CVE-2018-1052

Published: 2/9/2018 Last updated: 9/16/2024 Reserved: 12/4/2017

Memory disclosure vulnerability in table partitioning was found in postgresql 10.x before 10.2, allowing an authenticated attacker to read arbitrary bytes of server memory via purpose-crafted insert to a partitioned table.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (5)

conf-mingw-w64-postgresql-i686 conf-mingw-w64-postgresql-x86_64 conf-postgresql ocsigen-start postgresql

Products affected (1)

Product	Vendor	Version
postgresql	The PostgreSQL Global Development Group	< 6.0.6003.22870

References (4)

https://www.postgresql.org/about/news/1829/
http://www.securityfocus.com/bid/102987
https://www.postgresql.org/about/news/1829/
http://www.securityfocus.com/bid/102987