SUSE-SU-2025:01644-2
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-202501644-2/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:01644-2.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:01644-2
- Upstream
- Related
- Published
- 2025-05-29T13:30:04Z
- Modified
- 2025-05-30T12:01:29.431086Z
- Summary
- Security update for postgresql17
- Details
-
This update for postgresql17 fixes the following issues:
Upgrade to 17.5:
- CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation (bsc#1242931)
Changelog:
https://www.postgresql.org/docs/release/17.5/
- References
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 SP7
postgresql17
SUSE:Linux Enterprise Module for Package Hub 15 SP7
postgresql17
SUSE:Linux Enterprise Module for Server Applications 15 SP7
postgresql17
Package
- Name
- postgresql17
- Purl
- pkg:rpm/suse/postgresql17&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed17.5-150600.13.13.1
Ecosystem specific
{
"binaries": [
{
"postgresql17-pltcl": "17.5-150600.13.13.1",
"postgresql17-plperl": "17.5-150600.13.13.1",
"postgresql17-devel": "17.5-150600.13.13.1",
"postgresql17-docs": "17.5-150600.13.13.1",
"postgresql17-contrib": "17.5-150600.13.13.1",
"postgresql17-plpython": "17.5-150600.13.13.1",
"postgresql17-server": "17.5-150600.13.13.1",
"libecpg6": "17.5-150600.13.13.1",
"postgresql17-server-devel": "17.5-150600.13.13.1"
}
]
}