PT-2026-7843 · Unknown+5 · Postgresql+4

Altan Birler

·

Published

2026-01-01

·

Updated

2026-05-19

·

CVE-2026-2003

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions PostgreSQL versions prior to 18.2 PostgreSQL versions prior to 17.8 PostgreSQL versions prior to 16.12 PostgreSQL versions prior to 15.16 PostgreSQL versions prior to 14.21
Description A flaw exists in PostgreSQL due to improper validation of the 'oidvector' type. This can allow a database user to reveal a limited amount of server memory. While the possibility of exposing confidential information through this method seems unlikely, it has not been entirely dismissed.
Recommendations Update to PostgreSQL version 18.2 or later. Update to PostgreSQL version 17.8 or later. Update to PostgreSQL version 16.12 or later. Update to PostgreSQL version 15.16 or later. Update to PostgreSQL version 14.21 or later.

Fix

Out of bounds Read

Weakness Enumeration

CWE-125CWE-1287

Related Identifiers

ALSA-2026:19009
ALSA-2026:19010
ALSA-2026:4110
AZL-77420
AZL-77580
BDU:2026-01726
BIT-POSTGRESQL-2026-2003
CVE-2026-2003
ECHO-FA09-83F6-E16F
JLSEC-2026-53
MGASA-2026-0041
OESA-2026-1493
OESA-2026-1494
OESA-2026-1495
OESA-2026-1496
OESA-2026-1512
OESA-2026-1513
OESA-2026-1514
OESA-2026-1515
OESA-2026-1531
OPENSUSE-SU-2026:10190-1
OPENSUSE-SU-2026:10191-1
OPENSUSE-SU-2026:10192-1
OPENSUSE-SU-2026:10193-1
OPENSUSE-SU-2026:10197-1
OPENSUSE-SU-2026:20265-1
OPENSUSE-SU-2026:20266-1
OPENSUSE-SU-2026:20388-1
OPENSUSE-SU-2026:20408-1
OPENSUSE-SU-2026:20447-1
RHSA-2026:19009
RHSA-2026:19010
RHSA-2026:3730
RHSA-2026:3887
RHSA-2026:3896
RHSA-2026:4059
RHSA-2026:4063
RHSA-2026:4110
RHSA-2026:4254
RHSA-2026:4441
RHSA-2026:4515
RHSA-2026:4544
RHSA-2026:4546
RHSA-2026:4547
RHSA-2026:4548
RHSA-2026:8756
SUSE-SU-2026:0584-1
SUSE-SU-2026:0585-1
SUSE-SU-2026:0586-1
SUSE-SU-2026:0588-1
SUSE-SU-2026:0614-1
SUSE-SU-2026:0615-1
SUSE-SU-2026:0616-1
SUSE-SU-2026:0768-1
SUSE-SU-2026:0770-1
SUSE-SU-2026:0771-1
SUSE-SU-2026:0786-1
SUSE-SU-2026:0881-1
SUSE-SU-2026:0882-1
SUSE-SU-2026:0883-1
SUSE-SU-2026:20587-1
SUSE-SU-2026:20588-1
SUSE-SU-2026:20906-1
SUSE-SU-2026:20921-1
SUSE-SU-2026:20983-1
USN-8072-1

Affected Products

Linuxmint
Postgresql
Red Os
Rocky Linux
Ubuntu