A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2021-10-11T00:00:00
Updated: 2024-08-03T23:17:28.199Z
Reserved: 2021-05-04T00:00:00
Link: CVE-2021-32028
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-11T17:15:07.727
Modified: 2024-11-21T06:06:44.593
Link: CVE-2021-32028
Redhat