Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 943512 (CVE-2024-10976, CVE-2024-10977, CVE-2024-10978, CVE-2024-10979) - <dev-db/postgresql-{12.21,13.17,14.14,15.9,16.5,17.1}: Multiple vulnerabilities
Summary: <dev-db/postgresql-{12.21,13.17,14.14,15.9,16.5,17.1}: Multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2024-10976, CVE-2024-10977, CVE-2024-10978, CVE-2024-10979
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Security
URL: https://www.postgresql.org/about/news...
Whiteboard: B1 [glsa+]
Keywords:
Depends on: 943513 944494
Blocks:
  Show dependency tree
 
Reported: 2024-11-14 15:02 UTC by Patrick Lauer
Modified: 2025-01-21 09:47 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Patrick Lauer gentoo-dev 2024-11-14 15:02:42 UTC
From the announcement:

CVE-2024-10976: PostgreSQL row security below e.g. subqueries disregards user ID changes

CVE-2024-10977: PostgreSQL libpq retains an error message from man-in-the-middle

CVE-2024-10978: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID

CVE-2024-10979: PostgreSQL PL/Perl environment variable changes execute arbitrary code
Comment 1 Roscoe Ewing 2024-11-22 08:45:01 UTC
> Looks like some fixes made it into Git upstream.
> 
> CVE-2022-37703 was fixed with:
> https://github.com/zmanda/amanda/commit/
> cf01041d34b830fc8bfe87346a9a1aa092d76820
> 
> CVE-2022-37704 was partially fixed with:
> https://geometry-dashworld.co/
> ee766efdd77acd2e08f646bf2f9028944cdb9d06
> 
> Then had further fixes:
> 
> https://github.com/zmanda/amanda/commit/
> e06005c01c4e008705083d053adefab0be5b2c4f
> https://github.com/zmanda/amanda/commit/
> f069e2c190146c5ed4d5ef8df390ee5024d4a3c8


Update PostgreSQL to the latest version to resolve the issue. After upgrading, make sure that the `SET ROLE` and `SET SESSION AUTHORIZATION` commands are working correctly and that the user ID is not accidentally reset to an incorrect value
Comment 2 Reva Denis 2024-11-22 16:49:03 UTC
There are new releases with significant bugfixes:
https://www.postgresql.org/about/news/postgresql-172-166-1510-1415-1318-and-1222-released-2965/
Comment 3 Larry the Git Cow gentoo-dev 2024-12-08 08:29:16 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=16a1cb90f186fbac4d097833a72a94786de4c089

commit 16a1cb90f186fbac4d097833a72a94786de4c089
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2024-12-08 08:29:04 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2024-12-08 08:29:14 +0000

    [ GLSA 202412-12 ] PostgreSQL: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/943512
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 glsa-202412-12.xml | 60 ++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 60 insertions(+)
Comment 4 isaachackett 2025-01-21 09:47:10 UTC
The problem can be fixed by updating PostgreSQL to the most recent version. After upgrading, confirm that the user ID hasn't been inadvertently reset to the wrong value and that the `SET ROLE` and `SET SESSION AUTHORIZATION` commands are functioning properly.
 
https://www.postgresql.org/about/news/postgresql-172-166-1510-1415-1318-and-1222-released-2965/ https://basketball-stars.co/