PostgreSQL Integer Wraparound Vulnerability Leading to Out-of-Bounds Write and Potential Code Execution

A vulnerability exists in multiple PostgreSQL server versions prior to 18.4, 17.10, 16.14, 15.18, and 14.23, allowing an unprivileged database user to exploit integer wraparound in certain server features. This exploitation can cause the server to undersize memory allocations, leading to out-of-bounds writes. Such behavior may allow for the execution of arbitrary code as the operating system user running the database. Additionally, in applications that handle large user inputs in gigabyte-scale, this vulnerability could result in a segmentation fault.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution on the server, with the executed code running as the operating system user that the database server process operates under. In some cases, it may also cause a segmentation fault, disrupting the application's operation.

Remediation

Users can upgrade to PostgreSQL versions 18.4, 17.10, 16.14, 15.18, or 14.23 to address this vulnerability.