CLSA-2026:1773334093
Update of els-os-release
TuxCare License Agreement
0
- Initial package
None
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- Initial package
0
tuxcare-rhel8-els
els-os-release-1.0.0-0.el8.x86_64.rpm
2e4712770d5ff8f0cd99fa558bddd6a41a0b87dfb9757e49d0402dd09e4a4844
CLSA-2026:1774355598
postgresql: Fix of CVE-2026-2003
TuxCare License Agreement
0
- CVE-2026-2003: fix memory disclosure via oidvector type
Important
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-2003: fix memory disclosure via oidvector type
0
tuxcare-rhel8-els
postgresql-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
095533201e404c803d0b70e47fe4becf4afadadff7f9dc84d026cca31ae1e0a2
postgresql-contrib-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
5681bd9a88e3e2046a0b80e7bea43c3e9abc14eaf218352ffab6ab8a4b7fb770
postgresql-docs-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
3e8923bfdb4ed306a1b9d08d15a0346bded1ad9b730b38fcbf6b3be8298c776b
postgresql-plperl-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
3332875cfad6c5bfcbd11df8828dc6bc43c02fb484f36c5bab52b098d8f1f033
postgresql-plpython3-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
b289e0236351fa8a54dcc3953e56b68019465905bcb87268f7cbe5d3d1b4c740
postgresql-pltcl-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
c035dc34bc8d45a1932834783ec241aa79e23f7e7eb5ec765fae4a9239829e37
postgresql-server-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
5c4dce086abca7522706a6d9367fe4ae394e8d743e4068447fd54cbc69440a7d
postgresql-server-devel-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
b95339f67566ad9640e7a13a09b662ba6e4220506ff0126a37d937b9d405cc9b
postgresql-static-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
fab9241d51696d88929bf2c535352b96cd6a6f5e9e8123451750d6bdabc4cd48
postgresql-test-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
bb3162a25ac6290f8bc8312ac6ff74a7b080a67bda5be35db6ba2e530f0da244
postgresql-test-rpm-macros-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.noarch.rpm
e8ea405f66e49cebbd4e51bc4abfda0569233b1e25e563c3197969b59708863b
postgresql-upgrade-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
2a91218c48c1c52e0018b0a65ec57dc8253771be8a5854f92505e934ce00aed6
postgresql-upgrade-devel-13.23-2.module_el8+2364+b49622e4.tuxcare.els1.x86_64.rpm
8b03e73506a0d501028fcc2a1be5d9fefb77e8107a2fc0f79c6a317390dd00c1
CLSA-2026:1775033648
postgresql-jdbc: Fix of CVE-2022-21724
TuxCare License Agreement
0
- CVE-2022-21724: ensure arbitrary classes can't be passed instead of
SocketFactory, SSLSocketFactory, CallbackHandler, HostnameVerifier
- Restore testing from previous spec versions, exclude broken tests
Critical
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2022-21724: ensure arbitrary classes can't be passed instead of
SocketFactory, SSLSocketFactory, CallbackHandler, HostnameVerifier
- Restore testing from previous spec versions, exclude broken tests
0
tuxcare-rhel8-els
postgresql-jdbc-42.2.14-3.el8_9.tuxcare.els1.noarch.rpm
f994d76a4728c6fbfceb4d5b7f80f424cf1ed0aff7c79bd38e0ecc96d378c849
postgresql-jdbc-javadoc-42.2.14-3.el8_9.tuxcare.els1.noarch.rpm
6388f1345bd18314b480e7c59bc47b5994c321f7e942504f5f673e845b44bdd9
CLSA-2026:1776960263
ImageMagick: Fix of CVE-2026-32636
TuxCare License Agreement
0
- CVE-2026-32636: out-of-bounds write of a single zero byte in
ConvertUTF16ToUTF8 via NewXMLTree when resizing UTF-8 buffer
Important
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-32636: out-of-bounds write of a single zero byte in
ConvertUTF16ToUTF8 via NewXMLTree when resizing UTF-8 buffer
0
tuxcare-rhel8-els
ImageMagick-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
a0ea0d38e5eb3580d0276fb4bb6d089664b63a176a672ece6be288d6e5bddb25
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
a3d85d9145e7ccd9208abd527e7c7f41c8315a85c36b0d93f51ea035f6ef4ad9
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
5f21517c328a466a8fa699370660a68e9bafa3580a26c61313cf23864a0da650
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
af2669c4eb413227fd1768e18fe779494e0937115e7d965b3d8c488d93292312
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
09fa9d081a5e785a9bcaf59b5f2d8339e071688af017d1d8949936f4a6a716e5
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
26d6d0cee48ffd3ad769a74d1ad3f8b91f4dd75cb7ac1c094bd59452552164b8
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
26b4c8339d205d7d2ac14135893d018bc2323b0481abb06d495ff6555bf6646d
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els27.x86_64.rpm
56b8131f5d306927db5c54756d30c55a281107b19a6c06bc6e77fa3d45692fd6
CLSA-2026:1777395036
ImageMagick: Fix of 2 CVEs
TuxCare License Agreement
0
- CVE-2026-33900: integer truncation/wraparound in the viff encoder that could
trigger an out-of-bounds heap write on 32-bit builds (GHSA-v67w-737x-v2c9;
upstream b6c01a5a23f1e350ebe2db78c7cc326db2e320c9)
- CVE-2026-33905: out-of-bounds read in SampleImage when sample:offset is set
via -sample define (GHSA-pcvx-ph33-r5vv; upstream
140fc7b01fa7d870b3bc8453fb7adccfb7c1e202 with follow-up
8d73954bf7e13a352e71a32cf7d18905577f17e8)
Critical
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-33900: integer truncation/wraparound in the viff encoder that could
trigger an out-of-bounds heap write on 32-bit builds (GHSA-v67w-737x-v2c9;
upstream b6c01a5a23f1e350ebe2db78c7cc326db2e320c9)
- CVE-2026-33905: out-of-bounds read in SampleImage when sample:offset is set
via -sample define (GHSA-pcvx-ph33-r5vv; upstream
140fc7b01fa7d870b3bc8453fb7adccfb7c1e202 with follow-up
8d73954bf7e13a352e71a32cf7d18905577f17e8)
0
tuxcare-rhel8-els
ImageMagick-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
15e54c4b4515efce65fca064ae7d3fd6becc8ad2e88f96ff0e9493f39c976861
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
d6a3762cd89abc37c2d4388f9004959935027ec77540c78eb366784399583856
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
a87e616319a917902cee9897fa6cafbeefefcf6369effc8b08e3024f580f48c6
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
394ff3bd0734a25616446928cb48f6625afecb684a2f1e31f13a16d3ccfae892
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
f8fee769c50333c6bc76fb2be420a788cbd94685bbe488ab065468c0627b728e
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
33555353d798aad4b08a73cde1d224a757570dded6dff7cc32a46b6ef49507ef
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
c9a2d11974a290d057d10e90d2deb27c019f793478cafe2d3ba7de8ef78cd25d
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els28.x86_64.rpm
f1d5094c6833d0fefb4b6a9d8d952a40d62706ff480bfc382c7aecd77c1bb070
CLSA-2026:1779128854
ImageMagick: Fix of CVE-2026-42050
TuxCare License Agreement
0
- CVE-2026-42050: fix stack buffer overflow in XTileImage when loading malicious MIFF in display tool
Low
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-42050: fix stack buffer overflow in XTileImage when loading malicious MIFF in display tool
0
tuxcare-rhel8-els
ImageMagick-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
622f42c3ed8045ee213a4172b44c5d6a55a8b6fec54324f39d77f0b40ccd7e0e
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
d17320dffd0c5735f48f388b6fed2671590f9f73462dfeff625970c6d352b758
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
fb80885c08a453d0d65ab8ad92459e0773a6272c218195af8b252fe7f95b3e3f
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
72a18189a860c63c1a6c565fec0b301a6251fdd98ca3d90231aeec58aa395e1c
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
f00acee0a28f38198588665a2f8e925dd560d1586efed8011e50dac47dcb86b7
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
02126782eddf86b4cb2e1ff14bad3c16c9a244adf27424b45cb71a71d7e9e6f4
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
a3d8d607f7fef3b410d8b66caabb84208ddad026ba2cbed5b8f1659f0972aca6
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els30.x86_64.rpm
647ea4f316cfea63ff313026d2314ec0a4f35003801e592afcfda938b4543f36
CLSA-2026:1780661920
ImageMagick: Fix of 2 CVEs
TuxCare License Agreement
0
- CVE-2026-28689: fix path policy TOCTOU symlink race allowing read/write of policy-denied files
- CVE-2026-28692: fix heap buffer over-read in MAT decoder caused by 32-bit integer overflow
Moderate
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-28689: fix path policy TOCTOU symlink race allowing read/write of policy-denied files
- CVE-2026-28692: fix heap buffer over-read in MAT decoder caused by 32-bit integer overflow
0
tuxcare-rhel8-els
ImageMagick-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
3fa04f2d1f2475cc6a23974f0accb7345e6edd706f076f3473f3445eb3b5caee
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
e3004ca16e4e74bb57c5e5859045825b58642e6399957df811a09265dea42474
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
b71f9092d496ebfb4a5bd657d6919eb9134e24c441c470a584503ccc78014847
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
deed9fa38d05023da0b48e59df93d5368f71566d41fbdae3a40f83e398ea6c07
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
0fd0966ad7b6a9964377c499c4aea4be9ce8a2d7c25ee76f4d228a645e4c51f5
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
78de77e944d0b03031c767ba09f0ded8fdb68d53624139f79638f20f6e4795ee
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
e17e12df78fc8c0f434e3f33bc43f2345e7577aac29e5aed9286dbd9fe986352
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els31.x86_64.rpm
7c3d9aadd04bb7fc3209f488b7e70357338d50444f9bed3fff5e804abc30c42f
CLSA-2026:1780965584
postgresql: Fix of 7 CVEs
TuxCare License Agreement
0
- CVE-2026-6473: formatting.c / contrib intarray / ltree: avoid integer overflow in size calculations
- CVE-2026-6474: timeofday / pg_strftime: guard against unsafe format codes and ensure null-termination on overflow
- CVE-2026-6475: prevent path traversal in pg_basebackup and pg_rewind via path_is_safe_for_extraction()
- CVE-2026-6477: libpq: harden PQfn() / pqFunctionCall3 against server-controlled buffer overruns in lo_read()
- CVE-2026-6478: authentication: add timingsafe_bcmp() helper and apply it in MD5 / SCRAM / RADIUS / plain auth paths
- CVE-2026-6479: postmaster: bound SSL/GSS negotiation recursion in ProcessStartupPacket()
- CVE-2026-6637: refint contrib: prevent SQL injection and buffer overruns in check_primary_key / check_foreign_key
Low
Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.
- CVE-2026-6473: formatting.c / contrib intarray / ltree: avoid integer overflow in size calculations
- CVE-2026-6474: timeofday / pg_strftime: guard against unsafe format codes and ensure null-termination on overflow
- CVE-2026-6475: prevent path traversal in pg_basebackup and pg_rewind via path_is_safe_for_extraction()
- CVE-2026-6477: libpq: harden PQfn() / pqFunctionCall3 against server-controlled buffer overruns in lo_read()
- CVE-2026-6478: authentication: add timingsafe_bcmp() helper and apply it in MD5 / SCRAM / RADIUS / plain auth paths
- CVE-2026-6479: postmaster: bound SSL/GSS negotiation recursion in ProcessStartupPacket()
- CVE-2026-6637: refint contrib: prevent SQL injection and buffer overruns in check_primary_key / check_foreign_key
0
tuxcare-rhel8-els
postgresql-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
3949444c2464d928459beaaea396f4685327178aa3e1dac320428460703dc983
postgresql-contrib-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
546fc0fa92b5f20a00797c83c6b1974b4e2c126265429be321e90d8686f3f1a8
postgresql-docs-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
24d64deda7b5861492a01165087a807119363e75243737a4e76d2ec8214b5304
postgresql-plperl-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
d5b5d73f3163dfdf02038f94486d3057f23e7951168d1912403403761cc82d18
postgresql-plpython3-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
62d09de6d7d3819adb15d536d893de159f08b48dc260698e2f318880d1b81413
postgresql-pltcl-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
ab943b3c1933312e2dccad3c73bf319cfcbf243bb962399e9bb70483eee38b0f
postgresql-server-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
3e4dc14be0f15cd7d028000a812a92f150f258dea54fdd81328521c4f1fe44e3
postgresql-server-devel-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
fa0a26beb3eb9e8dfa41665265d181eaa8adcd44d9dd68f1c191b856f7a75100
postgresql-static-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
e6e171c82feb654fc55bebf9775fec4d1af2dd1152c46184742f804c04197b0d
postgresql-test-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
94d4ca38254e29cc9d32d9804a055ad3d8e31332be6048025ed5e7e300893cf7
postgresql-test-rpm-macros-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.noarch.rpm
767d14c9446d53f9a3de2065811a44844ab4e008f6d58ed12bc8d67755ddf3df
postgresql-upgrade-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
21017c8be01a298cd132e2b73764a42037b1fec51dcb84884e71f02a2be59f8d
postgresql-upgrade-devel-13.23-2.module_el8+2415+b49622e4.tuxcare.els2.x86_64.rpm
cdeedee9f933da16878e8db93603c3dd8bdc488edd8b601be55c3b4bf6364dfb