[CLSA-2026:1774460378] postgresql11: Fix of 4 CVEs
Type:
security
Severity:
Important
Release date:
2026-03-25 17:39:43 UTC
Description:
- Fix CVE-2025-1094: Improper neutralization of quoting syntax in libpq escape functions allowing SQL injection. - Fix CVE-2024-7348: TOCTOU race condition in pg_dump allows arbitrary SQL function execution via view/foreign table replacement. - Fix CVE-2024-10979: Block environment variable mutations from trusted PL/Perl to prevent arbitrary code execution by unprivileged users. - Fix CVE-2025-8714: Restrict psql meta-commands in plain-text dumps to prevent restore-time code injection.
Updated packages:
  • postgresql11-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:e419b2295508ba9e63c691d45b2066d02cf6508347975ddbc87a187ba7f2ec94
  • postgresql11-contrib-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:a7cd1d54982ce1bbde3c6120f3c14770080a795c0dd9ab0b857a312f24acb0fc
  • postgresql11-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:4c6fc780b219b298c236e146ae99bd840e50375c1173310c205b6bdb560de155
  • postgresql11-docs-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:b591cba2d50f3a3b6eaad2a768516680988edc236049e908d9d98eabc81489c6
  • postgresql11-libs-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:7f86e56c2b41215731ecf9d0b7a3a2cb54eaa1930af80b954196913f3a561dd3
  • postgresql11-plperl-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:52245996f9fbef09da178492e92e81298aa4352987e1cdb3e711f7a0aa658d93
  • postgresql11-plpython-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:f1c30a5db43deb401555b7c21e91f278debf261f7326a8d34f749eba8a7d2273
  • postgresql11-pltcl-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:e2ffbdf256b88fd2dc44ba86886f1f3a4f6d46a0e76013f3b498339861e8ddfd
  • postgresql11-server-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:07984c99472c0fd160247d4d7bcea41a61692bb1033b749b5b807b2f366874a1
  • postgresql11-server-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:b1774c1361b5c1c400b1ed502a1e592111576e05d21d5ad9d121a49313e4a2be
  • postgresql11-static-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:4172a174a9a9ab53170b6a789dfc8142676a7265db5a7d0de4d7f0a0271b4bde
  • postgresql11-test-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:d9ffc173fa0d1c1e9e9c628efbc76b05a88b741d3009b40881484170a3ae9d79
  • postgresql11-test-rpm-macros-11.22-1.el7.tuxcare.els2.noarch.rpm
    sha:3cb076f68745ccf6d11604ee3aa361f2afe50717c99aad870230a98dd116ba81
  • postgresql11-upgrade-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:f05e4836fae1544978a1a76590135bf7f2eae6cd9fea1c4b4fe9b1b6cd47e683
  • postgresql11-upgrade-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm
    sha:02aaefc233e2b4fec89717de801d046394143b8dd0ed36fa427141fea2073efe
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.