A bug in the handling of SET ROLE allows escalation of privileges to any other database user, including superuser. A valid login is required to exploit this vulnerability.
For more information about PostgreSQL versioning,
please visit the versioning page.
Reporting Security Vulnerabilities
If you wish to report a new security vulnerability in PostgreSQL, please
send an email to
For reporting non-security bugs, please see the Report a Bug page.