CLSA-2025-1758293394

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1758293394

Upstream

CVE-2025-8714

CVE-2025-8715

Published

2025-09-19T14:49:57Z

Modified

2026-06-01T00:31:01.787688253Z

Summary

postgresql: Fix of 2 CVEs

Details

CVE-2025-8714: prevent execution of unsafe meta-commands in plain-text dumps (pgdump/pgrestore/pg_dumpall, psql restricted mode)
CVE-2025-8715: sanitize newlines in object names to avoid unsafe SQL comments in dumps

References

https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1758293394.html

Affected packages

TuxCare:AlmaLinux:9.2

postgresql

Package

Name: postgresql
Purl: pkg:rpm/tuxcare/postgresql?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-contrib

Package

Name: postgresql-contrib
Purl: pkg:rpm/tuxcare/postgresql-contrib?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-docs

Package

Name: postgresql-docs
Purl: pkg:rpm/tuxcare/postgresql-docs?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-plperl

Package

Name: postgresql-plperl
Purl: pkg:rpm/tuxcare/postgresql-plperl?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-plpython3

Package

Name: postgresql-plpython3
Purl: pkg:rpm/tuxcare/postgresql-plpython3?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-pltcl

Package

Name: postgresql-pltcl
Purl: pkg:rpm/tuxcare/postgresql-pltcl?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-private-devel

Package

Name: postgresql-private-devel
Purl: pkg:rpm/tuxcare/postgresql-private-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-private-libs

Package

Name: postgresql-private-libs
Purl: pkg:rpm/tuxcare/postgresql-private-libs?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-server

Package

Name: postgresql-server
Purl: pkg:rpm/tuxcare/postgresql-server?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-server-devel

Package

Name: postgresql-server-devel
Purl: pkg:rpm/tuxcare/postgresql-server-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-static

Package

Name: postgresql-static
Purl: pkg:rpm/tuxcare/postgresql-static?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-test

Package

Name: postgresql-test
Purl: pkg:rpm/tuxcare/postgresql-test?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-test-rpm-macros

Package

Name: postgresql-test-rpm-macros
Purl: pkg:rpm/tuxcare/postgresql-test-rpm-macros?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-upgrade

Package

Name: postgresql-upgrade
Purl: pkg:rpm/tuxcare/postgresql-upgrade?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"

postgresql-upgrade-devel

Package

Name: postgresql-upgrade-devel
Purl: pkg:rpm/tuxcare/postgresql-upgrade-devel?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

13.11-1.el9_2.tuxcare.els11

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1758293394.json"