VYPR

rpm package

opensuse/postgresql-jdbc&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/postgresql-jdbc&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2026-42198HigApr 29, 2026
    affected < 42.7.11-1.1fixed 42.7.11-1.1

    pgjdbc is an open source postgresql JDBC Driver. From version 42.2.0 to before version 42.7.11, pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. A malicious server can instruct the driver to perform SCRAM authentication with a very larg

  • CVE-2025-49146Jun 11, 2025
    affected < 42.7.7-1.1fixed 42.7.7-1.1

    pgjdbc is an open source postgresql JDBC Driver. From 42.7.4 and until 42.7.7, when the PostgreSQL JDBC driver is configured with channel binding set to required (default value is prefer), the driver would incorrectly allow connections to proceed with authentication methods that