| Name | CVE-2018-1052 |
| Description | Memory disclosure vulnerability in table partitioning was found in postgresql 10.x before 10.2, allowing an authenticated attacker to read arbitrary bytes of server memory via purpose-crafted insert to a partitioned table. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| postgresql-10 | source | (unstable) | 10.2-1 | |||
| postgresql-9.1 | source | (unstable) | (not affected) | |||
| postgresql-9.4 | source | (unstable) | (not affected) | |||
| postgresql-9.6 | source | (unstable) | (not affected) |
- postgresql-9.6 <not-affected> (code introduced in 10)
- postgresql-9.4 <not-affected> (code introduced in 10)
- postgresql-9.1 <not-affected> (code introduced in 10)