Ubuntu 6406 Published by

A PostgreSQL security update has been released for Ubuntu Linux 16.04 LTS.

USN-6230-1: PostgreSQL vulnerability

Ubuntu Security Notice USN-6230-1
July 13, 2023

postgresql-9.5 vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS (Available with Ubuntu Pro)


PostgreSQL could be made to run code with elevated privileges.

Software Description:
- postgresql-9.5: Object-relational SQL database


Alexander Lakhin discovered that PostgreSQL incorrectly handled certain
CREATE privileges. An authenticated user could possibly use this issue to
execute arbitrary code as the bootstrap supervisor.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS (Available with Ubuntu Pro):
  postgresql-9.5                     9.5.25-0ubuntu0.16.04.1+esm4
  postgresql-client-9.5           9.5.25-0ubuntu0.16.04.1+esm4

After a standard system update you need to restart PostgreSQL to
make all the necessary changes.