Moderate: libpq security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:0458", "synopsis": "Moderate: libpq security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for libpq.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. \n\nSecurity Fix(es):\n\n* postgresql: libpq undersizes allocations, via integer wraparound (CVE-2025-12818)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2414826", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2414826", "description": ""}], "cves": [{"name": "CVE-2025-12818", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-12818", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}], "references": [], "publishedAt": "2026-01-14T09:11:53.425821Z", "rpms": {"Rocky Linux 9": {"nvras": ["libpq-0:13.23-1.el9_7.aarch64.rpm", "libpq-0:13.23-1.el9_7.i686.rpm", "libpq-0:13.23-1.el9_7.ppc64le.rpm", "libpq-0:13.23-1.el9_7.s390x.rpm", "libpq-0:13.23-1.el9_7.src.rpm", "libpq-0:13.23-1.el9_7.x86_64.rpm", "libpq-debuginfo-0:13.23-1.el9_7.aarch64.rpm", "libpq-debuginfo-0:13.23-1.el9_7.i686.rpm", "libpq-debuginfo-0:13.23-1.el9_7.ppc64le.rpm", "libpq-debuginfo-0:13.23-1.el9_7.s390x.rpm", "libpq-debuginfo-0:13.23-1.el9_7.x86_64.rpm", "libpq-debugsource-0:13.23-1.el9_7.aarch64.rpm", "libpq-debugsource-0:13.23-1.el9_7.i686.rpm", "libpq-debugsource-0:13.23-1.el9_7.ppc64le.rpm", "libpq-debugsource-0:13.23-1.el9_7.s390x.rpm","libpq-debugsource-0:13.23-1.el9_7.x86_64.rpm", "libpq-devel-0:13.23-1.el9_7.aarch64.rpm", "libpq-devel-0:13.23-1.el9_7.i686.rpm", "libpq-devel-0:13.23-1.el9_7.ppc64le.rpm", "libpq-devel-0:13.23-1.el9_7.s390x.rpm", "libpq-devel-0:13.23-1.el9_7.x86_64.rpm", "libpq-devel-debuginfo-0:13.23-1.el9_7.aarch64.rpm", "libpq-devel-debuginfo-0:13.23-1.el9_7.i686.rpm", "libpq-devel-debuginfo-0:13.23-1.el9_7.ppc64le.rpm", "libpq-devel-debuginfo-0:13.23-1.el9_7.s390x.rpm", "libpq-devel-debuginfo-0:13.23-1.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate libpq security update available for Rocky Linux 9 addresses a critical issue affecting PostgreSQL connections.. libpq security update, Rocky Linux, PostgreSQL client, security advisory. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.