postgresql: Stack-based buffer overflow via setting a password

🗓️ 08 Sep 2020 10:06:19Reported by RedHatType

PostgreSQL 10.x before 10.9 and 11.x before 11.4 are vulnerable to stack overflow via self-password changes, enabling code execution as the OS user.

Reporter	Title	Published	Views	Family All 118
ALT Linux	Security fix for the ALT Linux 8 package postgresql10 version 10.9-alt0.M80P.1	1 Jul 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql10 version 10.9-alt1	22 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package postgresql11-1C version 10.9-alt0.M80P.1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql14 version 11.4-alt1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql11 version 11.4-alt1	22 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql12 version 11.4-alt1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package postgresql12 version 11.4-alt0.M80P.1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql13 version 11.4-alt1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql12 version 11.4-alt1	20 Jun 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql15 version 11.4-alt1	20 Jun 201900:00	–	altlinux

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	8	aarch64	postgresql	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-0:10.14-1.module+el8.2.0+7801+be0fed80.aarch64.rpm
Red Hat Enterprise Linux	8	ppc64le	postgresql	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-0:10.14-1.module+el8.2.0+7801+be0fed80.ppc64le.rpm
Red Hat Enterprise Linux	8	s390x	postgresql	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-0:10.14-1.module+el8.2.0+7801+be0fed80.s390x.rpm
Red Hat Enterprise Linux	8	x86_64	postgresql	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-0:10.14-1.module+el8.2.0+7801+be0fed80.x86_64.rpm
Red Hat Enterprise Linux	8	aarch64	postgresql-contrib	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-0:10.14-1.module+el8.2.0+7801+be0fed80.aarch64.rpm
Red Hat Enterprise Linux	8	ppc64le	postgresql-contrib	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-0:10.14-1.module+el8.2.0+7801+be0fed80.ppc64le.rpm
Red Hat Enterprise Linux	8	s390x	postgresql-contrib	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-0:10.14-1.module+el8.2.0+7801+be0fed80.s390x.rpm
Red Hat Enterprise Linux	8	x86_64	postgresql-contrib	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-0:10.14-1.module+el8.2.0+7801+be0fed80.x86_64.rpm
Red Hat Enterprise Linux	8	aarch64	postgresql-contrib-debuginfo	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-debuginfo-0:10.14-1.module+el8.2.0+7801+be0fed80.aarch64.rpm
Red Hat Enterprise Linux	8	ppc64le	postgresql-contrib-debuginfo	0:10.14-1.module+el8.2.0+7801+be0fed80	postgresql-contrib-debuginfo-0:10.14-1.module+el8.2.0+7801+be0fed80.ppc64le.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2019-10164
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-10164
cve	www.cve.org/CVERecord
postgresql	www.postgresql.org/support/security/

28 Jun 2026 12:33Current

8.1High risk

Vulners AI Score8.1

CVSS 3.18.8

CVSS 29

CVSS 37.5

EPSS0.03711

CWE-121