Univention Bugzilla – Bug 54056
postgresql-11: Multiple issues (5.0)
Last modified: 2021-11-17 16:47:36 CET
New Debian postgresql-11 11.14-0+deb10u1 fixes: This update addresses the following issues: * postgresql-11 (CVE-2021-23214) * postgresql-11 (CVE-2021-23222)
--- mirror/ftp/pool/main/p/postgresql-11/postgresql-11_11.13-0+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-0/source/postgresql-11_11.14-0+deb10u1.dsc @@ -1,3 +1,29 @@ +11.14-0+deb10u1 [Thu, 11 Nov 2021 12:53:26 +0100] Christoph Berg <myon@debian.org>: + + * New upstream security release. + + + Make the server and libpq reject extraneous data after an SSL or GSS + encryption handshake (Tom Lane) + + A man-in-the-middle with the ability to inject data into the TCP + connection could stuff some cleartext data into the start of a + supposedly encryption-protected database session. + + This could be abused to send faked SQL commands to the server, although + that would only work if the server did not demand any authentication + data. (However, a server relying on SSL certificate authentication + might well not do so.) (CVE-2021-23214) + + This could probably be abused to inject faked responses to the client's + first few queries, although other details of libpq's behavior make that + harder than it sounds. A different line of attack is to exfiltrate the + client's password, or other sensitive data that might be sent early in + the session. That has been shown to be possible with a server + vulnerable to CVE-2021-23214. (CVE-2021-23222) + + The PostgreSQL Project thanks Jacob Champion for reporting these + problems. + 11.13-0+deb10u1 [Thu, 26 Aug 2021 14:55:09 +0200] Christoph Berg <myon@debian.org>: * New upstream version. <http://piuparts.knut.univention.de/5.0-0/#8089909201605223953>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-0] cb3d4d9ba6 Bug #54056: postgresql-11 11.14-0+deb10u1 doc/errata/staging/postgresql-11.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) [5.0-0] 10a6b0af5a Bug #54056: postgresql-11 11.14-0+deb10u1 doc/errata/staging/postgresql-11.yaml | 14 ++++++++++++++ 1 file changed, 14 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x158>