Количество 69
Количество 69
RLSA-2026:0493
Moderate: postgresql:16 security update
RLSA-2026:0492
Moderate: postgresql:15 security update
RLSA-2026:0491
Moderate: postgresql security update
ELSA-2026-0524
ELSA-2026-0524: postgresql:15 security update (MODERATE)
ELSA-2026-0523
ELSA-2026-0523: postgresql:13 security update (MODERATE)
ELSA-2026-0519
ELSA-2026-0519: postgresql:16 security update (MODERATE)
ELSA-2026-0493
ELSA-2026-0493: postgresql:16 security update (MODERATE)
ELSA-2026-0492
ELSA-2026-0492: postgresql:15 security update (MODERATE)
ELSA-2026-0491
ELSA-2026-0491: postgresql security update (MODERATE)
openSUSE-SU-2026:20266-1
Security update for postgresql15
openSUSE-SU-2026:20265-1
Security update for postgresql14
CVE-2025-12817
Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12817
Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12817
Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12817
PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege
CVE-2025-12817
Missing authorization in PostgreSQL CREATE STATISTICS command allows a ...
CVE-2025-12818
Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12818
Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12818
Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12818
PostgreSQL libpq undersizes allocations, via integer wraparound
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2026:0493 Moderate: postgresql:16 security update | 2 месяца назад | ||
| RLSA-2026:0492 Moderate: postgresql:15 security update | 2 месяца назад | ||
| RLSA-2026:0491 Moderate: postgresql security update | 2 месяца назад | ||
| ELSA-2026-0524 ELSA-2026-0524: postgresql:15 security update (MODERATE) | 2 месяца назад | ||
| ELSA-2026-0523 ELSA-2026-0523: postgresql:13 security update (MODERATE) | 2 месяца назад | ||
| ELSA-2026-0519 ELSA-2026-0519: postgresql:16 security update (MODERATE) | 2 месяца назад | ||
| ELSA-2026-0493 ELSA-2026-0493: postgresql:16 security update (MODERATE) | 2 месяца назад | ||
| ELSA-2026-0492 ELSA-2026-0492: postgresql:15 security update (MODERATE) | 2 месяца назад | ||
| ELSA-2026-0491 ELSA-2026-0491: postgresql security update (MODERATE) | 2 месяца назад | ||
 | openSUSE-SU-2026:20266-1 Security update for postgresql15 | около 1 месяца назад | ||
| openSUSE-SU-2026:20265-1 Security update for postgresql14 | около 1 месяца назад | ||
 | CVE-2025-12817 Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 3.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-12817 Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 4.3 | 0% Низкий | 4 месяца назад |
 | CVE-2025-12817 Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 3.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-12817 PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege | CVSS3: 3.1 | 0% Низкий | 4 месяца назад |
| CVE-2025-12817 Missing authorization in PostgreSQL CREATE STATISTICS command allows a ... | CVSS3: 3.1 | 0% Низкий | 4 месяца назад |
| CVE-2025-12818 Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 5.9 | 0% Низкий | 4 месяца назад |
| CVE-2025-12818 Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 7.5 | 0% Низкий | 4 месяца назад |
| CVE-2025-12818 Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected. | CVSS3: 5.9 | 0% Низкий | 4 месяца назад |
| CVE-2025-12818 PostgreSQL libpq undersizes allocations, via integer wraparound | CVSS3: 5.9 | 0% Низкий | 4 месяца назад |
Уязвимостей на страницу