Description
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
- Improper validation vulnerability in PostgreSQL can be used to obtain sensitive information.
- Missing validation vulnerability in PostgreSQL can be exploited to execute arbitrary code.
- Heap buffer overflow vulnerability in PostgreSQL can be exploited to cause denial of service or execute arbitrary code.
- Missing validation vulnerability in PostgreSQL can be exploited to cause denial of service or execute arbitrary code.
Original advisories
- PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
- PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
- PostgreSQL missing validation of multibyte character length executes arbitrary code
Related products
CVE list
- CVE-2026-2003 warning
- CVE-2026-2004 critical
- CVE-2026-2005 critical
- CVE-2026-2006 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!