PostgreSQL contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when the PL/perl and PL/Tcl implementations fail to properly prevent different SQL users from executing scripts in the same session, allowing a remote authenticated attacker to use crafted script code in a SECURITY DEFINER function to gain elevated privileges, allowing the execution of SQL code with the privileges of the initial user.

Upgrade to version 9.0.1, 8.4.5, 8.3.12, 8.2.18, 8.1.22, 8.0.26, or 7.4.30 or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2010-3433 (see also: NVD)
• Secunia Advisory ID: 41688 41692 41715 41792 41880 41958 42018 42049 42325 46568 47503 47507 49719 49747
• Bugtraq ID: 43747
• Vendor Specific News/Changelog Entry: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049591.html
  http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049592.html
  http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
  http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html
  http://wiki.postgresql.org/wiki/20101005securityrelease
  http://www.postgresql.org/about/news.1244
  http://www.postgresql.org/docs/9.0/static/release-9-0-1.html
  https://bugzilla.redhat.com/show_bug.cgi?id=639371
• Vendor Specific Advisory URL: http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049851.html
  http://security.gentoo.org/glsa/glsa-201110-22.xml
  http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2012-08-687&viewMode=view
  http://www.ubuntu.com/usn/usn-1002-1
  http://www.us.debian.org/security/2010/dsa-2120
  https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03333585
  https://kb.bluecoat.com/index?page=content&id=SA66
• RedHat RHSA: http://rhn.redhat.com/errata/RHSA-2010-0742.html
  http://rhn.redhat.com/errata/RHSA-2010-0908.html

• Tim Bunce