[CLSA-2026:1779707025] postgresql: Fix of 8 CVEs
Type:
security
Severity:
Critical
Release date:
2026-06-10 14:38:19 UTC
Description:
- CVE-2024-10977: libpq retains untrusted error message bytes from a man-in-the-middle during SSL/GSS negotiation; bail out and discard the server-provided text so the client does not write arbitrary non-NUL bytes to a terminal
CVEs fixed:
Updated packages:
  • postgresql-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:e9ae178d15e47c6a817d19f5e4777fb49099757cfbc6ec46dfb1802aedd13464
  • postgresql-contrib-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:bf8cf0a0fc742cea8a56256344307515767fbd5bcab9339df348ea1b8bc63ffc
  • postgresql-docs-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:e444cf19dda8445a29eb0eac53c9f1ec47cf1002428e3446b89a9e744bc11c14
  • postgresql-plperl-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:b31465aaab9f61ab6aedb24d3d4cd7522d1e998f8847762880df87041e9bbe70
  • postgresql-plpython3-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:ef6dce23ba96f10202607fab473f3e7eb42bc8b4711515d51023fba9100dfa3d
  • postgresql-pltcl-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:7b66fd0e28ef78dd0e786042ad4765e80fcdf2a82ad34c82bd028466e5d979c5
  • postgresql-private-devel-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:4e2b31969727d34f836c0902d07928d5a8109e4ea2187886496b60d180541c9e
  • postgresql-private-libs-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:a3375782e8ee99b4a095df5e865d8f4ccfbd07e6a442aa9af51c4f975a3a8850
  • postgresql-server-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:2e1a1359203f87dd63da89d3e7bc486f5fc81b1db41b79faf74109ea6b0d6589
  • postgresql-server-devel-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:c2eadc27b258a79a7e59b4a7a0be39a5634baf55f647f5b4614be5d7a800bb68
  • postgresql-static-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:5bdcdb6f7463d7c32fe7541d88f3e5c7c71c88763796b46dff8f5db069cf23ea
  • postgresql-test-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:1e7b77e8916a18f583a69ba375fcdf29ced3f1e9deff9d085465a0a56c5c9982
  • postgresql-test-rpm-macros-13.11-1.el9_2.tuxcare.els18.noarch.rpm
    sha:c1ed992fb1a2241d984659f1dc53efba9e0c4dff0ce01f71de1158f0d82a4b40
  • postgresql-upgrade-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:5181859e9de89a925fb3c1ac96ae41497af5794fea664cd248ac68e224e4deb6
  • postgresql-upgrade-devel-13.11-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:63e04c3a0164b90db0d0f66e1e07e4d50ed703f20097e2333ce55c6f5ba8a9b7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.