A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes, potentially revealing notable and confidential information. This issue exists due to excessive data output in aggregate function calls, enabling remote users to read some portion of system memory.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NPostgreSQL
APPPostgresql16.012.0 – 12.17 (bez)13.0 – 13.13 (bez)14.0 – 14.10 (bez)15.0 – 15.5 (bez)11.0 – 11.22 (bez)Red Hat Codeready Linux Builder Eus
APPRedhat9.2Red Hat Codeready Linux Builder Eus For Power Little Endian Eus
APPRedhat9.0_ppc64le9.2_ppc64leRed Hat Codeready Linux Builder For Arm64 Eus
APPRedhat8.6_aarch649.0_aarch649.2_aarch64Red Hat Codeready Linux Builder For IBM Z Systems Eus
APPRedhat9.0_s390x9.2_s390xRed Hat Codeready Linux Builder For Power Little Endian Eus
APPRedhat9.0_ppc64le9.2_ppc64leRed Hat Enterprise Linux
OSRedhat8.09.0Red Hat Enterprise Linux Eus
OSRedhat8.68.89.09.2Red Hat Enterprise Linux For Arm 64
OSRedhat8.08.8_aarch64Red Hat Enterprise Linux For IBM Z Systems
OSRedhat8.0_s390xRed Hat Enterprise Linux For IBM Z Systems Eus
OSRedhat8.6_s390x8.8_s390x9.0_s390x9.2_s390xRed Hat Enterprise Linux For Power Little Endian
OSRedhat8.0_ppc64leRed Hat Enterprise Linux For Power Little Endian Eus
OSRedhat8.6_ppc64le8.8_ppc64le9.0_ppc64le9.2_ppc64leRed Hat Enterprise Linux Server Aus
OSRedhat8.28.48.69.2Red Hat Enterprise Linux Server Tus
OSRedhat8.28.48.6Red Hat Software Collections
APPRedhat1.0
Related vulnerabilities
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the s...
The RichFaces Framework 3.X through 3.3.4 is vulnerable to Expression Language (EL) injection via the UserReso...
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...