Fedora 41: 2025-49d6f62c0e critical: pgAdmin remote code execution
fedora
April 27, 2025
Update to pgadmin-9.2.
Summary
pgAdmin is the most popular and feature rich Open Source administration and development
platform for PostgreSQL, the most advanced Open Source database in the world.
Update Information:
Update to pgadmin-9.2.
Topics Covered
Change Log
* Wed Apr 9 2025 Sandro Mani
References
[ 1 ] Bug #2357255 - CVE-2025-2945 pgadmin4: pgAdmin 4: Remote Code Execution in Query Tool and Cloud Deployment [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2357255
[ 2 ] Bug #2357257 - CVE-2025-2946 pgadmin4: Cross-Site Vulnerability(XSS) due to arbitrary HTML/JavaScript gets executed while query result rendering in Query Tool and View/Edit Data Tool of pgAdmin 4 [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2357257
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-49d6f62c0e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: pgadmin4
Product: Fedora 41
Version: 9.2
Release: 1.fc41
Summary: Administration tool for PostgreSQL
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!