ALT-BU-2025-7002-1
Branch p11 update bulletin.
Package alterator-browser-qt6 updated to version 3.6.5-alt2 for branch p11 in task 383260.
Closed bugs
У alterator-browser-qt6 не отображается значок приложения в wayland
Package postgresql17-1C updated to version 17.2-alt9 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Package postgresql16 updated to version 16.9-alt1 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Package postgresql14 updated to version 14.18-alt1 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Package postgresql17 updated to version 17.5-alt1 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Package postgresql13 updated to version 13.21-alt1 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Package postgresql15 updated to version 15.13-alt1 for branch p11 in task 383528.
Closed vulnerabilities
BDU:2025-05405
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-05-09
CVE-2025-4207
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.