CVE-2026-2006
published 2026-02-12CVE-2026-2006: Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun…
PriorityP264high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.08%
60.9th percentile
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | httpd | — | — |
| debian | postgresql-13 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-15 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-17 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-18 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| ensdomains | ens-contracts | 0 – 1.6.2 | — |
| postgresql | postgresql | < 14.21 | 14.21 |
| postgresql | postgresql | >= 14.0 < 14.21 | 14.21 |
| postgresql | postgresql | >= 15 < 15.16 | 15.16 |
| postgresql | postgresql | >= 15.0 < 15.16 | 15.16 |
| postgresql | postgresql | >= 16 < 16.12 | 16.12 |
| postgresql | postgresql | >= 16.0 < 16.12 | 16.12 |
| postgresql | postgresql | >= 17 < 17.8 | 17.8 |
| postgresql | postgresql | >= 17.0 < 17.8 | 17.8 |
| postgresql | postgresql | >= 18 < 18.2 | 18.2 |
| postgresql | postgresql | >= 18.0 < 18.2 | 18.2 |
Detection & IOCsextracted from sources · hover to see the quote
- →Trigger condition: a database user issues crafted queries exploiting missing multibyte character length validation in PostgreSQL text manipulation functions, resulting in a buffer overrun and arbitrary code execution as the OS user running the database. ↗
- →Affected component is PostgreSQL text manipulation (multibyte/character length handling); monitor for anomalous or oversized multibyte string inputs in SQL queries against PostgreSQL instances running versions before 18.2, 17.8, 16.12, 15.16, and 14.21. ↗
- ·No public exploit is available as of the published date; exploitation probability (EPSS) percentile is 9.7, meaning active in-the-wild exploitation has not been confirmed. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
vendor_apache5.4LOW
vendor_ubuntu4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
PostgreSQL vulnerabilities
vendor_ubuntu·2026-03-04·CVSS 4.3
CVE-2026-2003 [MEDIUM] PostgreSQL vulnerabilities
Title: PostgreSQL vulnerabilities
Summary: Several security issues were fixed in PostgreSQL.
Altan Birler discovered that PostgreSQL incorrectly validated oidvector
types. An attacker could possibly use this issue to obtain a few bytes of
sensitive information. (CVE-2026-2003)
Daniel Firer discovered that PostgreSQL incorrectly validated input in the
intarray extension. An attacker could possibly use this issue to execute
arbitrary code. (CVE-2026-2004)
It was dicovered that PosgreSQL incorrectly handled certain pgcrypto memory
operations. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2026-2005)
Paul Gerste and Moritz Sanft discovered that PostgreSQL incorrectly
validated multibyte character lengths. An attacker could possibly use this
issue to execute arbi
Red Hat
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
vendor_redhat·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CWE-1285 postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database.
Mitigation: Mitigation for this issue is either not available or the currently available options do not meet the Red Hat P
Debian
CVE-2026-2006: postgresql-13 - Missing validation of multibyte character length in PostgreSQL text manipulation...
vendor_debian·2026·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006: postgresql-13 - Missing validation of multibyte character length in PostgreSQL text manipulation...
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Scope: local
bullseye: resolved (fixed in 13.23-0+deb11u2)
Citrix
Citrix Security Bulletin CTX111695
vendor_citrix·CVSS 6.0
CVE-2006-6573 [MEDIUM] Citrix Security Bulletin CTX111695
Citrix Security Bulletin CTX111695
CVE References: CVE-2006-6573, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX110492
vendor_citrix·CVSS 6.5
CVE-2006-3779 [MEDIUM] Citrix Security Bulletin CTX110492
Citrix Security Bulletin CTX110492
CVE References: CVE-2006-3779, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX111615
vendor_citrix·CVSS 6.5
CVE-2006-6572 [MEDIUM] Citrix Security Bulletin CTX111615
Citrix Security Bulletin CTX111615
CVE References: CVE-2006-6572, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX111614
vendor_citrix·CVSS 6.5
CVE-2006-6572 [MEDIUM] Citrix Security Bulletin CTX111614
Citrix Security Bulletin CTX111614
CVE References: CVE-2006-6572, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Apache
Apache httpd: CVE-2005-3357
vendor_apache·CVSS 5.4
CVE-2005-3357 [LOW] Apache httpd: CVE-2005-3357
Apache httpd: CVE-2005-3357
A NULL pointer dereference flaw in mod_ssl was discovered affecting server configurations where an SSL virtual host is configured with access control and a custom 400 error document. A remote attacker could send a carefully crafted request to trigger this issue which would lead to a crash. This crash would only be a denial of service if using the worker MPM. Reported to security team 2005-12-05 Issue public 2005-12-12 Update 2.2.2 released 2006-05-01 Update 2.0.58 released 2006-05-01 Affects 2.2.0, 2.0.55, 2.0.54, 2.0.53, 2.0.52, 2.0.51, 2.0.50, 2.0.49, 2.0.48, 2.0.47, 2.0.46, 2.0.45, 2.0.44, 2.0.43, 2.0.42, 2.0.40, 2.0.39, 2.0.37, 2.0.36, 2.0.35 Copyright © 1997-2026 The Apache Software Foundation. Apache HTTP Server, Apache, the Apache logo and the Apache HTTP
VulDB
PostgreSQL up to 18.1 Multibyte Character array index (Nessus ID 298910 / WID-SEC-2026-0409)
vuldb·2026-07-01·CVSS 8.8
CVE-2026-2006 [HIGH] PostgreSQL up to 18.1 Multibyte Character array index (Nessus ID 298910 / WID-SEC-2026-0409)
A vulnerability marked as critical has been reported in PostgreSQL up to 14.20/15.15/16.11/17.7/18.1. The affected element is an unknown function of the component Multibyte Character Handler. This manipulation causes improper validation of array index.
The identification of this vulnerability is CVE-2026-2006. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
OSV
postgresql-14, postgresql-16, postgresql-17 vulnerabilities
osv·2026-03-04·CVSS 4.3
CVE-2026-2003 [MEDIUM] postgresql-14, postgresql-16, postgresql-17 vulnerabilities
postgresql-14, postgresql-16, postgresql-17 vulnerabilities
Altan Birler discovered that PostgreSQL incorrectly validated oidvector
types. An attacker could possibly use this issue to obtain a few bytes of
sensitive information. (CVE-2026-2003)
Daniel Firer discovered that PostgreSQL incorrectly validated input in the
intarray extension. An attacker could possibly use this issue to execute
arbitrary code. (CVE-2026-2004)
It was dicovered that PosgreSQL incorrectly handled certain pgcrypto memory
operations. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2026-2005)
Paul Gerste and Moritz Sanft discovered that PostgreSQL incorrectly
validated multibyte character lengths. An attacker could possibly use this
issue to execute arbitrary code. (CVE-2026-2006)
GHSA
ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery via Missing PKCS#1 v1.5 Padding Validation
ghsa·2026-02-25
CVE-2026-22866 [LOW] CWE-347 ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery via Missing PKCS#1 v1.5 Padding Validation
ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery via Missing PKCS#1 v1.5 Padding Validation
### Impact
The `RSASHA256Algorithm` and `RSASHA1Algorithm` contracts fail to validate PKCS#1 v1.5 padding structure when verifying RSA signatures. The contracts only check if the last 32 (or 20) bytes of the decrypted signature match the expected hash. This enables Bleichenbacher's 2006 signature forgery attack against DNS zones using RSA keys with low public exponents (e=3). Two ENS-supported TLDs (.cc and .name) use e=3 for their Key Signing Keys, allowing any domain under these TLDs to be fraudulently claimed on ENS without DNS ownership.
Affected contracts
Contract | Address | Status
-- | -- | --
RSASHA256Algorithm | 0x9D1B5a639597f558bC37Cf81813724076c5C1e96 | Vulnerable
RSASHA1Algorit
GHSA
GHSA-mq5v-x68w-mc4f: Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer
ghsa_unreviewed·2026-02-12
CVE-2026-2006 [HIGH] CWE-129 GHSA-mq5v-x68w-mc4f: Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
OSV
CVE-2026-2006: Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer
osv·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006: Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
No detection rules found.
No public exploits indexed.
Hackernews
⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
blogs_hackernews·2026-05-11·CVSS 9.3
CVE-2026-6973 [CRITICAL] ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
Rough Monday.
Somebody poisoned a trusted download again, somebody else turned cloud servers into public housing, and a few crews are still getting into boxes with bugs that should’ve died years ago — the same old holes, same lazy access paths, same “how the hell is this still open” feeling. One report this week basically reads like a guy tripped over root access by accident and decided to stay there.
The weird part is how normal this all sounds now. Fake updates. Quiet backdoors. Remote tools are used like skeleton keys. Forum rats swapping st
Tenable
Marcus Ranum PaulDotCom Interview on Penetration Testing
blogs_tenable·2008-12-14·CVSS 7.8
[HIGH] Marcus Ranum PaulDotCom Interview on Penetration Testing
Blog / Company
Subscribe
# Marcus Ranum PaulDotCom Interview on Penetration Testing
Ron Gula
December 14, 2008
0 Min Read
Tenable's CSO, Marcus Ranum, was recently interviewed on the PaulDotCom Security Weekly podcast. They discussed a wide range of topics regarding penetration testing, secure coding, Marcus's "6 Dumbest Ideas" in computer security and much more.
- Full PaulDotCom show notes.
- Direct link to the show's MP3 audio recording.
- Tenable podcast and slides on Marcus's "6 Dumbest Ideas in Computer Security" presentation from from 2006.
- Very cool image of Marcus Ranum demonstrating cutting edge computer security practices.
## Related articles
March 17, 2026
## FAQ on CVE-2026-21514: OLE bypass N-Day in Microsoft Word
An N-day vulnerability in Microsoft Word exposes n
Wiz
CVE-2026-2004 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2004 [HIGH] CVE-2026-2004 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2004 :
PostgreSQL vulnerability analysis and mitigation
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 14.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql15-test-rpm-macros
postgresql18-pltcl
Sources
Alma
Wiz
CVE-2026-3172 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-3172 [HIGH] CVE-2026-3172 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-3172 :
PostgreSQL vulnerability analysis and mitigation
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server.
Source : NVD
## 8.1
Score
Published February 25, 2026
Severity HIGH
CNA Score 8.1
Affected Technologies
PostgreSQL
pgVector
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 17.1
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
postgresql15-pgvector
postgresql16-pgvector
Sources
NVD
Debian 13 Severity MEDIUM No Fix Added at: Mar 02, 2026
Debian 14 Severity HIGH Has Fix Added at: Mar 02, 2026
Echo Severity HIGH No Fix Adde
Wiz
CVE-2026-2003 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 4.3
CVE-2026-2003 [MEDIUM] CVE-2026-2003 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2003 :
PostgreSQL vulnerability analysis and mitigation
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 4.3
Score
Published February 12, 2026
Severity MEDIUM
CNA Score 4.3
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 4.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql16
postgresql:12::postgre
Wiz
CVE-2026-2005 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2005 :
PostgreSQL vulnerability analysis and mitigation
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 7.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql:12::postgresql-test
postgresql16-private-libs-debuginfo
Sources
AlmaLinux 8 Severity HIGH Has Fix Adde
Wiz
CVE-2026-2006 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2006 :
PostgreSQL vulnerability analysis and mitigation
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 9.7
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql17-co
Wiz
O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
blogs_wiz·CVSS 8.8
[HIGH] O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
## Banco de dados de vulnerabilidades Wiz
Um recurso abrangente para monitorar vulnerabilidades de alto perfil em ambientes de nuvem, adaptado para equipes de segurança e profissionais de nuvem
Veja como o Wiz detecta vulnerabilidades exploráveis em cargas de trabalho na nuvem. Assista à demo de 12 minutos
## Explore por tecnologia
## Filtros populares
## Alto perfil
CVE ID
Gravidade
Pontuação
Tecnologias
Nome do componente
Exploração do CISA KEV
Tem correção
Data de publicação
CVE-2026-3854
HIGH
8.7
GitHub Enterprise Server
cpe:2.3:a:github:enterprise_server
Não
Sim
Mar 10, 2026
CVE-2026-26220
CRITICAL
9.3
Python
lightllm
Não
Não
Feb 17, 2026
CVE-2026-2006
HIGH
8.8
PostgreSQL
postgresql:13::postgresql-test-rpm-macros
Não
Sim
Feb 12, 2026
CVE-2026
Wiz
CVE-2026-2007 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2007 [HIGH] CVE-2026-2007 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2007 :
PostgreSQL vulnerability analysis and mitigation
Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the viability of attacks that lead to privilege escalation. PostgreSQL 18.1 and 18.0 are affected.
Source : NVD
## 8.2
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.2
Affected Technologies
PostgreSQL
Linux openSUSE
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 5.3
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql
libecpg6
Sources
Alpine 3.20, 3.21, 3.22,
Bugzilla
CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files
bugzilla·2026-03-19·CVSS 9.8
CVE-2006-10003 [CRITICAL] CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files
CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files
XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack.
In the case (stackptr == stacksize - 1), the stack will NOT be expanded. Then the new value will be written at location (++stackptr), which equals stacksize and therefore falls just outside the allocated buffer.
The bug can be observed when parsing an XML file with very deep element nesting
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 10
Via RHSA-2026:7680 https://access.redhat.com/errata/RHSA-2026:7680
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2026:7681 https://access.redhat.com/errata/
Bugzilla
CVE-2026-2006 postgresql17: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 postgresql17: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
CVE-2026-2006 postgresql17: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a cur
Bugzilla
CVE-2026-2006 mingw-postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 mingw-postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
CVE-2026-2006 mingw-postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a
Bugzilla
CVE-2026-2006 postgresql16: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 postgresql16: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
CVE-2026-2006 postgresql16: PostgreSQL missing validation of multibyte character length executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a cur
Bugzilla
CVE-2026-2006 postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
CVE-2026-2006 postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2026:3730 https://access.redhat.com/errata/RHSA-2026:3730
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 10
Via RHSA-2026:3887 https://access.redhat.com/errata/RHSA-2026:3887
---
This issue has been addresse
Bugzilla
CVE-2006-2026 security flaw
bugzilla·2018-08-16·CVSS 6.5
CVE-2006-2026 [MEDIUM] CVE-2006-2026 security flaw
CVE-2006-2026 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Double free vulnerability in tif_jpeg.c in libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers errors related to "setfield/getfield methods in cleanup functions."
https://www.postgresql.org/support/security/CVE-2026-2006/https://access.redhat.com/errata/RHSA-2026:19009https://access.redhat.com/errata/RHSA-2026:19010https://access.redhat.com/errata/RHSA-2026:3730https://access.redhat.com/errata/RHSA-2026:3887https://access.redhat.com/errata/RHSA-2026:3896https://access.redhat.com/errata/RHSA-2026:4024https://access.redhat.com/errata/RHSA-2026:4059https://access.redhat.com/errata/RHSA-2026:4063https://access.redhat.com/errata/RHSA-2026:4064https://access.redhat.com/errata/RHSA-2026:4074https://access.redhat.com/errata/RHSA-2026:4075https://access.redhat.com/errata/RHSA-2026:4110https://access.redhat.com/errata/RHSA-2026:4254https://access.redhat.com/errata/RHSA-2026:4441https://access.redhat.com/errata/RHSA-2026:4475https://access.redhat.com/errata/RHSA-2026:4504https://access.redhat.com/errata/RHSA-2026:4505https://access.redhat.com/errata/RHSA-2026:4506https://access.redhat.com/errata/RHSA-2026:4509https://access.redhat.com/errata/RHSA-2026:4515https://access.redhat.com/errata/RHSA-2026:4516https://access.redhat.com/errata/RHSA-2026:4518https://access.redhat.com/errata/RHSA-2026:4524https://access.redhat.com/errata/RHSA-2026:4528https://access.redhat.com/errata/RHSA-2026:4544https://access.redhat.com/errata/RHSA-2026:4546https://access.redhat.com/errata/RHSA-2026:4547https://access.redhat.com/errata/RHSA-2026:4548https://access.redhat.com/errata/RHSA-2026:4943https://access.redhat.com/errata/RHSA-2026:8756https://access.redhat.com/security/cve/CVE-2026-2006https://bugzilla.redhat.com/show_bug.cgi?id=2439324https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-2006.json
2026-02-12
Published