Stay Secure with the Latest Linux Advisories

security advisoryimportantPostgreSQL

Rocky Linux 9 RLSA-2025:1741 important: PostgreSQL quoting issue

Important: postgresql:15 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:1741", "synopsis": "Important: postgresql:15 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for module.pgaudit, module.postgres-decoderbufs, postgres-decoderbufs, pgaudit.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PostgreSQL is an advanced object-relational database management system (DBMS).\n\nSecurity Fix(es):\n\n* postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation (CVE-2025-1094)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2345548", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2345548", "description": ""}], "cves": [{"name": "CVE-2025-1094", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-1094", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2025-02-26T19:11:14.796455Z", "rpms": {"Rocky Linux 9": {"nvras": ["pgaudit-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "pgaudit-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "pgaudit-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.s390x.rpm", "pgaudit-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.src.rpm", "pgaudit-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.x86_64.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.s390x.rpm", "pgaudit-debuginfo-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.x86_64.rpm","pgaudit-debugsource-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.s390x.rpm", "pgaudit-debugsource-0:1.7.0-1.module+el9.4.0+25512+c6b50a48.x86_64.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.s390x.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.src.rpm", "postgres-decoderbufs-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.x86_64.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.s390x.rpm", "postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.x86_64.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.aarch64.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.ppc64le.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.s390x.rpm", "postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.4.0+25512+c6b50a48.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. The recent MySQL release for Fedora tackles critical escaping problems and fortifies protection protocols.. PostgreSQL Update, Rocky Linux Security, Database Management, Security Fixes. . Severity: Important. LinuxSecurity.com Team

Feb 26, 2025 •Important Rocky Linux