Lucene search

K
redhatRedHatRHSA-2024:3313
HistoryMay 23, 2024 - 5:51 a.m.

(RHSA-2024:3313) Important: postgresql-jdbc security update

2024-05-2305:51:32
access.redhat.com
7
postgresql
jdbc driver
security update
sql injection
cve-2024-1597
unix
java programs

7.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.1%

PostgreSQL is an advanced object-relational database management system. The
postgresql-jdbc package includes the .jar files needed for Java programs to
access a PostgreSQL database.

Security Fix(es):

  • pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using
    PreferQueryMode=SIMPLE (CVE-2024-1597)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.