Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves 8 vulnerabilities and has 9 bug fixes can now be installed.. openSUSE security update: security update for postgresql14 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21102-1 Rating: important References: * bsc#1263804 * bsc#1265172 * bsc#1265173 * bsc#1265174 * bsc#1265175 * bsc#1265177 * bsc#1265178 * bsc#1265179 * bsc#1265181 Cross-References: * CVE-2026-6472 * CVE-2026-6473 * CVE-2026-6474 * CVE-2026-6475 * CVE-2026-6477 * CVE-2026-6478 * CVE-2026-6479 * CVE-2026-6637 CVSS scores: * CVE-2026-6472 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6473 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6474 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6475 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6478 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6479 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6637 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 8 vulnerabilities and has 9 bug fixes can now be installed. Description: This update for postgresql14 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). - CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). - CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). - CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). - CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). - CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). - CVE-2026-6479: Preventunbounded recursion while processing startup packets (bsc#1265179). - CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). Non security issue: - Update to version 14.23. - Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14823). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-967=1 Package List: - openSUSE Leap 16.0: postgresql14-14.23-160000.1.1 postgresql14-contrib-14.23-160000.1.1 postgresql14-devel-14.23-160000.1.1 postgresql14-docs-14.23-160000.1.1 postgresql14-llvmjit-14.23-160000.1.1 postgresql14-llvmjit-devel-14.23-160000.1.1 postgresql14-plperl-14.23-160000.1.1 postgresql14-plpython-14.23-160000.1.1 postgresql14-pltcl-14.23-160000.1.1 postgresql14-server-14.23-160000.1.1 postgresql14-server-devel-14.23-160000.1.1 postgresql14-test-14.23-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-6472.html * https://www.suse.com/security/cve/CVE-2026-6473.html * https://www.suse.com/security/cve/CVE-2026-6474.html * https://www.suse.com/security/cve/CVE-2026-6475.html * https://www.suse.com/security/cve/CVE-2026-6477.html * https://www.suse.com/security/cve/CVE-2026-6478.html * https://www.suse.com/security/cve/CVE-2026-6479.html * https://www.suse.com/security/cve/CVE-2026-6637.html . This update addresses eight security issues in PostgreSQL 14, enhancing stability and user privilege protections.. PostgreSQL Update, openSUSE Vulnerabilities, Security Fixes, Important Updates, Software Patching. . Severity: Important. LinuxSecurity.com Team
An update that solves eight vulnerabilities, contains one feature and has one fix can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:22177-1 Release Date: 2026-06-19T16:51:39Z Rating: important References: * bsc#1263804 * bsc#1265172 * bsc#1265173 * bsc#1265174 * bsc#1265175 * bsc#1265177 * bsc#1265178 * bsc#1265179 * bsc#1265181 * jsc#PED-14823 Cross-References: * CVE-2026-6472 * CVE-2026-6473 * CVE-2026-6474 * CVE-2026-6475 * CVE-2026-6477 * CVE-2026-6478 * CVE-2026-6479 * CVE-2026-6637 CVSS scores: * CVE-2026-6472 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6472 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6473 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6473 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6474 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6474 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6475 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6475 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6478 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6478 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6479 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6479 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6637 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6637 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves eight vulnerabilities, contains one feature and hasone fix can now be installed. ## Description: This update for postgresql14 fixes the following issues Security issues: * CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). * CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). * CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). * CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). * CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). * CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). * CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). * CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). Non security issue: * Update to version 14.23. * Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14823). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-967=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-967=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * postgresql14-plperl-debuginfo-14.23-160000.1.1 * postgresql14-contrib-14.23-160000.1.1 * postgresql14-server-devel-14.23-160000.1.1 * postgresql14-server-devel-debuginfo-14.23-160000.1.1 * postgresql14-devel-debuginfo-14.23-160000.1.1 * postgresql14-server-14.23-160000.1.1 * postgresql14-contrib-debuginfo-14.23-160000.1.1 * postgresql14-14.23-160000.1.1 * postgresql14-plpython-14.23-160000.1.1 * postgresql14-plpython-debuginfo-14.23-160000.1.1 *postgresql14-pltcl-14.23-160000.1.1 * postgresql14-plperl-14.23-160000.1.1 * postgresql14-server-debuginfo-14.23-160000.1.1 * postgresql14-devel-14.23-160000.1.1 * postgresql14-pltcl-debuginfo-14.23-160000.1.1 * postgresql14-debuginfo-14.23-160000.1.1 * postgresql14-debugsource-14.23-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * postgresql14-docs-14.23-160000.1.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * postgresql14-plperl-debuginfo-14.23-160000.1.1 * postgresql14-contrib-14.23-160000.1.1 * postgresql14-server-devel-14.23-160000.1.1 * postgresql14-server-devel-debuginfo-14.23-160000.1.1 * postgresql14-devel-debuginfo-14.23-160000.1.1 * postgresql14-server-14.23-160000.1.1 * postgresql14-contrib-debuginfo-14.23-160000.1.1 * postgresql14-14.23-160000.1.1 * postgresql14-plpython-14.23-160000.1.1 * postgresql14-plpython-debuginfo-14.23-160000.1.1 * postgresql14-pltcl-14.23-160000.1.1 * postgresql14-plperl-14.23-160000.1.1 * postgresql14-server-debuginfo-14.23-160000.1.1 * postgresql14-devel-14.23-160000.1.1 * postgresql14-pltcl-debuginfo-14.23-160000.1.1 * postgresql14-debuginfo-14.23-160000.1.1 * postgresql14-debugsource-14.23-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * postgresql14-docs-14.23-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6472.html * https://www.suse.com/security/cve/CVE-2026-6473.html * https://www.suse.com/security/cve/CVE-2026-6474.html * https://www.suse.com/security/cve/CVE-2026-6475.html * https://www.suse.com/security/cve/CVE-2026-6477.html * https://www.suse.com/security/cve/CVE-2026-6478.html * https://www.suse.com/security/cve/CVE-2026-6479.html * https://www.suse.com/security/cve/CVE-2026-6637.html * https://bugzilla.suse.com/show_bug.cgi?id=1263804 * https://bugzilla.suse.com/show_bug.cgi?id=1265172 * https://bugzilla.suse.com/show_bug.cgi?id=1265173 *https://bugzilla.suse.com/show_bug.cgi?id=1265174 * https://bugzilla.suse.com/show_bug.cgi?id=1265175 * https://bugzilla.suse.com/show_bug.cgi?id=1265177 * https://bugzilla.suse.com/show_bug.cgi?id=1265178 * https://bugzilla.suse.com/show_bug.cgi?id=1265179 * https://bugzilla.suse.com/show_bug.cgi?id=1265181 * https://jira.suse.com/browse/PED-14823 . Eight vulnerabilities in postgresql14 addressed in important SUSE update. Security fixes include preventing path traversal.. SUSE PostgreSQL Security Update, SUSE Vulnerability Management, PostgreSQL Security Fix, SUSE Linux Patch. . Severity: Important. LinuxSecurity.com Team
An update that solves eight vulnerabilities, contains one feature and has one security fix can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:2117-1 Release Date: 2026-05-29T15:30:06Z Rating: important References: * bsc#1263804 * bsc#1265172 * bsc#1265173 * bsc#1265174 * bsc#1265175 * bsc#1265177 * bsc#1265178 * bsc#1265179 * bsc#1265181 * jsc#PED-14823 Cross-References: * CVE-2026-6472 * CVE-2026-6473 * CVE-2026-6474 * CVE-2026-6475 * CVE-2026-6477 * CVE-2026-6478 * CVE-2026-6479 * CVE-2026-6637 CVSS scores: * CVE-2026-6472 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6472 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6473 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6473 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6474 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6474 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6475 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6475 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6478 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6478 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6479 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6479 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6637 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6637 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 *SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves eight vulnerabilities, contains one feature and has one security fix can now be installed. ## Description: This update for postgresql14 fixes the following issues Update to version 14.23. Security issues: * CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). * CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). * CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). * CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). * CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). * CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). * CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). * CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). Non security issue: \- Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14823). \- /usr/bin/pg_config is missing after migrating away from update-alternatives (bsc#1263804). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2117=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2026-2117=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2117=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patchSUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2117=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2117=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql14-llvmjit-devel-14.23-150600.16.31.1 * postgresql14-debuginfo-14.23-150600.16.31.1 * postgresql14-pltcl-14.23-150600.16.31.1 * postgresql14-contrib-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-14.23-150600.16.31.1 * postgresql14-server-devel-14.23-150600.16.31.1 * postgresql14-llvmjit-debuginfo-14.23-150600.16.31.1 * postgresql14-debugsource-14.23-150600.16.31.1 * postgresql14-plperl-debuginfo-14.23-150600.16.31.1 * postgresql14-14.23-150600.16.31.1 * postgresql14-test-14.23-150600.16.31.1 * postgresql14-server-debuginfo-14.23-150600.16.31.1 * postgresql14-plpython-14.23-150600.16.31.1 * postgresql14-pltcl-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-14.23-150600.16.31.1 * postgresql14-server-14.23-150600.16.31.1 * postgresql14-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-devel-14.23-150600.16.31.1 * postgresql14-plpython-debuginfo-14.23-150600.16.31.1 * postgresql14-server-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-llvmjit-14.23-150600.16.31.1 * openSUSE Leap 15.6 (noarch) * postgresql14-docs-14.23-150600.16.31.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-14.23-150600.16.31.1 * postgresql14-debuginfo-14.23-150600.16.31.1 * postgresql14-server-14.23-150600.16.31.1 * postgresql14-server-debuginfo-14.23-150600.16.31.1 * postgresql14-server-devel-14.23-150600.16.31.1 * postgresql14-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-plpython-14.23-150600.16.31.1 * postgresql14-pltcl-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-14.23-150600.16.31.1 * postgresql14-server-devel-debuginfo-14.23-150600.16.31.1 *postgresql14-debugsource-14.23-150600.16.31.1 * postgresql14-devel-14.23-150600.16.31.1 * postgresql14-pltcl-14.23-150600.16.31.1 * postgresql14-contrib-debuginfo-14.23-150600.16.31.1 * postgresql14-plpython-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-14.23-150600.16.31.1 * Legacy Module 15-SP7 (noarch) * postgresql14-docs-14.23-150600.16.31.1 * Legacy Module 15-SP7 (ppc64le s390x x86_64) * postgresql14-test-14.23-150600.16.31.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-test-14.23-150600.16.31.1 * postgresql14-debuginfo-14.23-150600.16.31.1 * postgresql14-llvmjit-debuginfo-14.23-150600.16.31.1 * postgresql14-debugsource-14.23-150600.16.31.1 * postgresql14-llvmjit-14.23-150600.16.31.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * postgresql14-14.23-150600.16.31.1 * postgresql14-debuginfo-14.23-150600.16.31.1 * postgresql14-server-14.23-150600.16.31.1 * postgresql14-server-debuginfo-14.23-150600.16.31.1 * postgresql14-server-devel-14.23-150600.16.31.1 * postgresql14-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-plpython-14.23-150600.16.31.1 * postgresql14-pltcl-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-14.23-150600.16.31.1 * postgresql14-server-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-debuginfo-14.23-150600.16.31.1 * postgresql14-debugsource-14.23-150600.16.31.1 * postgresql14-devel-14.23-150600.16.31.1 * postgresql14-pltcl-14.23-150600.16.31.1 * postgresql14-plpython-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-14.23-150600.16.31.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * postgresql14-docs-14.23-150600.16.31.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * postgresql14-14.23-150600.16.31.1 *postgresql14-debuginfo-14.23-150600.16.31.1 * postgresql14-server-14.23-150600.16.31.1 * postgresql14-server-debuginfo-14.23-150600.16.31.1 * postgresql14-server-devel-14.23-150600.16.31.1 * postgresql14-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-plpython-14.23-150600.16.31.1 * postgresql14-pltcl-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-14.23-150600.16.31.1 * postgresql14-server-devel-debuginfo-14.23-150600.16.31.1 * postgresql14-plperl-debuginfo-14.23-150600.16.31.1 * postgresql14-debugsource-14.23-150600.16.31.1 * postgresql14-devel-14.23-150600.16.31.1 * postgresql14-pltcl-14.23-150600.16.31.1 * postgresql14-plpython-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-debuginfo-14.23-150600.16.31.1 * postgresql14-contrib-14.23-150600.16.31.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * postgresql14-docs-14.23-150600.16.31.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6472.html * https://www.suse.com/security/cve/CVE-2026-6473.html * https://www.suse.com/security/cve/CVE-2026-6474.html * https://www.suse.com/security/cve/CVE-2026-6475.html * https://www.suse.com/security/cve/CVE-2026-6477.html * https://www.suse.com/security/cve/CVE-2026-6478.html * https://www.suse.com/security/cve/CVE-2026-6479.html * https://www.suse.com/security/cve/CVE-2026-6637.html * https://bugzilla.suse.com/show_bug.cgi?id=1263804 * https://bugzilla.suse.com/show_bug.cgi?id=1265172 * https://bugzilla.suse.com/show_bug.cgi?id=1265173 * https://bugzilla.suse.com/show_bug.cgi?id=1265174 * https://bugzilla.suse.com/show_bug.cgi?id=1265175 * https://bugzilla.suse.com/show_bug.cgi?id=1265177 * https://bugzilla.suse.com/show_bug.cgi?id=1265178 * https://bugzilla.suse.com/show_bug.cgi?id=1265179 * https://bugzilla.suse.com/show_bug.cgi?id=1265181 * https://jira.suse.com/browse/PED-14823 . Important update for openSUSE PostgreSQL14 addresses eight vulnerabilities, includingSQL injection fixes. Install now!. openSUSE security patch, important vulnerabilities, SQL injection fix, postgresql14 update, Linux security advisory. . Severity: Important. LinuxSecurity.com Team
An update that solves 8 vulnerabilities can now be installed.. # postgresql14-14.23-1.1 on GA media Announcement ID: openSUSE-SU-2026:10806-1 Rating: moderate Cross-References: * CVE-2026-6472 * CVE-2026-6473 * CVE-2026-6474 * CVE-2026-6475 * CVE-2026-6477 * CVE-2026-6478 * CVE-2026-6479 * CVE-2026-6637 CVSS scores: * CVE-2026-6472 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6473 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6474 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6475 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6478 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6479 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6637 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Tumbleweed An update that solves 8 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the postgresql14-14.23-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * postgresql14 14.23-1.1 * postgresql14-contrib 14.23-1.1 * postgresql14-devel 14.23-1.1 * postgresql14-docs 14.23-1.1 * postgresql14-llvmjit 14.23-1.1 * postgresql14-llvmjit-devel 14.23-1.1 * postgresql14-plperl 14.23-1.1 * postgresql14-plpython 14.23-1.1 * postgresql14-pltcl 14.23-1.1 * postgresql14-server 14.23-1.1 * postgresql14-server-devel 14.23-1.1 * postgresql14-test 14.23-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6472.html * https://www.suse.com/security/cve/CVE-2026-6473.html * https://www.suse.com/security/cve/CVE-2026-6474.html * https://www.suse.com/security/cve/CVE-2026-6475.html * https://www.suse.com/security/cve/CVE-2026-6477.html * https://www.suse.com/security/cve/CVE-2026-6478.html *https://www.suse.com/security/cve/CVE-2026-6479.html * https://www.suse.com/security/cve/CVE-2026-6637.html . Update for openSUSE addresses eight vulnerabilities in postgresql14, ensuring system integrity and security enhancements.. openSUSE Tumbleweed, PostgreSQL 14, Unix vulnerabilities, database security. . LinuxSecurity.com Team
An update that solves eight vulnerabilities, contains one feature and has one security fix can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:2007-1 Release Date: 2026-05-19T11:09:18Z Rating: important References: * bsc#1263804 * bsc#1265172 * bsc#1265173 * bsc#1265174 * bsc#1265175 * bsc#1265177 * bsc#1265178 * bsc#1265179 * bsc#1265181 * jsc#PED-14823 Cross-References: * CVE-2026-6472 * CVE-2026-6473 * CVE-2026-6474 * CVE-2026-6475 * CVE-2026-6477 * CVE-2026-6478 * CVE-2026-6479 * CVE-2026-6637 CVSS scores: * CVE-2026-6472 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6472 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6473 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6473 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6474 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6474 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-6475 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6475 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6477 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-6478 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6478 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-6479 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6479 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6637 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-6637 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High PerformanceComputing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves eight vulnerabilities, contains one feature and has one security fix can now be installed. ## Description: This update for postgresql14 fixes the following issues Update to version 14.23. Security issues: * CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). * CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). * CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). * CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). * CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). * CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). * CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). * CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). Non security issue: \- Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14823). \- /usr/bin/pg_config is missing after migrating away from update-alternatives (bsc#1263804). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2007=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2007=1 * SUSE Linux Enterprise Server 15 SP4LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2007=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2007=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2007=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2007=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * postgresql14-docs-14.23-150200.5.72.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-llvmjit-devel-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-llvmjit-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-llvmjit-14.23-150200.5.72.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * postgresql14-docs-14.23-150200.5.72.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * postgresql14-docs-14.23-150200.5.72.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * postgresql14-docs-14.23-150200.5.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * postgresql14-docs-14.23-150200.5.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * postgresql14-server-14.23-150200.5.72.1 * postgresql14-server-devel-debuginfo-14.23-150200.5.72.1 *postgresql14-server-devel-14.23-150200.5.72.1 * postgresql14-plperl-14.23-150200.5.72.1 * postgresql14-plperl-debuginfo-14.23-150200.5.72.1 * postgresql14-14.23-150200.5.72.1 * postgresql14-debuginfo-14.23-150200.5.72.1 * postgresql14-llvmjit-devel-14.23-150200.5.72.1 * postgresql14-contrib-debuginfo-14.23-150200.5.72.1 * postgresql14-devel-14.23-150200.5.72.1 * postgresql14-contrib-14.23-150200.5.72.1 * postgresql14-plpython-14.23-150200.5.72.1 * postgresql14-llvmjit-debuginfo-14.23-150200.5.72.1 * postgresql14-pltcl-14.23-150200.5.72.1 * postgresql14-pltcl-debuginfo-14.23-150200.5.72.1 * postgresql14-plpython-debuginfo-14.23-150200.5.72.1 * postgresql14-server-debuginfo-14.23-150200.5.72.1 * postgresql14-debugsource-14.23-150200.5.72.1 * postgresql14-devel-debuginfo-14.23-150200.5.72.1 * postgresql14-llvmjit-14.23-150200.5.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * postgresql14-docs-14.23-150200.5.72.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6472.html * https://www.suse.com/security/cve/CVE-2026-6473.html * https://www.suse.com/security/cve/CVE-2026-6474.html * https://www.suse.com/security/cve/CVE-2026-6475.html * https://www.suse.com/security/cve/CVE-2026-6477.html * https://www.suse.com/security/cve/CVE-2026-6478.html * https://www.suse.com/security/cve/CVE-2026-6479.html * https://www.suse.com/security/cve/CVE-2026-6637.html * https://bugzilla.suse.com/show_bug.cgi?id=1263804 * https://bugzilla.suse.com/show_bug.cgi?id=1265172 * https://bugzilla.suse.com/show_bug.cgi?id=1265173 * https://bugzilla.suse.com/show_bug.cgi?id=1265174 * https://bugzilla.suse.com/show_bug.cgi?id=1265175 * https://bugzilla.suse.com/show_bug.cgi?id=1265177 * https://bugzilla.suse.com/show_bug.cgi?id=1265178 * https://bugzilla.suse.com/show_bug.cgi?id=1265179 * https://bugzilla.suse.com/show_bug.cgi?id=1265181 * https://jira.suse.com/browse/PED-14823 . Critical updatefor SUSE PostgreSQL 14 fixing eight vulnerabilities including buffer overflows and SQL injection.. SUSE PostgreSQL Security Update, Important Vulnerability fixes, PostgreSQL Security Advisory. . Severity: Important. LinuxSecurity.com Team
An update that solves six vulnerabilities can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:20587-1 Release Date: 2026-02-20T16:14:27Z Rating: important References: * bsc#1253332 * bsc#1253333 * bsc#1258008 * bsc#1258009 * bsc#1258010 * bsc#1258011 Cross-References: * CVE-2025-12817 * CVE-2025-12818 * CVE-2026-2003 * CVE-2026-2004 * CVE-2026-2005 * CVE-2026-2006 CVSS scores: * CVE-2025-12817 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-12817 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-12817 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-12818 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-12818 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-12818 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-2003 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2003 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2004 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2004 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for postgresql14 fixes the following issues: Update to version 14.21. Security issues fixed: * CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory (bsc#1258008). *CVE-2026-2004: intarray missing validation of type of input to selectivity estimator could lead to arbitrary code execution (bsc#1258009). * CVE-2026-2005: buffer overrun in contrib/pgcrypto's PGP decryption functions could lead to arbitrary code execution (bsc#1258010). * CVE-2026-2006: inadequate validation of multibyte character lengths could lead to arbitrary code execution (bsc#1258011). * CVE-2025-12817: missing check for CREATE privileges on the schema in CREATE STATISTICS (bsc#1253332). * CVE-2025-12818: integer overflow in allocation-size calculations within libpq (bsc#1253333). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-307=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-307=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * postgresql14-contrib-debuginfo-14.21-160000.1.1 * postgresql14-debuginfo-14.21-160000.1.1 * postgresql14-devel-debuginfo-14.21-160000.1.1 * postgresql14-plperl-debuginfo-14.21-160000.1.1 * postgresql14-pltcl-14.21-160000.1.1 * postgresql14-server-devel-debuginfo-14.21-160000.1.1 * postgresql14-server-debuginfo-14.21-160000.1.1 * postgresql14-server-devel-14.21-160000.1.1 * postgresql14-server-14.21-160000.1.1 * postgresql14-contrib-14.21-160000.1.1 * postgresql14-debugsource-14.21-160000.1.1 * postgresql14-14.21-160000.1.1 * postgresql14-pltcl-debuginfo-14.21-160000.1.1 * postgresql14-plpython-14.21-160000.1.1 * postgresql14-plperl-14.21-160000.1.1 * postgresql14-devel-14.21-160000.1.1 * postgresql14-plpython-debuginfo-14.21-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * postgresql14-docs-14.21-160000.1.1 * SUSE Linux Enterprise Serverfor SAP Applications 16.0 (ppc64le x86_64) * postgresql14-contrib-debuginfo-14.21-160000.1.1 * postgresql14-debuginfo-14.21-160000.1.1 * postgresql14-devel-debuginfo-14.21-160000.1.1 * postgresql14-plperl-debuginfo-14.21-160000.1.1 * postgresql14-pltcl-14.21-160000.1.1 * postgresql14-server-devel-debuginfo-14.21-160000.1.1 * postgresql14-server-debuginfo-14.21-160000.1.1 * postgresql14-server-devel-14.21-160000.1.1 * postgresql14-server-14.21-160000.1.1 * postgresql14-contrib-14.21-160000.1.1 * postgresql14-debugsource-14.21-160000.1.1 * postgresql14-14.21-160000.1.1 * postgresql14-pltcl-debuginfo-14.21-160000.1.1 * postgresql14-plpython-14.21-160000.1.1 * postgresql14-plperl-14.21-160000.1.1 * postgresql14-devel-14.21-160000.1.1 * postgresql14-plpython-debuginfo-14.21-160000.1.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch) * postgresql14-docs-14.21-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12817.html * https://www.suse.com/security/cve/CVE-2025-12818.html * https://www.suse.com/security/cve/CVE-2026-2003.html * https://www.suse.com/security/cve/CVE-2026-2004.html * https://www.suse.com/security/cve/CVE-2026-2005.html * https://www.suse.com/security/cve/CVE-2026-2006.html * https://bugzilla.suse.com/show_bug.cgi?id=1253332 * https://bugzilla.suse.com/show_bug.cgi?id=1253333 * https://bugzilla.suse.com/show_bug.cgi?id=1258008 * https://bugzilla.suse.com/show_bug.cgi?id=1258009 * https://bugzilla.suse.com/show_bug.cgi?id=1258010 * https://bugzilla.suse.com/show_bug.cgi?id=1258011 . Update for postgresql14 addresses important issues including six vulnerabilities and multiple risks. Install now!. postgresql14 update, SUSE important advisory, code execution issues. . Severity: Important. LinuxSecurity.com Team
An update that solves four vulnerabilities and has one security fix can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:0768-1 Release Date: 2026-03-03T13:10:06Z Rating: important References: * bsc#1258008 * bsc#1258009 * bsc#1258010 * bsc#1258011 * bsc#1258754 Cross-References: * CVE-2026-2003 * CVE-2026-2004 * CVE-2026-2005 * CVE-2026-2006 CVSS scores: * CVE-2026-2003 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2003 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2004 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2004 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves four vulnerabilities and has one security fix can now be installed. ## Description: This update for postgresql14 fixes the following issues: Update to version 14.22 (bsc#1258754). Security issues fixed: * CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory (bsc#1258008). * CVE-2026-2004: intarray missing validation of type of input to selectivity estimator could lead to arbitrary codeexecution (bsc#1258009). * CVE-2026-2005: buffer overrun in contrib/pgcrypto's PGP decryption functions could lead to arbitrary code execution (bsc#1258010). * CVE-2026-2006: inadequate validation of multibyte character lengths could lead to arbitrary code execution (bsc#1258011). Regression fixes: * the substring() function raises an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column (caused by CVE-2026-2006 fix). * a standby may halt and return an error "could not access status of transaction". ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-768=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-768=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-768=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-768=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-768=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-768=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 * postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 *postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * postgresql14-docs-14.22-150200.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 * postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 * postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * postgresql14-docs-14.22-150200.5.69.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 * postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 *postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 * postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * postgresql14-docs-14.22-150200.5.69.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 * postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-llvmjit-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 * postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-llvmjit-debuginfo-14.22-150200.5.69.1 * postgresql14-llvmjit-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * postgresql14-docs-14.22-150200.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 *postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 * postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * postgresql14-docs-14.22-150200.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * postgresql14-pltcl-14.22-150200.5.69.1 * postgresql14-contrib-14.22-150200.5.69.1 * postgresql14-llvmjit-14.22-150200.5.69.1 * postgresql14-plpython-14.22-150200.5.69.1 * postgresql14-server-debuginfo-14.22-150200.5.69.1 * postgresql14-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-14.22-150200.5.69.1 * postgresql14-pltcl-debuginfo-14.22-150200.5.69.1 * postgresql14-contrib-debuginfo-14.22-150200.5.69.1 * postgresql14-plpython-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-14.22-150200.5.69.1 * postgresql14-llvmjit-debuginfo-14.22-150200.5.69.1 * postgresql14-llvmjit-devel-14.22-150200.5.69.1 * postgresql14-debugsource-14.22-150200.5.69.1 * postgresql14-server-14.22-150200.5.69.1 * postgresql14-plperl-14.22-150200.5.69.1 * postgresql14-plperl-debuginfo-14.22-150200.5.69.1 * postgresql14-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-server-devel-debuginfo-14.22-150200.5.69.1 * postgresql14-14.22-150200.5.69.1 * SUSE LinuxEnterprise Server for SAP Applications 15 SP5 (noarch) * postgresql14-docs-14.22-150200.5.69.1 ## References: * https://www.suse.com/security/cve/CVE-2026-2003.html * https://www.suse.com/security/cve/CVE-2026-2004.html * https://www.suse.com/security/cve/CVE-2026-2005.html * https://www.suse.com/security/cve/CVE-2026-2006.html * https://bugzilla.suse.com/show_bug.cgi?id=1258008 * https://bugzilla.suse.com/show_bug.cgi?id=1258009 * https://bugzilla.suse.com/show_bug.cgi?id=1258010 * https://bugzilla.suse.com/show_bug.cgi?id=1258011 * https://bugzilla.suse.com/show_bug.cgi?id=1258754 . Install critical security fix for postgresql14 vulnerabilities to protect your SUSE environment.. postgresql14 security fix, SUSE security update, important security patch. . Severity: Important. LinuxSecurity.com Team
An update that solves four vulnerabilities and has one security fix can now be installed.. # Security update for postgresql14 Announcement ID: SUSE-SU-2026:0786-1 Release Date: 2026-03-03T14:47:28Z Rating: important References: * bsc#1258008 * bsc#1258009 * bsc#1258010 * bsc#1258011 * bsc#1258754 Cross-References: * CVE-2026-2003 * CVE-2026-2004 * CVE-2026-2005 * CVE-2026-2006 CVSS scores: * CVE-2026-2003 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2003 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2004 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2004 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2005 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-2006 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves four vulnerabilities and has one security fix can now be installed. ## Description: This update for postgresql14 fixes the following issues: Update to version 14.22 (bsc#1258754). Security issues fixed: * CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory (bsc#1258008). * CVE-2026-2004: intarray missing validation of type of input to selectivity estimator could lead to arbitrary code execution (bsc#1258009). * CVE-2026-2005: buffer overrun incontrib/pgcrypto's PGP decryption functions could lead to arbitrary code execution (bsc#1258010). * CVE-2026-2006: inadequate validation of multibyte character lengths could lead to arbitrary code execution (bsc#1258011). Regression fixes: * the substring() function raises an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column (caused by CVE-2026-2006 fix). * a standby may halt and return an error "could not access status of transaction". ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-786=1 openSUSE-SLE-15.6-2026-786=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2026-786=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-786=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-786=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-786=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * postgresql14-llvmjit-debuginfo-14.22-150600.16.28.1 * postgresql14-plpython-debuginfo-14.22-150600.16.28.1 * postgresql14-pltcl-14.22-150600.16.28.1 * postgresql14-test-14.22-150600.16.28.1 * postgresql14-14.22-150600.16.28.1 * postgresql14-contrib-debuginfo-14.22-150600.16.28.1 * postgresql14-plperl-debuginfo-14.22-150600.16.28.1 * postgresql14-pltcl-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-14.22-150600.16.28.1 * postgresql14-debugsource-14.22-150600.16.28.1 * postgresql14-debuginfo-14.22-150600.16.28.1 * postgresql14-server-14.22-150600.16.28.1 *postgresql14-server-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-contrib-14.22-150600.16.28.1 * postgresql14-server-debuginfo-14.22-150600.16.28.1 * postgresql14-server-devel-14.22-150600.16.28.1 * postgresql14-llvmjit-14.22-150600.16.28.1 * postgresql14-plpython-14.22-150600.16.28.1 * postgresql14-plperl-14.22-150600.16.28.1 * postgresql14-llvmjit-devel-14.22-150600.16.28.1 * openSUSE Leap 15.6 (noarch) * postgresql14-docs-14.22-150600.16.28.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-contrib-debuginfo-14.22-150600.16.28.1 * postgresql14-plperl-debuginfo-14.22-150600.16.28.1 * postgresql14-plpython-14.22-150600.16.28.1 * postgresql14-pltcl-debuginfo-14.22-150600.16.28.1 * postgresql14-debuginfo-14.22-150600.16.28.1 * postgresql14-server-14.22-150600.16.28.1 * postgresql14-server-devel-14.22-150600.16.28.1 * postgresql14-plperl-14.22-150600.16.28.1 * postgresql14-plpython-debuginfo-14.22-150600.16.28.1 * postgresql14-pltcl-14.22-150600.16.28.1 * postgresql14-server-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-14.22-150600.16.28.1 * postgresql14-contrib-14.22-150600.16.28.1 * postgresql14-server-debuginfo-14.22-150600.16.28.1 * postgresql14-debugsource-14.22-150600.16.28.1 * postgresql14-14.22-150600.16.28.1 * Legacy Module 15-SP7 (noarch) * postgresql14-docs-14.22-150600.16.28.1 * Legacy Module 15-SP7 (ppc64le s390x x86_64) * postgresql14-test-14.22-150600.16.28.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * postgresql14-debuginfo-14.22-150600.16.28.1 * postgresql14-llvmjit-debuginfo-14.22-150600.16.28.1 * postgresql14-test-14.22-150600.16.28.1 * postgresql14-debugsource-14.22-150600.16.28.1 * postgresql14-llvmjit-14.22-150600.16.28.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) *postgresql14-contrib-debuginfo-14.22-150600.16.28.1 * postgresql14-plperl-debuginfo-14.22-150600.16.28.1 * postgresql14-plpython-14.22-150600.16.28.1 * postgresql14-pltcl-debuginfo-14.22-150600.16.28.1 * postgresql14-debuginfo-14.22-150600.16.28.1 * postgresql14-server-14.22-150600.16.28.1 * postgresql14-server-devel-14.22-150600.16.28.1 * postgresql14-plperl-14.22-150600.16.28.1 * postgresql14-plpython-debuginfo-14.22-150600.16.28.1 * postgresql14-pltcl-14.22-150600.16.28.1 * postgresql14-server-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-14.22-150600.16.28.1 * postgresql14-contrib-14.22-150600.16.28.1 * postgresql14-server-debuginfo-14.22-150600.16.28.1 * postgresql14-debugsource-14.22-150600.16.28.1 * postgresql14-14.22-150600.16.28.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * postgresql14-docs-14.22-150600.16.28.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * postgresql14-contrib-debuginfo-14.22-150600.16.28.1 * postgresql14-plperl-debuginfo-14.22-150600.16.28.1 * postgresql14-plpython-14.22-150600.16.28.1 * postgresql14-pltcl-debuginfo-14.22-150600.16.28.1 * postgresql14-debuginfo-14.22-150600.16.28.1 * postgresql14-server-14.22-150600.16.28.1 * postgresql14-server-devel-14.22-150600.16.28.1 * postgresql14-plperl-14.22-150600.16.28.1 * postgresql14-plpython-debuginfo-14.22-150600.16.28.1 * postgresql14-pltcl-14.22-150600.16.28.1 * postgresql14-server-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-debuginfo-14.22-150600.16.28.1 * postgresql14-devel-14.22-150600.16.28.1 * postgresql14-contrib-14.22-150600.16.28.1 * postgresql14-server-debuginfo-14.22-150600.16.28.1 * postgresql14-debugsource-14.22-150600.16.28.1 * postgresql14-14.22-150600.16.28.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) *postgresql14-docs-14.22-150600.16.28.1 ## References: * https://www.suse.com/security/cve/CVE-2026-2003.html * https://www.suse.com/security/cve/CVE-2026-2004.html * https://www.suse.com/security/cve/CVE-2026-2005.html * https://www.suse.com/security/cve/CVE-2026-2006.html * https://bugzilla.suse.com/show_bug.cgi?id=1258008 * https://bugzilla.suse.com/show_bug.cgi?id=1258009 * https://bugzilla.suse.com/show_bug.cgi?id=1258010 * https://bugzilla.suse.com/show_bug.cgi?id=1258011 * https://bugzilla.suse.com/show_bug.cgi?id=1258754 . Update for postgresql14 fixes multiple issues including buffer overflow vulnerabilities with important ratings.. Postgresql14 vulnerabilities, SUSE security update, data protection, linux security patches. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.