Количество 60
Количество 60
openSUSE-SU-2026:20265-1
Security update for postgresql14
RLSA-2026:4064
Important: postgresql:12 security update
RLSA-2026:4063
Important: postgresql:16 security update
RLSA-2026:4059
Important: postgresql:15 security update
RLSA-2026:4024
Important: postgresql:13 security update
ELSA-2026-4064
ELSA-2026-4064: postgresql:12 security update (IMPORTANT)
ELSA-2026-4063
ELSA-2026-4063: postgresql:16 security update (IMPORTANT)
ELSA-2026-4059
ELSA-2026-4059: postgresql:15 security update (IMPORTANT)
ELSA-2026-4024
ELSA-2026-4024: postgresql:13 security update (IMPORTANT)
ELSA-2026-3896
ELSA-2026-3896: postgresql:15 security update (IMPORTANT)
ELSA-2026-3887
ELSA-2026-3887: postgresql16 security update (IMPORTANT)
ELSA-2026-3730
ELSA-2026-3730: postgresql security update (IMPORTANT)
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a databas ...
GHSA-f3vj-j2m6-8hfj
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
BDU:2026-01726
Уязвимость функции обработки типов данных oidvector системы управления базами данных PostgreSQL, позволяющая нарушителю раскрыть байты памяти сервера и получить доступ к конфиденциальной информации
CVE-2026-2004
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2004
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | openSUSE-SU-2026:20265-1 Security update for postgresql14 | около 1 месяца назад | ||
 | RLSA-2026:4064 Important: postgresql:12 security update | 17 дней назад | ||
| RLSA-2026:4063 Important: postgresql:16 security update | 16 дней назад | ||
| RLSA-2026:4059 Important: postgresql:15 security update | 17 дней назад | ||
| RLSA-2026:4024 Important: postgresql:13 security update | 17 дней назад | ||
| ELSA-2026-4064 ELSA-2026-4064: postgresql:12 security update (IMPORTANT) | 16 дней назад | ||
| ELSA-2026-4063 ELSA-2026-4063: postgresql:16 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-4059 ELSA-2026-4059: postgresql:15 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-4024 ELSA-2026-4024: postgresql:13 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-3896 ELSA-2026-3896: postgresql:15 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-3887 ELSA-2026-3887: postgresql16 security update (IMPORTANT) | 21 день назад | ||
| ELSA-2026-3730 ELSA-2026-3730: postgresql security update (IMPORTANT) | 21 день назад | ||
 | CVE-2026-2003 Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-2003 Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-2003 Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
| CVE-2026-2003 Improper validation of type "oidvector" in PostgreSQL allows a databas ... | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
| GHSA-f3vj-j2m6-8hfj Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
 | BDU:2026-01726 Уязвимость функции обработки типов данных oidvector системы управления базами данных PostgreSQL, позволяющая нарушителю раскрыть байты памяти сервера и получить доступ к конфиденциальной информации | CVSS3: 4.3 | 0% Низкий | около 1 месяца назад |
| CVE-2026-2004 Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
| CVE-2026-2004 Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
Уязвимостей на страницу