PT-2025-46824 · Unknown+9 · Postgresql+8

Published

2025-11-13

·

Updated

2026-03-30

·

CVE-2025-12818

CVSS v3.1

5.9

Medium

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 18.1 PostgreSQL versions 13.23 and earlier PostgreSQL versions 14.20 and earlier PostgreSQL versions 15.15 and earlier PostgreSQL versions 16.11 and earlier PostgreSQL versions 17.7 and earlier
Description An integer wraparound issue exists in the libpq client library of PostgreSQL. This flaw allows an attacker to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes, potentially leading to a segmentation fault and application crash.
Recommendations Update PostgreSQL to a version prior to 18.1. Update PostgreSQL to a version prior to 17.7. Update PostgreSQL to a version prior to 16.11. Update PostgreSQL to a version prior to 15.15. Update PostgreSQL to a version prior to 14.20. Update PostgreSQL to a version prior to 13.23.

Fix

DoS

RCE

Integer Overflow

Weakness Enumeration

CWE-190

Related Identifiers

ALSA-2026:0458
ALSA-2026:0491
ALSA-2026:0492
ALSA-2026:0493
ALSA-2026:0519
ALSA-2026:0523
ALSA-2026:0524
ALSA-2026:0525
ALSA-2026:0594
ALSA-2026:0695
ALT-PU-2025-14379
ALT-PU-2025-14441
ALT-PU-2025-14443
ALT-PU-2025-14444
ALT-PU-2025-14445
ALT-PU-2025-14446
ALT-PU-2025-14447
ALT-PU-2025-14642
ALT-PU-2025-14644
ALT-PU-2025-14645
ALT-PU-2025-14646
ALT-PU-2025-14647
ALT-PU-2025-14648
AZL-70166
AZL-70202
AZL-74900
BDU:2025-13962
CVE-2025-12818
DLA-4420-1
ECHO-A3A3-6A88-8E40
MGASA-2025-0302
OPENSUSE-SU-2025:15782-1
OPENSUSE-SU-2025:15783-1
OPENSUSE-SU-2025:15784-1
OPENSUSE-SU-2025:15785-1
OPENSUSE-SU-2025:15789-1
OPENSUSE-SU-2026:20130-1
OPENSUSE-SU-2026:20131-1
OPENSUSE-SU-2026:20265-1
OPENSUSE-SU-2026:20266-1
OPENSUSE-SU-2026:20449-1
RHSA-2025:23123
RHSA-2025:23124
RHSA-2025:23157
RHSA-2025:23158
RHSA-2026:0262
RHSA-2026:0263
RHSA-2026:0264
RHSA-2026:0265
RHSA-2026:0266
RHSA-2026:0267
RHSA-2026:0268
RHSA-2026:0269
RHSA-2026:0270
RHSA-2026:0455
RHSA-2026:0456
RHSA-2026:0458
RHSA-2026:0491
RHSA-2026:0492
RHSA-2026:0493
RHSA-2026:0519
RHSA-2026:0523
RHSA-2026:0524
RHSA-2026:0525
RHSA-2026:0594
RHSA-2026:0695
RHSA-2026:0744
RHSA-2026:0745
RHSA-2026:0746
RHSA-2026:0835
RHSA-2026:0865
RHSA-2026:8756
SUSE-SU-2025:4325-1
SUSE-SU-2025:4334-1
SUSE-SU-2025:4363-1
SUSE-SU-2025:4364-1
SUSE-SU-2025:4370-1
SUSE-SU-2025:4371-1
SUSE-SU-2025:4372-1
SUSE-SU-2025:4386-1
SUSE-SU-2025:4387-1
SUSE-SU-2025:4388-1
SUSE-SU-2025:4406-1
SUSE-SU-2025:4484-1
SUSE-SU-2025:4485-1
SUSE-SU-2025:4486-1
SUSE-SU-2026:0197-1
SUSE-SU-2026:20193-1
SUSE-SU-2026:20194-1
SUSE-SU-2026:20587-1
SUSE-SU-2026:20588-1
SUSE-SU-2026:20986-1
USN-7908-1

Affected Products

Alt Linux
Debian
Linuxmint
Postgresql
Red Os
Rocky Linux
Suse
Ubuntu
Libpq