VYPR

apk package

wolfi/pgbouncer-doc

pkg:apk/wolfi/pgbouncer-doc

Vulnerabilities (5)

  • CVE-2026-6667MedMay 9, 2026
    affected < 1.25.2-r0fixed 1.25.2-r0

    PgBouncer before 1.25.2 did not perform an appropriate authorization check for the KILL_CLIENT admin command. All users with access to the administration console (which itself requires authorization) could run this command. It would have been correct to allow only users listed in

  • CVE-2026-6666MedMay 9, 2026
    affected < 1.25.2-r0fixed 1.25.2-r0

    A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field.

  • CVE-2026-6665HigMay 9, 2026
    affected < 1.25.2-r0fixed 1.25.2-r0

    The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat() correctly when building the contents of the SCRAM client-final-message. A malicious backend that sends a SCRAM server-final-message with a long nonce can trigger a stack overflow.

  • CVE-2026-6664HigMay 9, 2026
    affected < 1.25.2-r0fixed 1.25.2-r0

    An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet.

  • CVE-2025-12819Dec 3, 2025
    affected < 1.25.1-r0fixed 1.25.1-r0

    Untrusted search path in auth_query connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to execute arbitrary SQL during authentication via a malicious search_path parameter in the StartupMessage.