Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an attacker can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can create prerequisite objects and complete this attack at will. A user lacking the CREATE and TEMPORARY privileges on all databases and the CREATE privilege on all schemas cannot use this attack at will.
Upstream fix: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=049e1e2edb06854d7cd9460c22516efaa165fbf8 [master] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=4a8656a7ee0c155b0249376af58eb3fc3a90415f [REL_13_STABLE] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=a5fa3e0671474411ad81600a8f2b4800a4464afc [REL_12_STABLE] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=b7d1f32ff6588be99844c140ec1aacb6e44f4b84 [REL_11_STABLE] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=52a4413627319980843bb8f375f28c7f01c45e18 [REL_10_STABLE] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=0fcb8e2e0154dedea5c3c7da6dd2cffb731aac06 [REL9_6_STABLE]
Created mingw-postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962791] Created postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962790] Created postgresql:10/postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962789] Created postgresql:11/postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962788] Created postgresql:12/postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962787] Created postgresql:13/postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962793] Created postgresql:9.6/postgresql tracking bugs for this issue: Affects: fedora-all [bug 1962792]
Upstream advisory: https://www.postgresql.org/support/security/CVE-2021-32028/
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:2360 https://access.redhat.com/errata/RHSA-2021:2360
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:2361 https://access.redhat.com/errata/RHSA-2021:2361
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-32028
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:2372 https://access.redhat.com/errata/RHSA-2021:2372
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:2375 https://access.redhat.com/errata/RHSA-2021:2375
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2021:2392 https://access.redhat.com/errata/RHSA-2021:2392
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Extended Update Support Via RHSA-2021:2393 https://access.redhat.com/errata/RHSA-2021:2393
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:2389 https://access.redhat.com/errata/RHSA-2021:2389
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:2391 https://access.redhat.com/errata/RHSA-2021:2391
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS Via RHSA-2021:2395 https://access.redhat.com/errata/RHSA-2021:2395
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:2390 https://access.redhat.com/errata/RHSA-2021:2390
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS Via RHSA-2021:2394 https://access.redhat.com/errata/RHSA-2021:2394
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS Via RHSA-2021:2396 https://access.redhat.com/errata/RHSA-2021:2396