HIGH8.8CVE-2026-6638PostgreSQL REFRESH PUBLICATION allows SQL injection via table name from 0, < 17.10-r0
HIGH8.8CVE-2026-6637PostgreSQL refint allows stack buffer overflow and SQL injection from 0, < 17.10-r0
HIGH8.8CVE-2026-6477PostgreSQL libpq lo_* functions let server superuser overwrite client stack memory from 0, < 17.10-r0
HIGH8.8PostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of origin superuser choice
from 0, < 17.10-r0
HIGH8.8PostgreSQL server undersizes allocations, via integer wraparound
from 0, < 17.10-r0
HIGH8.8PostgreSQL missing validation of multibyte character length executes arbitrary code
from 0, < 17.8-r0
HIGH8.8PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
from 0, < 17.8-r0
HIGH8.8PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
from 0, < 17.8-r0
HIGH8.8PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server
from 0, < 17.6-r0
HIGH8.8PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client
from 0, < 17.6-r0
HIGH8.8PostgreSQL PL/Perl environment variable changes execute arbitrary code
from 0, < 17.1-r0
HIGH8.2PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
from 0, < 17.8-r0
HIGH8.1postgresql-13 - regression update
from 0, < 17.4-r0
HIGH7.5PostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion
from 0, < 17.10-r0
HIGH7.2PostgreSQL pg_createsubscriber allows SQL injection via subscription name
from 0, < 17.10-r0
MEDIUM6.5PostgreSQL discloses MD5-hashed passwords via covert timing channel
from 0, < 17.10-r0
MEDIUM5.9PostgreSQL libpq undersizes allocations, via integer wraparound
from 0, < 17.7-r0
MEDIUM5.9postgresql-13 - security update
from 0, < 17.5-r0
MEDIUM5.4PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
from 0, < 17.10-r0
MEDIUM5.4postgresql-15 - security update
from 0, < 17.1-r0
MEDIUM4.3PostgreSQL timeofday() can disclose portions of server memory
from 0, < 17.10-r0
MEDIUM4.3postgresql-17 - security update
from 0, < 17.8-r0
MEDIUM4.2PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID
from 0, < 17.1-r0
LOW3.7PostgreSQL libpq retains an error message from man-in-the-middle
from 0, < 17.1-r0
LOW3.1postgresql-13 - security update
from 0, < 17.7-r0
LOW3.1postgresql-13 - security update
from 0, < 17.6-r0