2455975 – (CVE-2026-33815) CVE-2026-33815 github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability

Bug 2455975 (CVE-2026-33815) - CVE-2026-33815 github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability

Summary: CVE-2026-33815 github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety v...

Keywords:
Status:	NEW
Alias:	CVE-2026-33815
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2456295 2456299 2456301 2456303 2456305 2456307 2456309 2456297 2456308
Blocks:
TreeView+	depends on / blocked

Reported:	2026-04-07 16:01 UTC by OSIDB Bzimport
Modified:	2026-05-26 03:54 UTC (History)
CC List:	38 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2026:17789	0	None	None	None	2026-05-26 03:54:37 UTC

Description OSIDB Bzimport 2026-04-07 16:01:48 UTC

Memory-safety vulnerability in github.com/jackc/pgx/v5.

Comment 2 errata-xmlrpc 2026-05-26 03:54:34 UTC

This issue has been addressed in the following products:

  Cryostat 4 on RHEL 9

Via RHSA-2026:17789 https://access.redhat.com/errata/RHSA-2026:17789

Note You need to log in before you can comment on or make changes to this bug.

aazores
akostadi
alcohan
amasferr
amctagga
aoconnor
bdettelb
bniver
cmah
dmayorov
doconnor
eaguilar
ebaron
eborisov
flucifre
gmeno
gparvin
groman
jbalunas
jkoehler
jlledo
jolong
lball
lphiri
manissin
mbenjamin
mhackett
ngough
pahickey
pantinor
pjindal
rhaigner
rhel-process-autobot
sostapov
tsedmik
vereddy
veshanka
watson-tool-maintainers