ALT-PU-2026-3648-2 — postgresql18-1C

BDU:2026-01722

HIGH8.8

Уязвимость компонента pgcrypto системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольный код

Published: 2026-02-11Modified: 2026-04-08

CVSS 3.xHIGH 8.8

CVSS:3.x/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0CRITICAL 9.0

CVSS:2.0/AV:N/AC:L/Au:S/C:C/I:C/A:C

References

CVE-2026-2005

BDU:2026-01723

HIGH8.8

Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексированием массива, позволяющая нарушителю выполнить произвольный код в контексте текущего пользователя

Published: 2026-02-11Modified: 2026-04-08

CVSS 3.xHIGH 8.8

CVSS:3.x/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0CRITICAL 9.0

CVSS:2.0/AV:N/AC:L/Au:S/C:C/I:C/A:C

References

CVE-2026-2006

BDU:2026-01724

HIGH8.2

Уязвимость компонента pg_trgm системы управления базами данных PostgreSQL, позволяющая нарушителю повысить свои привилегии

Published: 2026-02-11Modified: 2026-04-08

CVSS 3.xHIGH 8.2

CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

CVSS 2.0HIGH 8.5

CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:P/A:C

References

CVE-2026-2007

BDU:2026-01726

MEDIUM4.3

Уязвимость функции обработки типов данных oidvector системы управления базами данных PostgreSQL, позволяющая нарушителю раскрыть байты памяти сервера и получить доступ к конфиденциальной информации

Published: 2026-02-11Modified: 2026-04-08

CVSS 3.xMEDIUM 4.3

CVSS:3.x/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS 2.0MEDIUM 4.0

CVSS:2.0/AV:N/AC:L/Au:S/C:P/I:N/A:N

References

CVE-2026-2003

BDU:2026-01727

HIGH8.8

Уязвимость функции оценки избирательности расширения Intarray системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольный код в контексте текущего пользователя

Published: 2026-02-11Modified: 2026-04-08

CVSS 3.xHIGH 8.8

CVSS:3.x/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0CRITICAL 9.0

CVSS:2.0/AV:N/AC:L/Au:S/C:C/I:C/A:C

References

CVE-2026-2004

CVE-2026-2003

MEDIUM4.3

Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.

Published: 2026-02-12Modified: 2026-02-20

CVSS 3.xMEDIUM 4.3

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://www.postgresql.org/support/security/CVE-2026-2003/

CVE-2026-2004

HIGH8.8

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.

Published: 2026-02-12Modified: 2026-02-20

CVSS 3.xHIGH 8.8

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://www.postgresql.org/support/security/CVE-2026-2004/

CVE-2026-2005

HIGH8.8

Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.

Published: 2026-02-12Modified: 2026-02-20

CVSS 3.xHIGH 8.8

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://www.postgresql.org/support/security/CVE-2026-2005/

CVE-2026-2006

HIGH8.8

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.

Published: 2026-02-12Modified: 2026-02-20

CVSS 3.xHIGH 8.8

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://www.postgresql.org/support/security/CVE-2026-2006/

CVE-2026-2007

HIGH8.2

Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the viability of attacks that lead to privilege escalation. PostgreSQL 18.1 and 18.0 are affected.

Published: 2026-02-12Modified: 2026-02-20

CVSS 3.xHIGH 8.2

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

References

https://www.postgresql.org/support/security/CVE-2026-2007/

Package update postgresql18-1C in branch p11

Closed issues (10)

Уязвимость компонента pgcrypto системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольный код

Уязвимость компонента pg_trgm системы управления базами данных PostgreSQL, позволяющая нарушителю повысить свои привилегии

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.

Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.