SUSE SLED15 / SLES15 / openSUSE 15 Security Update : postgresql17 (SUSE-SU-2025:01644-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01644-1 advisory. Upgrade to 17.5: - CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past en...

CVE-2003-0515

SQL injection vulnerabilities in the 1 PostgreSQL or 2 MySQL authentication modules for teapop 0.3.5 and earlier allow attackers to execute arbitrary SQL and possibly gain privileges...

Security update for postgresql17

This update for postgresql17 fixes the following issues: Upgrade to 17.5: CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/17.5/ Patch Instructions: To...

SUSE-SU-2025:01644-1 Security update for postgresql17

This update for postgresql17 fixes the following issues: Upgrade to 17.5: - CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/17.5/...

USN-7520-2: PostgreSQL vulnerability

USN-7520-1 fixed a vulnerability in PostgreSQL. This update provides the corresponding updates for Ubuntu 25.04. Original advisory details: It was discovered that PostgreSQL incorrectly handled the GB18030 encoding. An attacker could possibly use this issue to cause PostgreSQL to crash, resulting...

USN-7520-2 postgresql-17 vulnerability

USN-7520-1 fixed a vulnerability in PostgreSQL. This update provides the corresponding updates for Ubuntu 25.04. Original advisory details: It was discovered that PostgreSQL incorrectly handled the GB18030 encoding. An attacker could possibly use this issue to cause PostgreSQL to crash, resulting...

Ubuntu: Security Advisory (USN-7520-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Zyxel USG FLEX H Series Firewall 1.20 < 1.32 Privilege Escalation

Firmware version of the Zyxel USG is less than uOS 1.32. This means the Zyxel device is vulnerable to mualtiple privilege escalation vulnerability. The incorrect permission assignment vulnerability in the PostgreSQL commands of certain USG FLEX H series uOS firmware versions could allow an...

postgresql16-16.9-1.1 on GA media (moderate)

postgresql16-16.9-1.1 on GA media Announcement ID: openSUSE-SU-2025:15140-1 Rating: moderate Cross-References: CVE-2025-4207 CVSS scores: CVE-2025-4207 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

postgresql14-14.18-1.1 on GA media (moderate)

postgresql14-14.18-1.1 on GA media Announcement ID: openSUSE-SU-2025:15138-1 Rating: moderate Cross-References: CVE-2025-4207 CVSS scores: CVE-2025-4207 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

postgresql15-15.13-1.1 on GA media (moderate)

postgresql15-15.13-1.1 on GA media Announcement ID: openSUSE-SU-2025:15139-1 Rating: moderate Cross-References: CVE-2025-4207 CVSS scores: CVE-2025-4207 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

USN-7520-1: PostgreSQL vulnerability

It was discovered that PostgreSQL incorrectly handled the GB18030 encoding. An attacker could possibly use this issue to cause PostgreSQL to crash, resulting in a denial of service...

USN-7520-1 postgresql-12, postgresql-14, postgresql-16 vulnerability

It was discovered that PostgreSQL incorrectly handled the GB18030 encoding. An attacker could possibly use this issue to cause PostgreSQL to crash, resulting in a denial of service...

OPENSUSE-SU-2025:15137-1 postgresql13-13.21-1.1 on GA media

These are all security issues fixed in the postgresql13-13.21-1.1 package on the GA media of openSUSE Tumbleweed...

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : PostgreSQL vulnerability (USN-7520-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7520-1 advisory. It was discovered that PostgreSQL incorrectly handled the GB18030 encoding. An attacker could possibly use this issue to cause...

OPENSUSE-SU-2025:15139-1 postgresql15-15.13-1.1 on GA media

These are all security issues fixed in the postgresql15-15.13-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15140-1 postgresql16-16.9-1.1 on GA media

These are all security issues fixed in the postgresql16-16.9-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15138-1 postgresql14-14.18-1.1 on GA media

These are all security issues fixed in the postgresql14-14.18-1.1 package on the GA media of openSUSE Tumbleweed...

The vulnerability of programming tools for balancing and managing connections in Pgpool-II and HAProxy for PostgreSQL databases lies in their insecure resource initialization, which allows attackers to gain unauthorized access to the database.

The vulnerabilities of the Pgpool-II and HAProxy software for PostgreSQL databases in terms of connection balancing and management involve insecure resource initialization. Exploiting these vulnerabilities can allow an attacker, operating remotely, to gain unauthorized access to the database with...

CLSA-2025-1747432102 postgresql: Fix of CVE-2024-10978

CVE-2024-10978: fix privilege assignment issue to prevent less-privileged user from viewing or changing unauthorized rows...