ALAS-2023-387

Amazon Linux 2023 Security Advisory: ALAS-2023-387
Advisory Release Date: 2023-10-12 16:11 Pacific
Advisory Updated Date: 2024-02-29 10:29 Pacific
Severity: Medium
Issue Overview:

2024-02-29: CVE-2022-41862 was added to this advisory.

In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes. (CVE-2022-41862)

While CVE-2016-2193 fixed most interaction between row security and user ID changes, it missed a scenario involving function inlining. This leads to potentially incorrect policies being applied in cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security definer functions or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise-forbidden reads and modifications. This affects only databases that have used CREATE POLICY to define a row security policy. (CVE-2023-2455)

A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows. (CVE-2023-39418)


Affected Packages:

postgresql15


Issue Correction:
Run dnf update postgresql15 --releasever 2023.2.20231018 to update your system.

New Packages:
aarch64:
    postgresql15-upgrade-devel-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-pltcl-15.4-1.amzn2023.0.1.aarch64
    postgresql15-private-libs-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-plperl-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-test-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-private-devel-15.4-1.amzn2023.0.1.aarch64
    postgresql15-llvmjit-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-test-15.4-1.amzn2023.0.1.aarch64
    postgresql15-pltcl-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-private-libs-15.4-1.amzn2023.0.1.aarch64
    postgresql15-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-15.4-1.amzn2023.0.1.aarch64
    postgresql15-docs-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-plpython3-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-server-15.4-1.amzn2023.0.1.aarch64
    postgresql15-upgrade-devel-15.4-1.amzn2023.0.1.aarch64
    postgresql15-server-devel-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-plperl-15.4-1.amzn2023.0.1.aarch64
    postgresql15-contrib-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-plpython3-15.4-1.amzn2023.0.1.aarch64
    postgresql15-upgrade-15.4-1.amzn2023.0.1.aarch64
    postgresql15-llvmjit-15.4-1.amzn2023.0.1.aarch64
    postgresql15-contrib-15.4-1.amzn2023.0.1.aarch64
    postgresql15-static-15.4-1.amzn2023.0.1.aarch64
    postgresql15-server-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-server-devel-15.4-1.amzn2023.0.1.aarch64
    postgresql15-docs-15.4-1.amzn2023.0.1.aarch64
    postgresql15-upgrade-debuginfo-15.4-1.amzn2023.0.1.aarch64
    postgresql15-debugsource-15.4-1.amzn2023.0.1.aarch64

noarch:
    postgresql15-test-rpm-macros-15.4-1.amzn2023.0.1.noarch

src:
    postgresql15-15.4-1.amzn2023.0.1.src

x86_64:
    postgresql15-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-plpython3-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-plperl-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-private-libs-15.4-1.amzn2023.0.1.x86_64
    postgresql15-plpython3-15.4-1.amzn2023.0.1.x86_64
    postgresql15-pltcl-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-server-devel-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-pltcl-15.4-1.amzn2023.0.1.x86_64
    postgresql15-private-libs-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-upgrade-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-15.4-1.amzn2023.0.1.x86_64
    postgresql15-static-15.4-1.amzn2023.0.1.x86_64
    postgresql15-docs-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-upgrade-devel-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-plperl-15.4-1.amzn2023.0.1.x86_64
    postgresql15-llvmjit-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-server-devel-15.4-1.amzn2023.0.1.x86_64
    postgresql15-upgrade-devel-15.4-1.amzn2023.0.1.x86_64
    postgresql15-upgrade-15.4-1.amzn2023.0.1.x86_64
    postgresql15-test-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-private-devel-15.4-1.amzn2023.0.1.x86_64
    postgresql15-contrib-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-server-debuginfo-15.4-1.amzn2023.0.1.x86_64
    postgresql15-docs-15.4-1.amzn2023.0.1.x86_64
    postgresql15-contrib-15.4-1.amzn2023.0.1.x86_64
    postgresql15-server-15.4-1.amzn2023.0.1.x86_64
    postgresql15-test-15.4-1.amzn2023.0.1.x86_64
    postgresql15-llvmjit-15.4-1.amzn2023.0.1.x86_64
    postgresql15-debugsource-15.4-1.amzn2023.0.1.x86_64

Additional References

Red Hat: CVE-2022-41862, CVE-2023-2455, CVE-2023-39418

Mitre: CVE-2022-41862, CVE-2023-2455, CVE-2023-39418