[security - high] postgresql:16 security update
エラータID: AXSA:2026-326:01
Release date:
Tuesday, March 17, 2026 - 20:35
Subject:
[security - high] postgresql:16 security update
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code (CVE-2026-2006)
* postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code (CVE-2026-2004)
* postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code (CVE-2026-2005)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2004
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2005
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Modularity name: "postgresql"
Stream name: "16"
Solution:
Update packages.
CVEs:
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2004
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2005
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
CVE-2026-2006
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Additional Info:
N/A
Download:
SRPMS
- pgaudit-16.0-1.module+el9+1134+9ff9d679.src.rpm
MD5: 96fe989625c979f14794d6ce38369425
SHA-256: fef88a7e3830a3b535fa67ec8d26c6a13489af2abc37a05df3a5aac7c87a27b4
Size: 52.79 kB - pg_repack-1.5.1-1.module+el9+1134+9ff9d679.src.rpm
MD5: 1f357a30384d5708ff3a0653f26b1dd1
SHA-256: 13de378eaa2d62afd4c2edb4b1c5188d206037a4a28c00abe47c1fe6ae9006b4
Size: 105.44 kB - pgvector-0.6.2-2.module+el9+1134+9ff9d679.src.rpm
MD5: c8b5d70e65e97f29904f14b500408d67
SHA-256: c01549b1402aa0b8421d5264954ecda712f6761f1e9b828280027eccdc0b0b44
Size: 87.64 kB - postgis-3.5.3-3.module+el9+1134+9ff9d679.src.rpm
MD5: ed088165817dc781210d21b800e8b626
SHA-256: 7377b583d82b610a0c6199695651d265f733b8fb4798008beb09d47564828072
Size: 19.04 MB - postgres-decoderbufs-2.4.0-1.Final.module+el9+1134+9ff9d679.src.rpm
MD5: 9f6796ee354c9709f151a569ab5d69f0
SHA-256: b7e7e629c0797d4153ae275db8d46363566cce3c49ade1b0cc0722cf59c0a43d
Size: 21.46 kB - postgresql-16.13-1.module+el9+1134+9ff9d679.src.rpm
MD5: d506abd5a0042d1aa127148a7796677e
SHA-256: e6c71ba1e552b8561ec7ff6dcb5d9fae2f33dd96fe6dc5dd71ae18585acc9124
Size: 46.15 MB
Asianux Server 9 for x86_64
- pgaudit-16.0-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 2a17a60ea17c737a9ffcbd38b49b863c
SHA-256: 1264cfde139448eedbfd8ed978bc3de746f82fe72a9606c8be0c991a48f2508f
Size: 27.65 kB - pgaudit-debugsource-16.0-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 5db6078048308fca1e3643b44148eaf5
SHA-256: f5572d07d5ea0be6373d1cb182d157924ca2f409465dc4c26775615f49d2904f
Size: 22.85 kB - pg_repack-1.5.1-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 9a4c455b198ed89bc13127be2b718819
SHA-256: bea43fa95842e950af89db50b9fa378977a43f6e6ceb4b7b92e0cb5e5def686c
Size: 91.83 kB - pg_repack-debugsource-1.5.1-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 2f0d3db6e773195d28fe2b79e6a8b75d
SHA-256: cb5e7189a45477329ec3c392bede72f0d07c1a31022b1116d8047530f174a113
Size: 49.03 kB - pgvector-0.6.2-2.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 7984ce1411768705ec13911009c0080d
SHA-256: 16307ded39078c4c5f254daed17e68767648d5189361b8f1f72f35cc6ed246d1
Size: 80.65 kB - pgvector-debugsource-0.6.2-2.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 50a560b16c6e92d8257a41828a8b064a
SHA-256: 7feaaf8152fc38aae09efdb22bbf7c42a03e49dc8ef352aead441a514fcdf5f6
Size: 54.88 kB - postgis-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 01b691a7f3592a310892369522ab6c0c
SHA-256: bccdddd5ac97e37aa50fb18fe858d63ff3db1eba647ab60595eb82a23c563df1
Size: 2.00 MB - postgis-client-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 205a91c8dfa2ff66f3933d39a9ef05c9
SHA-256: bc4d33e2408401730fdeb7a41ea55a02bbf0089e553f934d670f9735503331d0
Size: 148.53 kB - postgis-debugsource-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: a4d4fa26cd51ee8c65435d91521e5bf8
SHA-256: e4167f293109ce03e3b66f49c3debe6294ed0d63d9e7aea7e4e95c40bbff3426
Size: 1.24 MB - postgis-docs-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 1937486de555aa21708384ab7d118432
SHA-256: 1728489b469ac5f716821d74cfb9a58f49671f09d0a8f7317d45ec0e0917b77c
Size: 4.85 MB - postgis-upgrade-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: f801281230fc11b336cc01d45be78a29
SHA-256: 6c86622ee5c4ef685717c4c60f8b43c8e05693750b14d3179dacb86e7566f72c
Size: 971.92 kB - postgis-utils-3.5.3-3.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 293d017d029dba9798fa1c6f54dbde6d
SHA-256: 5e29a01c3165f2f1030c8426a5b01958dbd963e1b9da3a6841b501bf33b80131
Size: 39.02 kB - postgres-decoderbufs-2.4.0-1.Final.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 18cc646441ed1d48901d41cb10af25da
SHA-256: e63b8ce03f32f71217809fec1be78c6da5ddf9fad3b713a73ba30db533849451
Size: 21.84 kB - postgres-decoderbufs-debugsource-2.4.0-1.Final.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 3b757db7c7c70412fc9f3e715b37d460
SHA-256: 57e503a2053954abc6b4c9f2a57862798820103fb9417c7a32275b64decfa23e
Size: 16.55 kB - postgresql-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 61bfa4b99d34bff85ec48736c5acb577
SHA-256: e9e8e8862e1ab4c2927e3ad8d8bbca46e385e2225c607d400de80059bb2df5a3
Size: 1.94 MB - postgresql-contrib-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 6e0a91debbb77647995dd4a67421cbe9
SHA-256: e11f859f24c9de935bef0ff493677855c379bce7cee0318b7d4b8c9e50fee969
Size: 1.01 MB - postgresql-debugsource-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: b79a050e9d06b0e01327261f2fd35e5c
SHA-256: d264969ae3a81fc34fe53aeb98561e1040ca2225820ccd4098bd731eceb17506
Size: 17.01 MB - postgresql-docs-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 07ab717388d59f34aff4eaecb5798a02
SHA-256: 46dc42c38470abf4acf6103c3eb7e94f20424e7cd076476babb3e552284a0a30
Size: 2.37 MB - postgresql-plperl-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: ba35ae0110ca262b6ffb9075ca17e859
SHA-256: 9129fe6f0fbfc21bdb6bd642a1dae4d23e2abe08e888fa313441d75359fd36e1
Size: 80.32 kB - postgresql-plpython3-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: f1931d0eb6b7be931e22239a9ae9b921
SHA-256: d5700a8a7b5d491431e9141ce54c6ace4256c3b5fb6133e6887ef1d370558c48
Size: 102.87 kB - postgresql-pltcl-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 9624f4d25ca45cdfea5a2622b591f9a2
SHA-256: 2385c3af0400fed244fa89af2939f03baaae72b7220b96c4c65368c40d859ace
Size: 53.28 kB - postgresql-private-devel-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: f74f3a5924b7b60b0683cba895cbbed0
SHA-256: 66261e1b8b96e7fdea991721207f32121e7d17c87caaf505748a32fc7db7975f
Size: 66.05 kB - postgresql-private-libs-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 18b0e439c0be2604014fcf91e06d7f9d
SHA-256: a93170df4272a1f2a3f44f4e1c0d5e963c072a270bd9842eeb35f8817cdb135b
Size: 142.99 kB - postgresql-server-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: d4e4e19d8c33d689f611baea07be223e
SHA-256: afb762fff6b7c068fe99f3149dfb8ed4891e4619431faad80c82a34582b59aa8
Size: 6.97 MB - postgresql-server-devel-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 63fa9116f30fd7f637f91bca130b843e
SHA-256: dfe006ac8c27f72a20964c534de1b4f08f0d466ec4c00c4d6986b3d1d4a7c4df
Size: 1.48 MB - postgresql-static-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 9c4e6a6f4c9c21c50e890642aea94a29
SHA-256: 86d51d23b8bda60267c1a169b5ae7b62c0d0ea9ee5b99791763186cc380ba6ab
Size: 131.13 kB - postgresql-test-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 4f4a56c000729ed83009ab5863e84c76
SHA-256: 49630d4ca7d69ed25ea1b8a5c2b82d775c77f64c60784a8c40ed176ce81d6dcd
Size: 1.80 MB - postgresql-test-rpm-macros-16.13-1.module+el9+1134+9ff9d679.noarch.rpm
MD5: 0bd428a8a31624baca7000f82dfbce9c
SHA-256: fd4d466f51bc725e1094d8dd017d44a766c76215aca90c788d5b28acd4046514
Size: 9.58 kB - postgresql-upgrade-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 8feb58dd9d4178fd8bb2cc86c20a2d4b
SHA-256: 9f6f9a732bab0ca924bfa5da01a94a78f704701d55ccd4d7245d38d824b52482
Size: 5.15 MB - postgresql-upgrade-devel-16.13-1.module+el9+1134+9ff9d679.x86_64.rpm
MD5: 750c1191d71030fd7bb563dcc577f2fc
SHA-256: 0293b3e4d3c33cd652f1fdffc11bf72dafab2ac9e9d48577ab7a245ee80ef2fa
Size: 1.38 MB