[security - high] postgresql:16 security update, postgresql-16.14-1.module+el8+1995+3b99c0b7
エラータID: AXSA:2026-1199:01
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison (CVE-2026-6478)
* postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write (CVE-2026-6473)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2026-6473
Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user inputs to the relevant database functions, the application input provider may achieve a segmentation fault. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
CVE-2026-6478
Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. This does not affect scram-sha-256 passwords, the default in all supported releases. However, current databases may have MD5-hashed passwords originating in upgrades from PostgreSQL 13 or earlier. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
Modularity name: "postgresql"
Stream name: "16"
Update packages.
Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user inputs to the relevant database functions, the application input provider may achieve a segmentation fault. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. This does not affect scram-sha-256 passwords, the default in all supported releases. However, current databases may have MD5-hashed passwords originating in upgrades from PostgreSQL 13 or earlier. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.
N/A
SRPMS
- pgaudit-16.0-1.module+el8+1995+3b99c0b7.src.rpm
MD5: 4db1251cc052eaeb41a82f47b7bca543
SHA-256: 342e9a10c4ded4db2b6b25c715ad8517571b592c2fd53d3de2217141c7bfcb8e
Size: 52.51 kB - pg_repack-1.5.1-1.module+el8+1995+3b99c0b7.src.rpm
MD5: 037c95c3f4555a47a93f075a2cd0d465
SHA-256: e9e35f774d92f53668fabbca193f3bebe3e8e306b416f2e650b2173cc1b15ade
Size: 104.88 kB - postgres-decoderbufs-2.4.0-1.Final.module+el8+1995+3b99c0b7.src.rpm
MD5: 43c555ae03be96bfd0750186108048ea
SHA-256: fe53169aa24ae72f9e4336247fa8da88b8470b185a54e639c9aea6e3c964780c
Size: 21.11 kB - postgresql-16.14-1.module+el8+1995+3b99c0b7.src.rpm
MD5: da9084e36c369f66bb93b666778cac9e
SHA-256: 794f088394fa00891a5b892481ac0eea180b75b197fc20ad071577d8d1665916
Size: 46.19 MB
Asianux Server 8 for x86_64
- pgaudit-16.0-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 9795d6a17da713101f9832528d7f098f
SHA-256: e14b41923d5e4f9d6063de9deb30f255472e10f1343f4ecf4e63679f80a060ba
Size: 27.44 kB - pgaudit-debugsource-16.0-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: a918a2b122a91f8c9b7b3602c89b4caa
SHA-256: d996b9695e9e785d3944d24ad6da582392ad114f6d39cf6c04880242442cf2c8
Size: 23.57 kB - pg_repack-1.5.1-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 7835c0b03619d01b502b6adfdccd3246
SHA-256: efe757698c428d93d143c72b3e31f3636bab0c6233571fbc83b56ab1a1bd6366
Size: 95.94 kB - pg_repack-debugsource-1.5.1-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 71257abd35d9c71e2f9250ba4762b990
SHA-256: 280ddcf1581c5a4ece6a7369a4dce8b368f0c93b5a25186d1748e810b09958db
Size: 50.82 kB - postgres-decoderbufs-2.4.0-1.Final.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: e58a5ae9a81aa444c4b37ca92cf232bb
SHA-256: 516cf7970ab94577ca1c2457b42d821563e67f18db4a062731c3435757f42f10
Size: 22.13 kB - postgres-decoderbufs-debugsource-2.4.0-1.Final.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: d09dcfce16a6a3be1f7fa807040d6019
SHA-256: 9e81053396b4ad355029c98fdeac03ed29d04db15243a1b116bd2fb109898856
Size: 16.73 kB - postgresql-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: a59857cf6ea019183f65e17fd153a1ed
SHA-256: 97d17d30b2fca984be53b663152e82600ff51f9bfa79bd8702884f4417ee1088
Size: 1.97 MB - postgresql-contrib-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: e6e155331c2920259f75420f49b171a9
SHA-256: 2e3f2583742e0b9e2874145bd712551c8fd76e47beb67e358c136406a49f5cfc
Size: 0.98 MB - postgresql-debugsource-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: ac0270639d3e9f35400e7f1d73423859
SHA-256: 66ab671c2ece2e0ad47a1bb0d8933642fb4f530f607a9b7a756d84a544c4c1c8
Size: 19.94 MB - postgresql-docs-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: d90f39a3f90b56fe0ea9bdf76081eb05
SHA-256: 2ee4114997aa852dc594c7bc75d19b9c5d7042562fe499f653d3fb35432b1e1d
Size: 2.53 MB - postgresql-plperl-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 6dd17b12bc0ad2dc05554d9d19902415
SHA-256: 8c065ffcaa1bb16a1326753f2c49d77a560a4f8e4712e8f8543df9f7dd1fe1cf
Size: 75.74 kB - postgresql-plpython3-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: b7668e37ab28911f0bf3bf508b87781c
SHA-256: 29485642d4a995289d7b87a791e41cfa38a00f1bd15ec592e57e9d01e69a4b49
Size: 94.16 kB - postgresql-pltcl-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 43e5026b2ae5c8fb62eccb66bca5c8ec
SHA-256: d0ed84a885633f550a4b3aff7099369340a79b0b7b9ae8aaca1aa92107b7353e
Size: 46.92 kB - postgresql-private-devel-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 94cd294546ffbff978a4736f633e28b3
SHA-256: 65daf59391545cfdc3f2b03b19fb781445a032f041795f11df4dc5fb569770c5
Size: 64.26 kB - postgresql-private-libs-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 1a54179a5ecb3a67696ea5a921aba8f0
SHA-256: 6c8197657cd16fe3699f29c611e8381022196e92555d5b6ba70de7c97b40c801
Size: 136.69 kB - postgresql-server-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: ebc8ae7b628669d9d2a9b7338189213f
SHA-256: f5cffcb56c8c2333d9320bad832e86205df5f98b0a7dbfb818a28cff73340028
Size: 6.90 MB - postgresql-server-devel-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 67deca6fa3a33ee73fdd4fb52e7a179f
SHA-256: 6eb3e9d224b71893119c064b2dc8d183c9cbdb4300d00a8318cb5cbe1442d042
Size: 1.41 MB - postgresql-static-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 5e1b232c4b7aa267e670426bd871ea6a
SHA-256: 58d31bb21aad9927ae3618ae83994078c290e60c1e6b33a9cdbbcd0172402afd
Size: 158.26 kB - postgresql-test-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 61279d453f09af82b2bc3809a32ea284
SHA-256: eb738db865b796492bc247ab52cf169cd5586c31a650c8f75a63bb5fd51f1a12
Size: 2.26 MB - postgresql-test-rpm-macros-16.14-1.module+el8+1995+3b99c0b7.noarch.rpm
MD5: a70d57a352be1eaacf47dfe68057909a
SHA-256: 58662a367d7d0d6e78167f951eef5beb6bd823f78b9ab4826e09ac9d709d2ca5
Size: 10.55 kB - postgresql-upgrade-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: 94b9a474f71b16838a6d47275e69de3a
SHA-256: 878c3cfd0b72279c94105bdea16caec632930c9e4e3016e8327a9b3b87f8c39e
Size: 4.91 MB - postgresql-upgrade-devel-16.14-1.module+el8+1995+3b99c0b7.x86_64.rpm
MD5: d71f84d7dcef1d4a234f1a5cb4935f2a
SHA-256: 20abebe22cbd0c9206a74892716edd6f034387500770a266d045c08366f5e055
Size: 1.33 MB