Participants
Patrik Novotny
Patrik Novotny
Attachments

No attachments in this thread

Thread Outline
#1Patrik NovotnyPatrik Novotny
Apr 30, 2021
#2Patrik NovotnyPatrik Novotnyto Patrik Novotny (#1)
Apr 30, 2021

Help needed with a reproducer for CVE-2020-25695 not based on REFRESH MATERIALIZED VIEW

Started by Patrik Novotnyover 4 years ago2 messages
#1Patrik Novotny
Patrik Novotny
panovotn@redhat.com

Hi,

I need to reproduce the CVE-2020-25695 on PostgreSQL 9.2.24. I know this is
not a supported version, however, it is important for us to have a
reproducer for this version as well.

The reproducer for supported versions[1]https://git.postgresql.org/gitweb/?p=postgresql.git;a=blob;f=src/test/regress/sql/privileges.sql;h=013bc95c74bd20e5ab7f1826ea7e676da2a0e85b;hb=HEAD#l896 is based on REFRESH MATERIALIZED
VIEW which is not implemented until version 9.3.

I was trying to reproduce this using ANALYZE as you can see in this poc.sql
file[2]https://pastebin.com/6hgziYRD. However, it doesn't reproduce the issue.

It would be really appreciated if someone could take a look at it and help.

[1]: https://git.postgresql.org/gitweb/?p=postgresql.git;a=blob;f=src/test/regress/sql/privileges.sql;h=013bc95c74bd20e5ab7f1826ea7e676da2a0e85b;hb=HEAD#l896
https://git.postgresql.org/gitweb/?p=postgresql.git;a=blob;f=src/test/regress/sql/privileges.sql;h=013bc95c74bd20e5ab7f1826ea7e676da2a0e85b;hb=HEAD#l896
[2]: https://pastebin.com/6hgziYRD

Regards,

--
Patrik Novotný
Associate Software Engineer
Red Hat
panovotn@redhat.com

#2Patrik Novotny
Patrik Novotny
panovotn@redhat.com
In reply to: Patrik Novotny (#1)
Re: Help needed with a reproducer for CVE-2020-25695 not based on REFRESH MATERIALIZED VIEW

We've figured it out. Please ignore.

Regards.

On Fri, Apr 30, 2021 at 3:13 PM Patrik Novotny <panovotn@redhat.com> wrote:

Hi,

I need to reproduce the CVE-2020-25695 on PostgreSQL 9.2.24. I know this
is not a supported version, however, it is important for us to have a
reproducer for this version as well.

The reproducer for supported versions[1] is based on REFRESH MATERIALIZED
VIEW which is not implemented until version 9.3.

I was trying to reproduce this using ANALYZE as you can see in this
poc.sql file[2]. However, it doesn't reproduce the issue.

It would be really appreciated if someone could take a look at it and help.

[1]
https://git.postgresql.org/gitweb/?p=postgresql.git;a=blob;f=src/test/regress/sql/privileges.sql;h=013bc95c74bd20e5ab7f1826ea7e676da2a0e85b;hb=HEAD#l896
[2] https://pastebin.com/6hgziYRD

Regards,

--
Patrik Novotný
Associate Software Engineer
Red Hat
panovotn@redhat.com

--
Patrik Novotný
Associate Software Engineer
Red Hat
panovotn@redhat.com

← Back to Topics