Updated: 2026-02-27 02:04:56.674433
Description:
Time-of-check Time-of-use (TOCTOU) race condition in pg_dump in PostgreSQL allows an object creator to execute arbitrary SQL functions as the user running pg_dump, which is often a superuser. The attack involves replacing another relation type with a view or foreign table. The attack requires waiting for pg_dump to start, but winning the race condition is trivial if the attacker retains an open transaction. Versions before PostgreSQL 16.4, 15.8, 14.13, 13.16, and 12.20 are affected.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | HIGH | 7.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | postgresql | 13.11 | 7.5 | HIGH | Released | CLSA-2025:1743011981 | 2025-03-28 07:12:59 | |
| CentOS 7 ELS | postgresql | 9.2.24 | 7.5 | HIGH | Released | CLSA-2025:1737993791 | 2025-02-06 06:41:43 | |
| Oracle Linux 7 ELS | postgresql | 9.2.24 | 7.5 | HIGH | Released | CLSA-2025:1765287627 | 2025-12-09 21:05:04 | |
| Ubuntu 16.04 ELS | postgresql-9.5 | 9.5.25-0 | 7.5 | HIGH | Released | CLSA-2024:1728056209 | 2024-10-04 14:31:28 | |
| Ubuntu 18.04 ELS | postgresql-10 | 10.23-0 | 7.5 | HIGH | Released | CLSA-2024:1727453123 | 2024-09-27 12:34:32 |