[CLSA-2026:1773160910] postgresql: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2026-03-10 16:41:54 UTC
Description:
- CVE-2026-2004: require superuser to install non-built-in selectivity estimators and harden intarray _int_matchsel() against wrong operator type - CVE-2026-2005: fix heap buffer overflow in pgcrypto PGP public-key decryption by validating session key length - CVE-2026-2006: fix multibyte character handling vulnerabilities in wchar conversion, EUC_CN encoding length, and replace pg_mblen() with bounds-checked versions across all call sites
Updated packages:
  • postgresql-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:7ac2ee2981fde02f2c2e2a59a10f4a1efd38074a4c0fba811ec70cdaab3ef37f
  • postgresql-contrib-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:8c3e45115cd2ab97dd409c28249fecd0dd240b2cb85dccbf3f55d8ed9639e6a1
  • postgresql-docs-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:4a1fd24ef8e9dd30e7cc91c7b12cc75336d2d37270c62e864e149eae4649b33c
  • postgresql-plperl-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:8ab8d09bd841aed28c7e337ff98bbbbda457b86bd3fca0fd75e598f55905f2ff
  • postgresql-plpython3-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:fad6d64e222dcd166c3c9967f725e37f0e140e16f6e79c83a5f95b4a8045167e
  • postgresql-pltcl-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:11d555a321de0bce4050d36ec0d678d1ab6c0c54c62c4cc3ac2c28eaf59a33a2
  • postgresql-private-devel-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:cfeb9701582d4979c1afd22acb0ae202b7a7c27099ff0f3b89b34722f11200d2
  • postgresql-private-libs-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:5145bc9873dfaac9abfec42daeb993dd1b262a057e8cb050d47584b70c9c1a68
  • postgresql-server-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:a1a81d5cdfa0ff97d77b5e4cd7114832cced2e434ccc694f9e99b637ca890a41
  • postgresql-server-devel-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:d2c802cc0d35410c4aa6a668c2de41adf2aa830cc9088276aaf9b6ce4a64950e
  • postgresql-static-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:3b7c3a78c92eb076029f475e22b03a05c4444ddebd50edd790a6c629d208dd71
  • postgresql-test-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:efdae0259a4437192fd7a0b877444bfb0bbf49c1d0a1ec86dcd1eb4de8a94159
  • postgresql-test-rpm-macros-13.11-1.el9_2.tuxcare.els15.noarch.rpm
    sha:aa084e49d04adf6118ca48e83fae73ea820ca5d6fa10f1a74e1f520f007d1598
  • postgresql-upgrade-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:b8a679a49925dacabd7ee91d35ac156193f1902c4f018308e6845f3a0f791418
  • postgresql-upgrade-devel-13.11-1.el9_2.tuxcare.els15.x86_64.rpm
    sha:b7107eccf613f78dae066eb91808560060b7e00730ccd95b3eac93d6c8e1c06a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.