rpm package
opensuse/postgresql15-pgaudit&distro=openSUSE Leap 16.0
pkg:rpm/opensuse/postgresql15-pgaudit&distro=openSUSE%20Leap%2016.0
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-12818 | Med | 5.9 | < 1.7.1-160000.3.1 | 1.7.1-160000.3.1 | Nov 13, 2025 | Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application usin | |
| CVE-2025-12817 | Low | 3.1 | < 1.7.1-160000.3.1 | 1.7.1-160000.3.1 | Nov 13, 2025 | Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. |
- affected < 1.7.1-160000.3.1fixed 1.7.1-160000.3.1
Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application usin
- affected < 1.7.1-160000.3.1fixed 1.7.1-160000.3.1
Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail.