CGA-qcq6-9fp6-79mp

Published

Last updated

https://images.chainguard.dev/security/CGA-qcq6-9fp6-79mp

Package

telegraf-1.30

Latest Update

Fixed

Fixed Version

1.30.0-r2

Aliases

Severity

8.1

High

CVSS V3

Summary

pgx SQL Injection via Line Comment Creation

Description

Impact

SQL injection can occur when all of the following conditions are met:

The non-default simple protocol is used.
A placeholder for a numeric value must be immediately preceded by a minus.
There must be a second placeholder for a string value after the first placeholder; both must be on the same line.
Both parameter values must be user-controlled.

e.g.

Simple mode must be enabled:


// connection string includes "prefer_simple_protocol=true"
// or
// directly enabled in code
config.ConnConfig.PreferSimpleProtocol = true

Parameterized query:


SELECT * FROM example WHERE result=-$1 OR name=$2;

Parameter values:

$1 => -42 $2 => "foo\n 1 AND 1=0 UNION SELECT * FROM secrets; --"

Resulting query after preparation:


SELECT * FROM example WHERE result=--42 OR name= 'foo
1 AND 1=0 UNION SELECT * FROM secrets; --';

Patches

The problem is resolved in v4.18.2.

Workarounds

Do not use the simple protocol or do not place a minus directly before a placeholder.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CGA-qcq6-9fp6-79mp

Severity

Summary

Description

Impact

Patches

Workarounds

References

Updates

Product

Why Chainguard

Customers

Company

Resources