postgresql (SUSE:Linux Enterprise Module for Basesystem 15 SP6) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP6 package postgresql, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2024-10979 — CVSS 8.8 (high): Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database user to change sensitive process…
CVE-2025-12818 — CVSS 5.9 (medium): Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause…
CVE-2024-10976 — CVSS 4.2 (medium): Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended…
CVE-2024-10978 — CVSS 4.2 (medium): Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those…
CVE-2024-10977 — CVSS 3.1 (low): Client use of server error message in PostgreSQL allows a server not trusted under current SSL or GSS settings to furnish arbitrary non-NUL…
CVE-2025-12817 — CVSS 3.1 (low): Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE…