Lucene search

K
osvGoogleOSV:RLSA-2021:2375
HistoryJun 10, 2021 - 9:54 a.m.

Important: postgresql:13 security update

2021-06-1009:54:30
Google
osv.dev
7

AI Score

9.2

Confidence

High

EPSS

0.007

Percentile

80.4%

PostgreSQL is an advanced object-relational database management system (DBMS).

The following packages have been upgraded to a later upstream version: postgresql (13.3).

Security Fix(es):

  • postgresql: Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027)

  • postgresql: Memory disclosure in INSERT … ON CONFLICT … DO UPDATE (CVE-2021-32028)

  • postgresql: Memory disclosure in partitioned-table UPDATE … RETURNING (CVE-2021-32029)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.