CVE-2026-6479
PostgreSQL 脆弱性の分析と軽減

概要

CVE-2026-6479 is an uncontrolled recursion vulnerability in PostgreSQL's SSL and GSS negotiation logic that allows an attacker to cause a sustained denial of service. It affects PostgreSQL versions before 18.4, 17.10, 16.14, 15.18, and 14.23 across the 14.x through 18.x release branches. The vulnerability was published on May 14, 2026, with patches released the same day. It carries a CVSS v3.1 base score of 7.5 (High) (GitHub Advisory, PostgreSQL Security).

技術的な詳細

The root cause is uncontrolled recursion (CWE-674) within PostgreSQL's SSL and GSS connection negotiation code path. An attacker who can connect to a PostgreSQL AF_UNIX socket can trigger this recursion to exhaust stack or memory resources, causing a denial of service. If both SSL and GSS are disabled, the same attack is achievable via a TCP socket connection, broadening the attack surface to network-accessible instances. The fix is tracked in the PostgreSQL git repository (PostgreSQL Git, GitHub Advisory).

影響

Successful exploitation results in a sustained denial of service, crashing or hanging the PostgreSQL database service and preventing legitimate users and applications from accessing the database. There is no confidentiality or integrity impact — the vulnerability is limited to availability. Affected deployments include any PostgreSQL instance in the 14.x–18.x range that exposes an AF_UNIX socket (always) or a TCP socket when SSL/GSS is disabled (GitHub Advisory, PostgreSQL Security).

軽減策と回避策

PostgreSQL has released patched versions: 18.4, 17.10, 16.14, 15.18, and 14.23. Upgrading to one of these versions is the primary recommended remediation (PostgreSQL Release). As a temporary workaround, enabling SSL or GSS authentication mitigates the TCP socket attack vector by requiring authentication during connection negotiation. Additionally, restricting network access to PostgreSQL TCP sockets via firewall rules and limiting local AF_UNIX socket access to trusted users reduces exposure. Linux distribution vendors including SUSE, openSUSE, Debian, Ubuntu, and Amazon Linux have also released updated packages (SUSE Advisory).

コミュニティの反応

The PostgreSQL project disclosed this CVE as part of a coordinated release addressing 11 CVEs simultaneously in May 2026, which drew notable community attention (thebuild.com Blog). Security news outlets including GBHackers, CyberSecurityNews, and SecurityOnline covered the broader PostgreSQL security update, highlighting the scope of the release (SecurityOnline). The oss-security mailing list also received a disclosure notification (oss-sec). Notably, the CVE was credited to Anthropic, reflecting an AI-assisted vulnerability discovery (Anthropic-Credited CVEs).

関連情報


ソースこのレポートは AI を使用して生成されました

関連 PostgreSQL 脆弱 性:

CVE 識別子

重大度

スコア

テクノロジー

コンポーネント名

CISA KEV エクスプロイト

修正あり

公開日

CVE-2026-6638HIGH8.8
  • PostgreSQL logoPostgreSQL
  • postgresql:16::postgresql-private-devel
いいえはいMay 14, 2026
CVE-2026-6637HIGH8.8
  • PostgreSQL logoPostgreSQL
  • postgresql17-pltcl
いいえはいMay 14, 2026
CVE-2026-6479HIGH7.5
  • PostgreSQL logoPostgreSQL
  • postgresql14-pltcl
いいえはいMay 14, 2026
CVE-2026-6478MEDIUM6.5
  • PostgreSQL logoPostgreSQL
  • postgresql16
いいえはいMay 14, 2026
CVE-2026-6575MEDIUM4.3
  • PostgreSQL logoPostgreSQL
  • postgresql18-server-devel-debuginfo
いいえはいMay 14, 2026

無料の脆弱性評価

クラウドセキュリティポスチャーのベンチマーク

9つのセキュリティドメインにわたるクラウドセキュリティプラクティスを評価して、リスクレベルをベンチマークし、防御のギャップを特定します。

評価を依頼する

パーソナライズされたデモを見る

実際に Wiz を見てみませんか?​

"私が今まで見た中で最高のユーザーエクスペリエンスは、クラウドワークロードを完全に可視化します。"
デビッド・エストリックCISO (最高情報責任者)
"Wiz を使えば、クラウド環境で何が起こっているかを 1 つの画面で確認することができます"
アダム・フレッチャーチーフ・セキュリティ・オフィサー
"Wizが何かを重要視した場合、それは実際に重要であることを私たちは知っています。"
グレッグ・ポニャトフスキ脅威および脆弱性管理責任者