Github.Com Jackc Pgx V5 vulnerabilities
2 known vulnerabilities affecting github.com/jackc_pgx_v5.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2026-33816CRITICAL≥ 0, < 5.9.02026-04-07
CVE-2026-33816 [CRITICAL] CWE-20 Memory-safety vulnerability in github.com/jackc/pgx/v5.
Memory-safety vulnerability in github.com/jackc/pgx/v5.
Memory-safety vulnerability in github.com/jackc/pgx/v5.
ghsa
CVE-2024-27304HIGH≥ 5.0.0, < 5.5.42024-03-04
CVE-2024-27304 [HIGH] CWE-190 pgx SQL Injection via Protocol Message Size Overflow
pgx SQL Injection via Protocol Message Size Overflow
### Impact
SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control.
### Patches
The problem is resolved in v4.18.2 and v5.5.4.
### Workarounds
Reject user input large
ghsaosv