We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-5869

Postgresql: buffer overrun from integer overflow in array modification



Description

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remote user can trigger the overflow by providing specially crafted data. This enables the execution of arbitrary code on the target system, allowing users to write arbitrary bytes to memory and extensively read the server's memory.

Reserved 2023-10-31 | Published 2023-12-10 | Updated 2024-09-13 | Assigner redhat


HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Integer Overflow or Wraparound

Product status

Default status
affected

4.2.4-6 before *
unaffected

Default status
affected

4.2.4-6 before *
unaffected

Default status
affected

4.2.4-7 before *
unaffected

Default status
affected

4.2.4-6 before *
unaffected

Default status
affected

4.2.4-7 before *
unaffected

Default status
affected

0:9.2.24-9.el7_9 before *
unaffected

Default status
affected

8090020231114113712.a75119d5 before *
unaffected

Default status
affected

8090020231128173330.a75119d5 before *
unaffected

Default status
affected

8090020231201202407.a75119d5 before *
unaffected

Default status
affected

8090020231114113548.a75119d5 before *
unaffected

Default status
affected

8010020231130170510.c27ad7f8 before *
unaffected

Default status
affected

8020020231128165246.4cda2c84 before *
unaffected

Default status
affected

8020020231201202149.4cda2c84 before *
unaffected

Default status
affected

8020020231128165246.4cda2c84 before *
unaffected

Default status
affected

8020020231201202149.4cda2c84 before *
unaffected

Default status
affected

8020020231128165246.4cda2c84 before *
unaffected

Default status
affected

8020020231201202149.4cda2c84 before *
unaffected

Default status
affected

8040020231127153301.522a0ee4 before *
unaffected

Default status
affected

8040020231127154806.522a0ee4 before *
unaffected

Default status
affected

8040020231127142440.522a0ee4 before *
unaffected

Default status
affected

8040020231127153301.522a0ee4 before *
unaffected

Default status
affected

8040020231127154806.522a0ee4 before *
unaffected

Default status
affected

8040020231127142440.522a0ee4 before *
unaffected

Default status
affected

8040020231127153301.522a0ee4 before *
unaffected

Default status
affected

8040020231127154806.522a0ee4 before *
unaffected

Default status
affected

8040020231127142440.522a0ee4 before *
unaffected

Default status
affected

8060020231114115246.ad008a3a before *
unaffected

Default status
affected

8060020231128165328.ad008a3a before *
unaffected

Default status
affected

8060020231201202249.ad008a3a before *
unaffected

Default status
affected

8080020231114105206.63b34585 before *
unaffected

Default status
affected

8080020231128165335.63b34585 before *
unaffected

Default status
affected

8080020231201202316.63b34585 before *
unaffected

Default status
affected

8080020231113134015.63b34585 before *
unaffected

Default status
affected

0:13.13-1.el9_3 before *
unaffected

Default status
affected

9030020231120082734.rhel9 before *
unaffected

Default status
affected

0:13.13-1.el9_0 before *
unaffected

Default status
affected

0:13.13-1.el9_2 before *
unaffected

Default status
affected

9020020231115020618.rhel9 before *
unaffected

Default status
affected

0:12.17-1.el7 before *
unaffected

Default status
affected

0:10.23-2.el7 before *
unaffected

Default status
affected

0:13.13-1.el7 before *
unaffected

Default status
affected

3.74.8-9 before *
unaffected

Default status
affected

3.74.8-9 before *
unaffected

Default status
affected

3.74.8-7 before *
unaffected

Default status
affected

3.74.8-9 before *
unaffected

Default status
affected

3.74.8-9 before *
unaffected

Default status
affected

4.1.6-6 before *
unaffected

Default status
affected

4.1.6-6 before *
unaffected

Default status
affected

4.1.6-6 before *
unaffected

Default status
affected

4.1.6-6 before *
unaffected

Default status
affected

4.1.6-6 before *
unaffected

Default status
unknown

Default status
unaffected

Default status
unaffected

Timeline

2023-10-31:Reported to Red Hat.
2023-11-09:Made public.

Credits

Upstream acknowledges Pedro Gallegos as the original reporter.

References

access.redhat.com/errata/RHSA-2023:7545 (RHSA-2023:7545) vendor-advisory

access.redhat.com/errata/RHSA-2023:7579 (RHSA-2023:7579) vendor-advisory

access.redhat.com/errata/RHSA-2023:7580 (RHSA-2023:7580) vendor-advisory

access.redhat.com/errata/RHSA-2023:7581 (RHSA-2023:7581) vendor-advisory

access.redhat.com/errata/RHSA-2023:7616 (RHSA-2023:7616) vendor-advisory

access.redhat.com/errata/RHSA-2023:7656 (RHSA-2023:7656) vendor-advisory

access.redhat.com/errata/RHSA-2023:7666 (RHSA-2023:7666) vendor-advisory

access.redhat.com/errata/RHSA-2023:7667 (RHSA-2023:7667) vendor-advisory

access.redhat.com/errata/RHSA-2023:7694 (RHSA-2023:7694) vendor-advisory

access.redhat.com/errata/RHSA-2023:7695 (RHSA-2023:7695) vendor-advisory

access.redhat.com/errata/RHSA-2023:7714 (RHSA-2023:7714) vendor-advisory

access.redhat.com/errata/RHSA-2023:7770 (RHSA-2023:7770) vendor-advisory

access.redhat.com/errata/RHSA-2023:7771 (RHSA-2023:7771) vendor-advisory

access.redhat.com/errata/RHSA-2023:7772 (RHSA-2023:7772) vendor-advisory

access.redhat.com/errata/RHSA-2023:7778 (RHSA-2023:7778) vendor-advisory

access.redhat.com/errata/RHSA-2023:7783 (RHSA-2023:7783) vendor-advisory

access.redhat.com/errata/RHSA-2023:7784 (RHSA-2023:7784) vendor-advisory

access.redhat.com/errata/RHSA-2023:7785 (RHSA-2023:7785) vendor-advisory

access.redhat.com/errata/RHSA-2023:7786 (RHSA-2023:7786) vendor-advisory

access.redhat.com/errata/RHSA-2023:7788 (RHSA-2023:7788) vendor-advisory

access.redhat.com/errata/RHSA-2023:7789 (RHSA-2023:7789) vendor-advisory

access.redhat.com/errata/RHSA-2023:7790 (RHSA-2023:7790) vendor-advisory

access.redhat.com/errata/RHSA-2023:7878 (RHSA-2023:7878) vendor-advisory

access.redhat.com/errata/RHSA-2023:7883 (RHSA-2023:7883) vendor-advisory

access.redhat.com/errata/RHSA-2023:7884 (RHSA-2023:7884) vendor-advisory

access.redhat.com/errata/RHSA-2023:7885 (RHSA-2023:7885) vendor-advisory

access.redhat.com/errata/RHSA-2024:0304 (RHSA-2024:0304) vendor-advisory

access.redhat.com/errata/RHSA-2024:0332 (RHSA-2024:0332) vendor-advisory

access.redhat.com/errata/RHSA-2024:0337 (RHSA-2024:0337) vendor-advisory

access.redhat.com/security/cve/CVE-2023-5869 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2247169 (RHBZ#2247169) issue-tracking

www.postgresql.org/...1410-1313-1217-and-1122-released-2749/

www.postgresql.org/support/security/CVE-2023-5869/

cve.org (CVE-2023-5869)

nvd.nist.gov (CVE-2023-5869)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-5869

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.

© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.