CLSA-2025-1747431041

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1747431041

Upstream

CVE-2024-10976

CVE-2024-10977

Published

2025-05-16T21:30:46Z

Modified

2026-06-04T09:46:48.163734587Z

Summary

Fix CVE(s): CVE-2024-10976, CVE-2024-10977

Details

SECURITY UPDATE: incomplete tracking of row security allows unauthorized access to data
- debian/patches/CVE-2024-10976.patch: Ensure cached plans to be correctly marked as dependent on role to fix the issue of neglected marking which could lead to incorrect row visibility.
- CVE-2024-10976
SECURITY UPDATE: server error message leakage
- debian/patches/CVE-2024-10977.patch: Discard error messages received during SSL and GSS negotiation to prevent arbitrary bytes written to the client's terminal
- CVE-2024-10977

References

https://errata.cloudlinux.com/ubuntu16-els/CLSA-2025-1747431041.html

Affected packages

TuxCare:Ubuntu:16.04

libecpg-compat3

Package

Name: libecpg-compat3
Purl: pkg:deb/tuxcare/libecpg-compat3?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

libecpg-dev

Package

Name: libecpg-dev
Purl: pkg:deb/tuxcare/libecpg-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

libecpg6

Package

Name: libecpg6
Purl: pkg:deb/tuxcare/libecpg6?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

libpgtypes3

Package

Name: libpgtypes3
Purl: pkg:deb/tuxcare/libpgtypes3?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

libpq-dev

Package

Name: libpq-dev
Purl: pkg:deb/tuxcare/libpq-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

libpq5

Package

Name: libpq5
Purl: pkg:deb/tuxcare/libpq5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-9.5

Package

Name: postgresql-9.5
Purl: pkg:deb/tuxcare/postgresql-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-client-9.5

Package

Name: postgresql-client-9.5
Purl: pkg:deb/tuxcare/postgresql-client-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-contrib-9.5

Package

Name: postgresql-contrib-9.5
Purl: pkg:deb/tuxcare/postgresql-contrib-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-doc-9.5

Package

Name: postgresql-doc-9.5
Purl: pkg:deb/tuxcare/postgresql-doc-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-plperl-9.5

Package

Name: postgresql-plperl-9.5
Purl: pkg:deb/tuxcare/postgresql-plperl-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-plpython-9.5

Package

Name: postgresql-plpython-9.5
Purl: pkg:deb/tuxcare/postgresql-plpython-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-plpython3-9.5

Package

Name: postgresql-plpython3-9.5
Purl: pkg:deb/tuxcare/postgresql-plpython3-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-pltcl-9.5

Package

Name: postgresql-pltcl-9.5
Purl: pkg:deb/tuxcare/postgresql-pltcl-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"

postgresql-server-dev-9.5

Package

Name: postgresql-server-dev-9.5
Purl: pkg:deb/tuxcare/postgresql-server-dev-9.5?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.5.25-0ubuntu0.16.04.1+tuxcare.els10

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1747431041.json"