Impact
This is a privilege escalation vulnerability that allows a user to elevate to superuser inside PostgreSQL databases during a migration from an untrusted source server. By exploiting a lack of search_path restriction, an attacker can override pg_catalog and execute untrusted operators as a superuser.
Patches
We recommend all users to upgrade to the latest version.
Workarounds
Don't migrate from untrusted sources, if you do, please do so using the latest version.
Credit
Thanks to Marinus Pfund for finding and reporting the vulnerability.
Impact
This is a privilege escalation vulnerability that allows a user to elevate to superuser inside PostgreSQL databases during a migration from an untrusted source server. By exploiting a lack of search_path restriction, an attacker can override pg_catalog and execute untrusted operators as a superuser.
Patches
We recommend all users to upgrade to the latest version.
Workarounds
Don't migrate from untrusted sources, if you do, please do so using the latest version.
Credit
Thanks to Marinus Pfund for finding and reporting the vulnerability.