git.ipfire.org Git - thirdparty/postgresql.git/commit

author	Tom Lane <tgl@sss.pgh.pa.us>
	Mon, 8 Nov 2021 16:14:56 +0000 (11:14 -0500)
committer	Tom Lane <tgl@sss.pgh.pa.us>
	Mon, 8 Nov 2021 16:14:56 +0000 (11:14 -0500)
commit	a021a1d2aeba8ce3391f56a070f01db00468da27
tree	cf13ae40f0e27f52dd1170d79df125a74f0d7de9	tree
parent	9394fb828998b4e71e4ef95eac6b80acac742835	commit \| diff

libpq: reject extraneous data after SSL or GSS encryption handshake.

libpq collects up to a bufferload of data whenever it reads data from
the socket.  When SSL or GSS encryption is requested during startup,
any additional data received with the server's yes-or-no reply
remained in the buffer, and would be treated as already-decrypted data
once the encryption handshake completed.  Thus, a man-in-the-middle
with the ability to inject data into the TCP connection could stuff
some cleartext data into the start of a supposedly encryption-protected
database session.

This could probably be abused to inject faked responses to the
client's first few queries, although other details of libpq's behavior
make that harder than it sounds.  A different line of attack is to
exfiltrate the client's password, or other sensitive data that might
be sent early in the session.  That has been shown to be possible with
a server vulnerable to CVE-2021-23214.

To fix, throw a protocol-violation error if the internal buffer
is not empty after the encryption handshake.

Our thanks to Jacob Champion for reporting this problem.

Security: CVE-2021-23222

doc/src/sgml/protocol.sgml		diff \| blob \| blame \| history
src/interfaces/libpq/fe-connect.c		diff \| blob \| blame \| history