Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS03andoLTN2cnEtcTNtOM4AA5wG

pgproto3 SQL Injection via Protocol Message Size Overflow

Impact

SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control.

Patches

The problem is resolved in v2.3.3

Workarounds

Reject user input large enough to cause a single query or bind message to exceed 4 GB in size.

Permalink: https://github.com/advisories/GHSA-7jwh-3vrq-q3m8
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03andoLTN2cnEtcTNtOM4AA5wG
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: 9 months ago
Updated: 2 months ago

CVSS Score: 9.8
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Identifiers: GHSA-7jwh-3vrq-q3m8
References:

• https://github.com/jackc/pgproto3/security/advisories/GHSA-7jwh-3vrq-q3m8
• https://nvd.nist.gov/vuln/detail/CVE-2024-27304
• https://github.com/jackc/pgproto3/commit/945c2126f6db8f3bea7eeebe307c01fe92bca007
• https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv
• https://github.com/jackc/pgx/commit/adbb38f298c76e283ffc7c7a3f571036fea47fd4
• https://github.com/jackc/pgx/commit/c543134753a0c5d22881c12404025724cb05ffd8
• https://github.com/jackc/pgx/commit/f94eb0e2f96782042c96801b5ac448f44f0a81df
• https://github.com/advisories/GHSA-7jwh-3vrq-q3m8

Repository: https://github.com/jackc/pgproto3
Blast Radius: 41.7

Affected Packages