-5869?
CVE-2023-5869 is a vulnerability that allows for buffer overrun from integer overflow in array modification.
How severe is CVE-2023-5869?
CVE-2023-5869 has a severity level of high (7).
Which software versions are affected by CVE-2023-5869?
The affected software versions include postgresql-11, postgresql-13, postgresql-15, postgresql-16, PostgreSQL, and postgresql-14.
How can I fix CVE-2023-5869?
To fix CVE-2023-5869, update your PostgreSQL package to the recommended remedy versions provided by the source (debian, redhat, or ubuntu).
Where can I find more information about CVE-2023-5869?
You can find more information about CVE-2023-5869 at the following references: [link1], [link2], [link3].