Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AF_UNIX socket to achieve sustained denial of service. If SSL and GSS are both disabled, an attacker can do the same via access to a PostgreSQL TCP socket. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Postgresql | Postgresql | * | 14.23 (excluding) |
| Postgresql | Postgresql | 15.0 (including) | 15.18 (excluding) |
| Postgresql | Postgresql | 16.0 (including) | 16.14 (excluding) |
| Postgresql | Postgresql | 17.0 (including) | 17.10 (excluding) |
| Postgresql | Postgresql | 18.0 (including) | 18.4 (excluding) |
| Postgresql-10 | Ubuntu | upstream | * |
| Postgresql-12 | Ubuntu | upstream | * |
| Postgresql-14 | Ubuntu | jammy | * |
| Postgresql-16 | Ubuntu | noble | * |
| Postgresql-17 | Ubuntu | questing | * |
| Postgresql-18 | Ubuntu | devel | * |
| Postgresql-18 | Ubuntu | resolute | * |
| Postgresql-9.3 | Ubuntu | upstream | * |
| Postgresql-9.5 | Ubuntu | upstream | * |