On Wed, 2023-04-19 at 16:53 -0700, Bryn Llewellyn wrote: > > I do see that a role that hasĀ "createdb" and "createrole" is pretty powerful > because, > for example, a role with these attributes can use "set role" to become any > other non-superuser > (see the example below).
A user with CREATEROLE can make herself a member of "pg_execute_server_program", which in turn allows a clever attacker on a normal installation to make herself superuser. Yours, Laurenz Albe
