Description
A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2020-1181 Vulnerability (CVE-2020-1181)
Microsoft SQL Server Other Vulnerability (CVE-2000-1087)
WordPress Plugin WP-Ban Security Bypass (1.63)
Django Resource Management Errors Vulnerability (CVE-2015-5963)
Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.3)