Issued at: 2025-03-17
Updated at: 2025-03-17
Synopsis
Important: libpq security update
Description
The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.
Security Fix(es):
* postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation (CVE-2025-1094)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected products
Rocky Linux 9 aarch64
Rocky Linux 9 ppc64le
Rocky Linux 9 s390x
Rocky Linux 9 x86_64
Fixes
2345548
CVEs
CVE-2025-1094
Affected packages
Rocky Linux 9 s390x - AppStream
libpq-debuginfo-0:13.20-1.el9_5.s390x.rpm
libpq-0:13.20-1.el9_5.s390x.rpm
libpq-0:13.20-1.el9_5.src.rpm
libpq-debugsource-0:13.20-1.el9_5.s390x.rpm
libpq-devel-0:13.20-1.el9_5.s390x.rpm
libpq-devel-debuginfo-0:13.20-1.el9_5.s390x.rpm
Rocky Linux 9 x86_64 - AppStream
libpq-debuginfo-0:13.20-1.el9_5.x86_64.rpm
libpq-0:13.20-1.el9_5.i686.rpm
libpq-0:13.20-1.el9_5.src.rpm
libpq-0:13.20-1.el9_5.x86_64.rpm
libpq-debugsource-0:13.20-1.el9_5.x86_64.rpm
libpq-devel-0:13.20-1.el9_5.i686.rpm
libpq-devel-0:13.20-1.el9_5.x86_64.rpm
libpq-devel-debuginfo-0:13.20-1.el9_5.x86_64.rpm
Rocky Linux 9 aarch64 - AppStream
libpq-0:13.20-1.el9_5.aarch64.rpm
libpq-0:13.20-1.el9_5.src.rpm
libpq-debuginfo-0:13.20-1.el9_5.aarch64.rpm
libpq-debugsource-0:13.20-1.el9_5.aarch64.rpm
libpq-devel-0:13.20-1.el9_5.aarch64.rpm
libpq-devel-debuginfo-0:13.20-1.el9_5.aarch64.rpm
Rocky Linux 9 ppc64le - AppStream
libpq-0:13.20-1.el9_5.ppc64le.rpm
libpq-0:13.20-1.el9_5.src.rpm
libpq-debuginfo-0:13.20-1.el9_5.ppc64le.rpm
libpq-debugsource-0:13.20-1.el9_5.ppc64le.rpm
libpq-devel-0:13.20-1.el9_5.ppc64le.rpm
libpq-devel-debuginfo-0:13.20-1.el9_5.ppc64le.rpm