VDB
GCVE-110-MAGEIA-2026-151
GCVE-110-MAGEIA-2026-151
Advisory Published
PostgreSQL CREATE TYPE does not check multirange schema CREATE
privilege. (CVE-2026-6472)
PostgreSQL server undersizes allocations, via integer wraparound.
(CVE-2026-6473)
PostgreSQL timeofday() can disclose portions of server memory.
(CVE-2026-6474)
PostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of
origin superuser choice. (CVE-2026-6475)
PostgreSQL libpq lo_* functions let server superuser overwrite client
stack memory. (CVE-2026-6477)
PostgreSQL discloses MD5-hashed passwords via covert timing channel.
(CVE-2026-6478)
PostgreSQL SSL/GSS init causes denial of service, via uncontrolled
recursion. (CVE-2026-6479)
PostgreSQL refint allows stack buffer overflow and SQL injection.
(CVE-2026-6637)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | postgresql15 | 0 (affected), 15.18-1.mga9 (unaffected) | — |
Browse GCVE Records
73,196 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.