PT-2026-40925 · Postgresql Global Development Group+3 · Postgresql+2

Jeroen Gui

Published

2026-05-14

Updated

2026-06-04

CVE-2026-6575

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions PostgreSQL versions 18.0 through 18.3

Description A buffer over-read occurs in the pg restore attribute stats() function when it accepts array values of unmatched length. This causes query planning to read past the end of one array, allowing a table maintainer to infer memory values beyond that boundary.

Recommendations Update to version 18.4.

Fix

Buffer Over-read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126

Related Identifiers

BDU:2026-07095

BIT-POSTGRESQL-2026-6575

CVE-2026-6575

OPENSUSE-SU-2026:10828-1

SUSE-SU-2026:22077-1

USN-8294-1

Affected Products

Linuxmint

Postgresql

Ubuntu

PT-2026-40925 · Postgresql Global Development Group+3 · Postgresql+2

CVE-2026-6575

Weakness Enumeration

Related Identifiers

Affected Products

References · 56