6 matches found
RockyLinux 8 : postgresql:12 (RLSA-2026:28999)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:28999 advisory. postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison CVE-2026-6478 postgresql: integer overflow can cause an...
Important: Red Hat Security Advisory: postgresql16 security update
An update for postgresql16 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
ROOT-OS-DEBIAN-11-CVE-2026-6473 CVE-2026-6473 in rootio-postgresql-13 - Patched by Root
Root has patched CVE-2026-6473 in the rootio-postgresql-13 package for Root:Debian:11. Multiple fixed versions available...
CLSA-2026-1779870008 Fix of 7 CVEs
SECURITY UPDATE: postgresql May-2026 CVE batch - debian/patches/CVE-2026-6473.patch: integer overflow fixes across multiple vulnerable sites: formatting.c size calculations mulsize, intarray/ltxtquery findoprnd left-offset overflow with int16 check, ltree lquery numvar/totallen overflow with...
Security update for postgresql15
This update for postgresql15 fixes the following issues Security issues: CVE-2026-6472: ensure the user has CREATE privilege on the schema specified bsc1265172. CVE-2026-6473: integer overflows in memory-allocation calculations bsc1265173. CVE-2026-6474: Guard against malicious time zone names...
DEBIAN-CVE-2026-6473
Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...