VDB
ALSA-2025%3A15022
ALSA-2025%3A15022
PUBLISHED
Important: postgresql:15 security update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:8 | postgresql | 0, 0 |
| AlmaLinux:8 | postgresql-docs | 0, 0 |
| AlmaLinux:8 | postgresql-static | 0, 0 |
| AlmaLinux:8 | postgresql-private-libs | 0, 0 |
| AlmaLinux:8 | postgres-decoderbufs | 0, 0 |
| AlmaLinux:8 | postgresql-test | 0, 0 |
| AlmaLinux:8 | postgresql-upgrade-devel | 0, 0 |
| AlmaLinux:8 | postgresql-contrib | 0, 0 |
| AlmaLinux:8 | postgresql-plperl | 0, 0 |
| AlmaLinux:8 | postgresql-pltcl | 0, 0 |
| AlmaLinux:8 | postgresql-test-rpm-macros | 0, 0 |
| AlmaLinux:8 | pgaudit | 0, 0 |
| AlmaLinux:8 | postgresql-upgrade | 0, 0 |
| AlmaLinux:8 | postgresql-server | 0, 0 |
| AlmaLinux:8 | postgresql-server-devel | 0, 0 |
| AlmaLinux:8 | postgresql-plpython3 | 0, 0 |
| AlmaLinux:8 | postgresql-private-devel | 0, 0 |
| AlmaLinux:8 | pg_repack | 0, 0 |
Exploit Intelligence
- PoC de RCE en PostgreSQL — CVE-2025-8714 (github-poc)
- PoC de RCE en PostgreSQL — CVE-2025-8714 (github-poc)
- dbutil.go (github-poc)
- dbutil.go (github-poc)
- context.go (github-poc)
- context.go (github-poc)
- schema_cleaner_spec.rb (github-poc)
- schema_cleaner_spec.rb (github-poc)
- ghost_report_20260112_192608.json (github-poc)
- ghost_report_20260112_192608.json (github-poc)
…and 4 more exploits
Timeline
- Sep 2, 2025 CVE Published
- Feb 4, 2026 CVE Updated
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2025:15022 vendor-advisory
- https://bugzilla.redhat.com/2388551 third-party-advisory
- https://bugzilla.redhat.com/2388553 third-party-advisory
- https://errata.almalinux.org/8/ALSA-2025-15022.html vendor-advisory
- https://www.redhat.com/security/data/cve/CVE-2025-4207.html third-party-advisory
- https://www.redhat.com/security/data/cve/CVE-2025-8714.html third-party-advisory
- https://www.redhat.com/security/data/cve/CVE-2025-8715.html third-party-advisory