Количество 42
Количество 42
BDU:2026-01723
Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексированием массива, позволяющая нарушителю выполнить произвольный код в контексте текущего пользователя
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text ma ...
SUSE-SU-2026:0787-1
Security update for postgresql17
SUSE-SU-2026:0785-1
Security update for postgresql18
SUSE-SU-2026:0784-1
Security update for postgresql16
SUSE-SU-2026:0769-1
Security update for postgresql18
GHSA-mq5v-x68w-mc4f
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
RLSA-2026:4064
Important: postgresql:12 security update
RLSA-2026:4063
Important: postgresql:16 security update
RLSA-2026:4059
Important: postgresql:15 security update
RLSA-2026:4024
Important: postgresql:13 security update
ELSA-2026-4064
ELSA-2026-4064: postgresql:12 security update (IMPORTANT)
ELSA-2026-4063
ELSA-2026-4063: postgresql:16 security update (IMPORTANT)
ELSA-2026-4059
ELSA-2026-4059: postgresql:15 security update (IMPORTANT)
ELSA-2026-4024
ELSA-2026-4024: postgresql:13 security update (IMPORTANT)
ELSA-2026-3896
ELSA-2026-3896: postgresql:15 security update (IMPORTANT)
ELSA-2026-3887
ELSA-2026-3887: postgresql16 security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2026-01723 Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексированием массива, позволяющая нарушителю выполнить произвольный код в контексте текущего пользователя | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-2006 Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-2006 Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-2006 Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
| CVE-2026-2006 Missing validation of multibyte character length in PostgreSQL text ma ... | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
 | SUSE-SU-2026:0787-1 Security update for postgresql17 | 0% Низкий | 23 дня назад | |
| SUSE-SU-2026:0785-1 Security update for postgresql18 | 0% Низкий | 23 дня назад | |
| SUSE-SU-2026:0784-1 Security update for postgresql16 | 0% Низкий | 23 дня назад | |
| SUSE-SU-2026:0769-1 Security update for postgresql18 | 0% Низкий | 23 дня назад | |
| GHSA-mq5v-x68w-mc4f Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
 | RLSA-2026:4064 Important: postgresql:12 security update | 16 дней назад | ||
| RLSA-2026:4063 Important: postgresql:16 security update | 16 дней назад | ||
| RLSA-2026:4059 Important: postgresql:15 security update | 16 дней назад | ||
| RLSA-2026:4024 Important: postgresql:13 security update | 16 дней назад | ||
| ELSA-2026-4064 ELSA-2026-4064: postgresql:12 security update (IMPORTANT) | 16 дней назад | ||
| ELSA-2026-4063 ELSA-2026-4063: postgresql:16 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-4059 ELSA-2026-4059: postgresql:15 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-4024 ELSA-2026-4024: postgresql:13 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-3896 ELSA-2026-3896: postgresql:15 security update (IMPORTANT) | 17 дней назад | ||
| ELSA-2026-3887 ELSA-2026-3887: postgresql16 security update (IMPORTANT) | 21 день назад |
Уязвимостей на страницу