In ActiveRecord <220.127.116.11 and <18.104.22.168, when a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric values can result in a slow sequential scan resulting in potential Denial of Service.
Created rubygem-activerecord tracking bugs for this issue:
Affects: fedora-all [bug 2164791]
This issue has been addressed in the following products:
Red Hat Satellite 6.14 for RHEL 8
Via RHSA-2023:6818 https://access.redhat.com/errata/RHSA-2023:6818