Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisoryimportantinteger overflow

openSUSE 16.0 postgresql17 Important Memory Allocation Issues 2026-20131-1

An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.. openSUSE security update: security update for postgresql17 and postgresql18 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20131-1 Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed. Description: This update for postgresql17 and postgresql18 fixes the following issues: Changes in postgresql17, postgresql18: Update to 17.7: * https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/ * https://www.postgresql.org/docs/release/17.7/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer. Postgresql is shipped in version 18.1. pgvector was updated to 0.8.1 to support postgresql18. pgaudit was updated to support postgresql18. Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaSTonline_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-216=1 Package List: - openSUSE Leap 16.0: libecpg6-18.1-160000.1.1 libpq5-18.1-160000.1.1 postgresql-18-160000.1.1 postgresql-contrib-18-160000.1.1 postgresql-devel-18-160000.1.1 postgresql-docs-18-160000.1.1 postgresql-llvmjit-18-160000.1.1 postgresql-llvmjit-devel-18-160000.1.1 postgresql-plperl-18-160000.1.1 postgresql-plpython-18-160000.1.1 postgresql-pltcl-18-160000.1.1 postgresql-server-18-160000.1.1 postgresql-server-devel-18-160000.1.1 postgresql-test-18-160000.1.1 postgresql13-pgaudit-1.5.3-160000.3.1 postgresql13-pgvector-0.8.1-160000.1.1 postgresql14-pgaudit-1.6.3-160000.3.1 postgresql14-pgvector-0.8.1-160000.1.1 postgresql15-pgaudit-1.7.1-160000.3.1 postgresql15-pgvector-0.8.1-160000.1.1 postgresql16-pgaudit-16.1-160000.3.1 postgresql16-pgvector-0.8.1-160000.1.1 postgresql17-17.7-160000.1.1 postgresql17-contrib-17.7-160000.1.1 postgresql17-devel-17.7-160000.1.1 postgresql17-docs-17.7-160000.1.1 postgresql17-llvmjit-17.7-160000.1.1 postgresql17-llvmjit-devel-17.7-160000.1.1 postgresql17-pgaudit-17.1-160000.3.1 postgresql17-pgvector-0.8.1-160000.1.1 postgresql17-plperl-17.7-160000.1.1 postgresql17-plpython-17.7-160000.1.1 postgresql17-pltcl-17.7-160000.1.1 postgresql17-server-17.7-160000.1.1 postgresql17-server-devel-17.7-160000.1.1 postgresql17-test-17.7-160000.1.1 postgresql18-18.1-160000.1.1 postgresql18-contrib-18.1-160000.1.1 postgresql18-devel-18.1-160000.1.1 postgresql18-devel-mini-18.1-160000.1.1 postgresql18-docs-18.1-160000.1.1 postgresql18-llvmjit-18.1-160000.1.1 postgresql18-llvmjit-devel-18.1-160000.1.1 postgresql18-pgaudit-18.0-160000.3.1 postgresql18-pgvector-0.8.1-160000.1.1 postgresql18-plperl-18.1-160000.1.1 postgresql18-plpython-18.1-160000.1.1 postgresql18-pltcl-18.1-160000.1.1 postgresql18-server-18.1-160000.1.1 postgresql18-server-devel-18.1-160000.1.1 postgresql18-test-18.1-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html . Important security update for openSUSE fixes multiple issues in postgresql17 and postgresql18, ensuring stability.. openSUSE security, postgresql17 update, postgresql18 vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Feb 03, 2026 •Important OpenSUSE

security advisoryimportantinteger overflow

openSUSE: postgresql15 Important Integer Overflow Issue 2025:4484-1

An update that solves two vulnerabilities can now be installed.. # Security update for postgresql15 Announcement ID: SUSE-SU-2025:4484-1 Release Date: 2025-12-18T14:40:12Z Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for postgresql15 fixes the following issues: Upgraded to 15.15: * CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS (bsc#1253332) * CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq (bsc#1253333) Other fixes: * Use %product_libs_llvm_ver to determine the LLVM version. * Remove conditionals for obsolete PostgreSQL releases. * Sync spec file from version 18. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4484=1 SUSE-2025-4484=1 * Legacy Module 15-SP6 zypper in-t patch SUSE-SLE-Module-Legacy-15-SP6-2025-4484=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-4484=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-test-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-llvmjit-debuginfo-15.15-150600.16.23.1 * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-llvmjit-devel-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-llvmjit-15.15-150600.16.23.1 * postgresql15-server-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * openSUSE Leap 15.6 (noarch) * postgresql15-docs-15.15-150600.16.23.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 *postgresql15-server-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 * Legacy Module 15-SP6 (noarch) * postgresql15-docs-15.15-150600.16.23.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-server-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 . OpenSUSE updates PostgreSQL 15 fixing critical integer overflow and privilege issues with important severity.. openSUSE postgresql15 security fix update important. . Severity: Important. LinuxSecurity.com Team

Dec 18, 2025 •Important OpenSUSE

Banner 2 1028x280 1708121730 1 1771599631

security advisorySuSEimportant

SUSE: Critical Update for PostgreSQL 15 CREATE Privileges and CVEs

An update that solves two vulnerabilities can now be installed.. # Security update for postgresql15 Announcement ID: SUSE-SU-2025:4484-1 Release Date: 2025-12-18T14:40:12Z Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for postgresql15 fixes the following issues: Upgraded to 15.15: * CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS (bsc#1253332) * CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq (bsc#1253333) Other fixes: * Use %product_libs_llvm_ver to determine the LLVM version. * Remove conditionals for obsolete PostgreSQL releases. * Sync spec file from version 18. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4484=1 SUSE-2025-4484=1 * Legacy Module 15-SP6 zypper in-t patch SUSE-SLE-Module-Legacy-15-SP6-2025-4484=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-4484=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-test-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-llvmjit-debuginfo-15.15-150600.16.23.1 * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-llvmjit-devel-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-llvmjit-15.15-150600.16.23.1 * postgresql15-server-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * openSUSE Leap 15.6 (noarch) * postgresql15-docs-15.15-150600.16.23.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 *postgresql15-server-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 * Legacy Module 15-SP6 (noarch) * postgresql15-docs-15.15-150600.16.23.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql15-pltcl-debuginfo-15.15-150600.16.23.1 * postgresql15-server-debuginfo-15.15-150600.16.23.1 * postgresql15-plpython-15.15-150600.16.23.1 * postgresql15-plperl-15.15-150600.16.23.1 * postgresql15-plpython-debuginfo-15.15-150600.16.23.1 * postgresql15-15.15-150600.16.23.1 * postgresql15-pltcl-15.15-150600.16.23.1 * postgresql15-server-devel-15.15-150600.16.23.1 * postgresql15-contrib-debuginfo-15.15-150600.16.23.1 * postgresql15-devel-15.15-150600.16.23.1 * postgresql15-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-server-15.15-150600.16.23.1 * postgresql15-plperl-debuginfo-15.15-150600.16.23.1 * postgresql15-contrib-15.15-150600.16.23.1 * postgresql15-debuginfo-15.15-150600.16.23.1 * postgresql15-server-devel-debuginfo-15.15-150600.16.23.1 * postgresql15-debugsource-15.15-150600.16.23.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 . SUSE updates fix critical issues in postgresql15, addressing security threats and enhancing system integrity.. SUSE security update, PostgreSQL vulnerabilities, Linux package management, security best practices. . Severity: Important. LinuxSecurity.com Team

Dec 18, 2025 •Important SuSE

security advisoryimportantinteger overflow

openSUSE: PostgreSQL 16 Critical Integer Overflow and Privilege Update

An update that solves two vulnerabilities can now be installed.. # Security update for postgresql16 Announcement ID: SUSE-SU-2025:4388-1 Release Date: 2025-12-12T13:36:55Z Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for postgresql16 fixes the following issues: Upgraded to 16.11: * CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS (bsc#1253332) * CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq (bsc#1253333) Other fixes: * Use %product_libs_llvm_ver to determine the LLVM version. * Remove conditionals for obsolete PostgreSQL releases. * Sync spec file from version 18. ## Patch Instructions: To installthis SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-4388=1 openSUSE-SLE-15.6-2025-4388=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4388=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-4388=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4388=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4388=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-4388=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-4388=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql16-llvmjit-debuginfo-16.11-150600.16.25.1 * postgresql16-plperl-16.11-150600.16.25.1 * postgresql16-plperl-debuginfo-16.11-150600.16.25.1 * postgresql16-test-16.11-150600.16.25.1 * postgresql16-devel-debuginfo-16.11-150600.16.25.1 * postgresql16-pltcl-16.11-150600.16.25.1 * postgresql16-16.11-150600.16.25.1 * postgresql16-server-devel-16.11-150600.16.25.1 * postgresql16-server-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * postgresql16-llvmjit-devel-16.11-150600.16.25.1 * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-server-debuginfo-16.11-150600.16.25.1 * postgresql16-plpython-16.11-150600.16.25.1 * postgresql16-plpython-debuginfo-16.11-150600.16.25.1 * postgresql16-contrib-16.11-150600.16.25.1 * postgresql16-contrib-debuginfo-16.11-150600.16.25.1 * postgresql16-pltcl-debuginfo-16.11-150600.16.25.1 * postgresql16-devel-16.11-150600.16.25.1 *postgresql16-server-devel-debuginfo-16.11-150600.16.25.1 * postgresql16-llvmjit-16.11-150600.16.25.1 * openSUSE Leap 15.6 (noarch) * postgresql16-docs-16.11-150600.16.25.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * postgresql16-16.11-150600.16.25.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-contrib-debuginfo-16.11-150600.16.25.1 * postgresql16-devel-debuginfo-16.11-150600.16.25.1 * postgresql16-contrib-16.11-150600.16.25.1 * postgresql16-devel-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql16-llvmjit-debuginfo-16.11-150600.16.25.1 * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-test-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * postgresql16-llvmjit-16.11-150600.16.25.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql16-llvmjit-devel-16.11-150600.16.25.1 * postgresql16-llvmjit-debuginfo-16.11-150600.16.25.1 * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-test-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * postgresql16-llvmjit-16.11-150600.16.25.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql16-plperl-16.11-150600.16.25.1 * postgresql16-plperl-debuginfo-16.11-150600.16.25.1 * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-server-debuginfo-16.11-150600.16.25.1 * postgresql16-plpython-16.11-150600.16.25.1 * postgresql16-server-devel-16.11-150600.16.25.1 * postgresql16-contrib-debuginfo-16.11-150600.16.25.1 * postgresql16-pltcl-debuginfo-16.11-150600.16.25.1 * postgresql16-devel-debuginfo-16.11-150600.16.25.1 * postgresql16-pltcl-16.11-150600.16.25.1 *postgresql16-plpython-debuginfo-16.11-150600.16.25.1 * postgresql16-contrib-16.11-150600.16.25.1 * postgresql16-devel-16.11-150600.16.25.1 * postgresql16-server-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 * postgresql16-server-devel-debuginfo-16.11-150600.16.25.1 * Server Applications Module 15-SP6 (noarch) * postgresql16-docs-16.11-150600.16.25.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql16-debugsource-16.11-150600.16.25.1 * postgresql16-server-debuginfo-16.11-150600.16.25.1 * postgresql16-16.11-150600.16.25.1 * postgresql16-server-devel-16.11-150600.16.25.1 * postgresql16-server-16.11-150600.16.25.1 * postgresql16-debuginfo-16.11-150600.16.25.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 . An important security update for openSUSE addressing two vulnerabilities in postgresql16, enhancing system integrity.. postgresql16 update, openSUSE vulnerabilities, important security patch, system integrity fix, integer overflow. . Severity: Important. LinuxSecurity.com Team

Dec 12, 2025 •Important OpenSUSE

security advisoryimportantinteger overflow

openSUSE: postgresql14 Important Privileges Overflow Risk 2025:4371-1

An update that solves two vulnerabilities can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2025:4371-1 Release Date: 2025-12-11T19:05:09Z Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for postgresql14 fixes the following issues: Upgraded to 14.20: * CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS (bsc#1253332) * CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq (bsc#1253333) Other fixes: * Use %product_libs_llvm_ver to determine the LLVM version. * Remove conditionals for obsolete PostgreSQL releases. * Sync spec file from version 18. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaSTonline_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-4371=1 openSUSE-SLE-15.6-2025-4371=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2025-4371=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-4371=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4371=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4371=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql14-plpython-14.20-150600.16.23.1 * postgresql14-contrib-debuginfo-14.20-150600.16.23.1 * postgresql14-devel-14.20-150600.16.23.1 * postgresql14-test-14.20-150600.16.23.1 * postgresql14-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-debugsource-14.20-150600.16.23.1 * postgresql14-debuginfo-14.20-150600.16.23.1 * postgresql14-server-devel-14.20-150600.16.23.1 * postgresql14-14.20-150600.16.23.1 * postgresql14-contrib-14.20-150600.16.23.1 * postgresql14-plperl-14.20-150600.16.23.1 * postgresql14-pltcl-14.20-150600.16.23.1 * postgresql14-llvmjit-14.20-150600.16.23.1 * postgresql14-plperl-debuginfo-14.20-150600.16.23.1 * postgresql14-llvmjit-debuginfo-14.20-150600.16.23.1 * postgresql14-server-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-server-14.20-150600.16.23.1 * postgresql14-pltcl-debuginfo-14.20-150600.16.23.1 * postgresql14-llvmjit-devel-14.20-150600.16.23.1 * postgresql14-server-debuginfo-14.20-150600.16.23.1 * postgresql14-plpython-debuginfo-14.20-150600.16.23.1 * openSUSE Leap 15.6 (noarch) * postgresql14-docs-14.20-150600.16.23.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql14-debuginfo-14.20-150600.16.23.1 * postgresql14-pltcl-debuginfo-14.20-150600.16.23.1 *postgresql14-plpython-14.20-150600.16.23.1 * postgresql14-server-devel-14.20-150600.16.23.1 * postgresql14-14.20-150600.16.23.1 * postgresql14-plperl-debuginfo-14.20-150600.16.23.1 * postgresql14-contrib-debuginfo-14.20-150600.16.23.1 * postgresql14-server-debuginfo-14.20-150600.16.23.1 * postgresql14-devel-14.20-150600.16.23.1 * postgresql14-server-14.20-150600.16.23.1 * postgresql14-contrib-14.20-150600.16.23.1 * postgresql14-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-server-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-plperl-14.20-150600.16.23.1 * postgresql14-plpython-debuginfo-14.20-150600.16.23.1 * postgresql14-debugsource-14.20-150600.16.23.1 * postgresql14-pltcl-14.20-150600.16.23.1 * Legacy Module 15-SP6 (noarch) * postgresql14-docs-14.20-150600.16.23.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-debuginfo-14.20-150600.16.23.1 * postgresql14-pltcl-debuginfo-14.20-150600.16.23.1 * postgresql14-plpython-14.20-150600.16.23.1 * postgresql14-server-devel-14.20-150600.16.23.1 * postgresql14-14.20-150600.16.23.1 * postgresql14-plperl-debuginfo-14.20-150600.16.23.1 * postgresql14-contrib-debuginfo-14.20-150600.16.23.1 * postgresql14-server-debuginfo-14.20-150600.16.23.1 * postgresql14-devel-14.20-150600.16.23.1 * postgresql14-server-14.20-150600.16.23.1 * postgresql14-contrib-14.20-150600.16.23.1 * postgresql14-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-server-devel-debuginfo-14.20-150600.16.23.1 * postgresql14-plperl-14.20-150600.16.23.1 * postgresql14-plpython-debuginfo-14.20-150600.16.23.1 * postgresql14-debugsource-14.20-150600.16.23.1 * postgresql14-pltcl-14.20-150600.16.23.1 * Legacy Module 15-SP7 (noarch) * postgresql14-docs-14.20-150600.16.23.1 * Legacy Module 15-SP7 (ppc64le s390x x86_64) * postgresql14-test-14.20-150600.16.23.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) *postgresql14-debuginfo-14.20-150600.16.23.1 * postgresql14-llvmjit-14.20-150600.16.23.1 * postgresql14-llvmjit-debuginfo-14.20-150600.16.23.1 * postgresql14-test-14.20-150600.16.23.1 * postgresql14-debugsource-14.20-150600.16.23.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-debuginfo-14.20-150600.16.23.1 * postgresql14-llvmjit-14.20-150600.16.23.1 * postgresql14-llvmjit-debuginfo-14.20-150600.16.23.1 * postgresql14-test-14.20-150600.16.23.1 * postgresql14-debugsource-14.20-150600.16.23.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 . An important security update for postgresql14 addresses two vulnerabilities with potential impact on openSUSE systems.. postgresql14 security update, openSUSE vulnerabilities, important update, system protection. . Severity: Important. LinuxSecurity.com Team

Dec 11, 2025 •Important OpenSUSE

security advisoryimportantPostgreSQL

openSUSE: Critical Buffer Overflow Vulnerabilities in postgresql17, 18

An update that solves two vulnerabilities can now be installed.. # Security update for postgresql17, postgresql18 Announcement ID: SUSE-SU-2025:4363-1 Release Date: 2025-12-11T10:10:59Z Rating: important References: * bsc#1253332 * bsc#1253333 Cross-References: * CVE-2025-12817 * CVE-2025-12818 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for postgresql17, postgresql18 fixes the following issues: Changes in postgresql18: * Fix build with uring for post SLE15 code streams. Update to 18.1: * https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/ * https://www.postgresql.org/docs/release/18.1/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema,potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer. * pg_config --libs returns -lnuma so we need to require it. Update to 18.0: * https://www.postgresql.org/about/news/postgresql-18-released-3142/ * https://www.postgresql.org/docs/18/release-18.html Changes in postgresql17: Update to 17.7: * https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/ * https://www.postgresql.org/docs/release/17.7/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer. * switch library to pg 18 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-4363=1 openSUSE-SLE-15.6-2025-4363=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4363=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-4363=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4363=1 * SUSE Package Hub 15 15-SP7 zypper in -t patchSUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4363=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-4363=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-4363=1 ## Package List: * openSUSE Leap 15.6 (noarch) * postgresql-plperl-18-150600.17.9.1 * postgresql-pltcl-18-150600.17.9.1 * postgresql-devel-18-150600.17.9.1 * postgresql-llvmjit-devel-18-150600.17.9.1 * postgresql-server-devel-18-150600.17.9.1 * postgresql-test-18-150600.17.9.1 * postgresql-docs-18-150600.17.9.1 * postgresql17-docs-17.7-150600.13.19.1 * postgresql18-docs-18.1-150600.13.3.1 * postgresql-server-18-150600.17.9.1 * postgresql-plpython-18-150600.17.9.1 * postgresql-contrib-18-150600.17.9.1 * postgresql-llvmjit-18-150600.17.9.1 * postgresql-18-150600.17.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql17-pltcl-17.7-150600.13.19.1 * postgresql18-mini-debugsource-18.1-150600.13.3.1 * postgresql17-server-devel-17.7-150600.13.19.1 * libpq5-18.1-150600.13.3.1 * postgresql17-server-devel-debuginfo-17.7-150600.13.19.1 * libecpg6-debuginfo-18.1-150600.13.3.1 * postgresql18-devel-18.1-150600.13.3.1 * postgresql18-llvmjit-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-17.7-150600.13.19.1 * postgresql18-server-devel-debuginfo-18.1-150600.13.3.1 * postgresql17-devel-debuginfo-17.7-150600.13.19.1 * postgresql17-pltcl-debuginfo-17.7-150600.13.19.1 * postgresql17-debugsource-17.7-150600.13.19.1 * postgresql18-devel-debuginfo-18.1-150600.13.3.1 * postgresql17-plpython-17.7-150600.13.19.1 * postgresql18-server-18.1-150600.13.3.1 * postgresql18-18.1-150600.13.3.1 * postgresql18-llvmjit-devel-18.1-150600.13.3.1 * postgresql17-llvmjit-devel-17.7-150600.13.19.1 * postgresql17-server-debuginfo-17.7-150600.13.19.1 * libpq5-debuginfo-18.1-150600.13.3.1 *postgresql18-devel-mini-18.1-150600.13.3.1 * postgresql17-devel-17.7-150600.13.19.1 * postgresql18-debugsource-18.1-150600.13.3.1 * postgresql17-plpython-debuginfo-17.7-150600.13.19.1 * postgresql18-llvmjit-18.1-150600.13.3.1 * postgresql17-plperl-debuginfo-17.7-150600.13.19.1 * postgresql18-devel-mini-debuginfo-18.1-150600.13.3.1 * postgresql17-plperl-17.7-150600.13.19.1 * postgresql17-server-17.7-150600.13.19.1 * postgresql18-pltcl-18.1-150600.13.3.1 * postgresql17-llvmjit-17.7-150600.13.19.1 * postgresql18-contrib-18.1-150600.13.3.1 * postgresql18-pltcl-debuginfo-18.1-150600.13.3.1 * postgresql18-debuginfo-18.1-150600.13.3.1 * postgresql18-plpython-debuginfo-18.1-150600.13.3.1 * libecpg6-18.1-150600.13.3.1 * postgresql18-contrib-debuginfo-18.1-150600.13.3.1 * postgresql18-plperl-18.1-150600.13.3.1 * postgresql17-llvmjit-debuginfo-17.7-150600.13.19.1 * postgresql17-test-17.7-150600.13.19.1 * postgresql18-plpython-18.1-150600.13.3.1 * postgresql17-17.7-150600.13.19.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * postgresql18-test-18.1-150600.13.3.1 * postgresql18-server-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-debuginfo-17.7-150600.13.19.1 * postgresql18-plperl-debuginfo-18.1-150600.13.3.1 * postgresql18-server-devel-18.1-150600.13.3.1 * openSUSE Leap 15.6 (x86_64) * libpq5-32bit-18.1-150600.13.3.1 * libecpg6-32bit-18.1-150600.13.3.1 * libpq5-32bit-debuginfo-18.1-150600.13.3.1 * libecpg6-32bit-debuginfo-18.1-150600.13.3.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libecpg6-64bit-18.1-150600.13.3.1 * libpq5-64bit-debuginfo-18.1-150600.13.3.1 * libecpg6-64bit-debuginfo-18.1-150600.13.3.1 * libpq5-64bit-18.1-150600.13.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql18-18.1-150600.13.3.1 * postgresql17-17.7-150600.13.19.1 * libpq5-18.1-150600.13.3.1 * postgresql17-debuginfo-17.7-150600.13.19.1 *libpq5-debuginfo-18.1-150600.13.3.1 * postgresql18-debuginfo-18.1-150600.13.3.1 * postgresql17-debugsource-17.7-150600.13.19.1 * postgresql18-debugsource-18.1-150600.13.3.1 * Basesystem Module 15-SP6 (noarch) * postgresql-18-150600.17.9.1 * Basesystem Module 15-SP6 (x86_64) * libpq5-32bit-debuginfo-18.1-150600.13.3.1 * libpq5-32bit-18.1-150600.13.3.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql18-18.1-150600.13.3.1 * postgresql17-17.7-150600.13.19.1 * libpq5-18.1-150600.13.3.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * libpq5-debuginfo-18.1-150600.13.3.1 * postgresql18-debuginfo-18.1-150600.13.3.1 * postgresql17-debugsource-17.7-150600.13.19.1 * postgresql18-debugsource-18.1-150600.13.3.1 * Basesystem Module 15-SP7 (noarch) * postgresql-18-150700.23.3.1 * Basesystem Module 15-SP7 (x86_64) * libpq5-32bit-debuginfo-18.1-150600.13.3.1 * libpq5-32bit-18.1-150600.13.3.1 * SUSE Package Hub 15 15-SP6 (noarch) * postgresql-plperl-18-150600.17.9.1 * postgresql-pltcl-18-150600.17.9.1 * postgresql-devel-18-150600.17.9.1 * postgresql-llvmjit-devel-18-150600.17.9.1 * postgresql-server-devel-18-150600.17.9.1 * postgresql-test-18-150600.17.9.1 * postgresql-docs-18-150600.17.9.1 * postgresql-server-18-150600.17.9.1 * postgresql-plpython-18-150600.17.9.1 * postgresql-contrib-18-150600.17.9.1 * postgresql-llvmjit-18-150600.17.9.1 * postgresql-18-150600.17.9.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql18-llvmjit-devel-18.1-150600.13.3.1 * postgresql17-llvmjit-debuginfo-17.7-150600.13.19.1 * postgresql17-llvmjit-devel-17.7-150600.13.19.1 * postgresql17-test-17.7-150600.13.19.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * postgresql18-test-18.1-150600.13.3.1 * postgresql18-llvmjit-debuginfo-18.1-150600.13.3.1 * postgresql17-llvmjit-17.7-150600.13.19.1 * postgresql18-llvmjit-18.1-150600.13.3.1 *postgresql17-debugsource-17.7-150600.13.19.1 * SUSE Package Hub 15 15-SP7 (noarch) * postgresql-server-devel-18-150700.23.3.1 * postgresql-plperl-18-150700.23.3.1 * postgresql-llvmjit-devel-18-150700.23.3.1 * postgresql-18-150700.23.3.1 * postgresql-plpython-18-150700.23.3.1 * postgresql-docs-18-150700.23.3.1 * postgresql-llvmjit-18-150700.23.3.1 * postgresql-devel-18-150700.23.3.1 * postgresql-contrib-18-150700.23.3.1 * postgresql-server-18-150700.23.3.1 * postgresql-pltcl-18-150700.23.3.1 * postgresql-test-18-150700.23.3.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql18-llvmjit-devel-18.1-150600.13.3.1 * postgresql17-llvmjit-debuginfo-17.7-150600.13.19.1 * postgresql17-llvmjit-devel-17.7-150600.13.19.1 * postgresql17-test-17.7-150600.13.19.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * postgresql18-test-18.1-150600.13.3.1 * postgresql18-llvmjit-debuginfo-18.1-150600.13.3.1 * postgresql17-llvmjit-17.7-150600.13.19.1 * postgresql18-llvmjit-18.1-150600.13.3.1 * postgresql17-debugsource-17.7-150600.13.19.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * postgresql17-pltcl-17.7-150600.13.19.1 * postgresql17-server-devel-17.7-150600.13.19.1 * postgresql18-devel-18.1-150600.13.3.1 * postgresql17-server-devel-debuginfo-17.7-150600.13.19.1 * libecpg6-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-17.7-150600.13.19.1 * postgresql18-server-devel-debuginfo-18.1-150600.13.3.1 * postgresql17-devel-debuginfo-17.7-150600.13.19.1 * postgresql17-pltcl-debuginfo-17.7-150600.13.19.1 * postgresql17-debugsource-17.7-150600.13.19.1 * postgresql18-devel-debuginfo-18.1-150600.13.3.1 * postgresql17-plpython-17.7-150600.13.19.1 * postgresql18-server-18.1-150600.13.3.1 * postgresql17-server-debuginfo-17.7-150600.13.19.1 * postgresql17-devel-17.7-150600.13.19.1 * postgresql18-debugsource-18.1-150600.13.3.1 *postgresql17-plpython-debuginfo-17.7-150600.13.19.1 * postgresql17-plperl-debuginfo-17.7-150600.13.19.1 * postgresql17-plperl-17.7-150600.13.19.1 * postgresql17-server-17.7-150600.13.19.1 * postgresql18-pltcl-18.1-150600.13.3.1 * postgresql18-contrib-18.1-150600.13.3.1 * postgresql18-pltcl-debuginfo-18.1-150600.13.3.1 * postgresql18-debuginfo-18.1-150600.13.3.1 * postgresql18-plpython-debuginfo-18.1-150600.13.3.1 * libecpg6-18.1-150600.13.3.1 * postgresql18-contrib-debuginfo-18.1-150600.13.3.1 * postgresql18-plperl-18.1-150600.13.3.1 * postgresql18-plpython-18.1-150600.13.3.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * postgresql18-server-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-debuginfo-17.7-150600.13.19.1 * postgresql18-plperl-debuginfo-18.1-150600.13.3.1 * postgresql18-server-devel-18.1-150600.13.3.1 * Server Applications Module 15-SP6 (noarch) * postgresql-plperl-18-150600.17.9.1 * postgresql-pltcl-18-150600.17.9.1 * postgresql-devel-18-150600.17.9.1 * postgresql-server-devel-18-150600.17.9.1 * postgresql17-docs-17.7-150600.13.19.1 * postgresql18-docs-18.1-150600.13.3.1 * postgresql-docs-18-150600.17.9.1 * postgresql-server-18-150600.17.9.1 * postgresql-plpython-18-150600.17.9.1 * postgresql-contrib-18-150600.17.9.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql17-pltcl-17.7-150600.13.19.1 * postgresql17-server-devel-17.7-150600.13.19.1 * postgresql18-devel-18.1-150600.13.3.1 * postgresql17-server-devel-debuginfo-17.7-150600.13.19.1 * libecpg6-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-17.7-150600.13.19.1 * postgresql18-server-devel-debuginfo-18.1-150600.13.3.1 * postgresql17-devel-debuginfo-17.7-150600.13.19.1 * postgresql17-pltcl-debuginfo-17.7-150600.13.19.1 * postgresql17-debugsource-17.7-150600.13.19.1 * postgresql18-devel-debuginfo-18.1-150600.13.3.1 *postgresql17-plpython-17.7-150600.13.19.1 * postgresql18-server-18.1-150600.13.3.1 * postgresql17-server-debuginfo-17.7-150600.13.19.1 * postgresql17-devel-17.7-150600.13.19.1 * postgresql18-debugsource-18.1-150600.13.3.1 * postgresql17-plpython-debuginfo-17.7-150600.13.19.1 * postgresql17-plperl-debuginfo-17.7-150600.13.19.1 * postgresql17-plperl-17.7-150600.13.19.1 * postgresql17-server-17.7-150600.13.19.1 * postgresql18-pltcl-18.1-150600.13.3.1 * postgresql18-contrib-18.1-150600.13.3.1 * postgresql18-pltcl-debuginfo-18.1-150600.13.3.1 * postgresql18-debuginfo-18.1-150600.13.3.1 * postgresql18-plpython-debuginfo-18.1-150600.13.3.1 * libecpg6-18.1-150600.13.3.1 * postgresql18-contrib-debuginfo-18.1-150600.13.3.1 * postgresql18-plperl-18.1-150600.13.3.1 * postgresql18-plpython-18.1-150600.13.3.1 * postgresql17-debuginfo-17.7-150600.13.19.1 * postgresql18-server-debuginfo-18.1-150600.13.3.1 * postgresql17-contrib-debuginfo-17.7-150600.13.19.1 * postgresql18-plperl-debuginfo-18.1-150600.13.3.1 * postgresql18-server-devel-18.1-150600.13.3.1 * Server Applications Module 15-SP7 (noarch) * postgresql-server-devel-18-150700.23.3.1 * postgresql-plperl-18-150700.23.3.1 * postgresql17-docs-17.7-150600.13.19.1 * postgresql18-docs-18.1-150600.13.3.1 * postgresql-plpython-18-150700.23.3.1 * postgresql-docs-18-150700.23.3.1 * postgresql-devel-18-150700.23.3.1 * postgresql-contrib-18-150700.23.3.1 * postgresql-server-18-150700.23.3.1 * postgresql-pltcl-18-150700.23.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 . This update addresses two important security issues in postgresql17 and postgresql18 on openSUSE and requires immediate action.. SUSE security update, postgresql vulnerabilities, openSUSEpatch. . Severity: Important. LinuxSecurity.com Team

Dec 11, 2025 •Important OpenSUSE

Stay Secure with the Latest Linux Advisories

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE 16.0 postgresql17 Important Memory Allocation Issues 2026-20131-1

openSUSE: postgresql15 Important Integer Overflow Issue 2025:4484-1

SUSE: Critical Update for PostgreSQL 15 CREATE Privileges and CVEs

openSUSE: PostgreSQL 16 Critical Integer Overflow and Privilege Update

openSUSE: postgresql14 Important Privileges Overflow Risk 2025:4371-1

openSUSE: Critical Buffer Overflow Vulnerabilities in postgresql17, 18

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!