Bugs fixes in "postgresql-16"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2026-2006 | Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffe | 2026-03-04 |
| CVE | CVE-2026-2005 | Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. | 2026-03-04 |
| CVE | CVE-2026-2004 | Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary cod | 2026-03-04 |
| CVE | CVE-2026-2003 | Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viabili | 2026-03-04 |
| Launchpad | 2127668 | New PostgreSQL upstream microreleases 14.22, 16.13, and 17.9 | 2026-03-04 |
| CVE | CVE-2026-2006 | Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffe | 2026-03-04 |
| CVE | CVE-2026-2005 | Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. | 2026-03-04 |
| CVE | CVE-2026-2004 | Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary cod | 2026-03-04 |
| CVE | CVE-2026-2003 | Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viabili | 2026-03-04 |
| Launchpad | 2127668 | New PostgreSQL upstream microreleases 14.22, 16.13, and 17.9 | 2026-03-04 |
| CVE | CVE-2026-2006 | Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffe | 2026-03-04 |
| CVE | CVE-2026-2005 | Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. | 2026-03-04 |
| CVE | CVE-2026-2004 | Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary cod | 2026-03-04 |
| CVE | CVE-2026-2003 | Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viabili | 2026-03-04 |
| Launchpad | 2127668 | New PostgreSQL upstream microreleases 14.22, 16.13, and 17.9 | 2026-03-04 |
| CVE | CVE-2026-2006 | Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffe | 2026-03-04 |
| CVE | CVE-2026-2005 | Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. | 2026-03-04 |
| CVE | CVE-2026-2004 | Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary cod | 2026-03-04 |
| CVE | CVE-2026-2003 | Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viabili | 2026-03-04 |
| Launchpad | 2127668 | New PostgreSQL upstream microreleases 14.22, 16.13, and 17.9 | 2026-03-04 |
About
-
Send Feedback to @ubuntu_updates
