2414826 – (CVE-2025-12818) CVE-2025-12818 postgresql: libpq undersizes allocations, via integer wraparound

Bug 2414826 (CVE-2025-12818) - CVE-2025-12818 postgresql: libpq undersizes allocations, via integer wraparound

Summary: CVE-2025-12818 postgresql: libpq undersizes allocations, via integer wraparound

Keywords:
Status:	NEW
Alias:	CVE-2025-12818
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2415314 2415315 2415316 2415317 2415318 2415319 2415320 2415321 2415322 2415323
Blocks:
TreeView+	depends on / blocked

Reported:	2025-11-13 14:01 UTC by OSIDB Bzimport
Modified:	2025-11-17 06:41 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-11-13 14:01:46 UTC

Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes.  This results in a segmentation fault for the application using libpq.  Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.

Note You need to log in before you can comment on or make changes to this bug.