Issued at: 2026-01-17
Updated at: 2026-01-21
Synopsis
Moderate: libpq security update
Description
The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.
Security Fix(es):
* postgresql: libpq undersizes allocations, via integer wraparound (CVE-2025-12818)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected products
Rocky Linux 8 aarch64
Rocky Linux 8 x86_64
Fixes
2414826
CVEs
CVE-2025-12818
Affected packages
Rocky Linux 8 aarch64 - AppStream
libpq-0:13.23-1.el8_10.aarch64.rpm
libpq-0:13.23-1.el8_10.src.rpm
libpq-debuginfo-0:13.23-1.el8_10.aarch64.rpm
libpq-debugsource-0:13.23-1.el8_10.aarch64.rpm
libpq-devel-0:13.23-1.el8_10.aarch64.rpm
libpq-devel-debuginfo-0:13.23-1.el8_10.aarch64.rpm
Rocky Linux 8 x86_64 - AppStream
libpq-0:13.23-1.el8_10.i686.rpm
libpq-0:13.23-1.el8_10.src.rpm
libpq-0:13.23-1.el8_10.x86_64.rpm
libpq-debuginfo-0:13.23-1.el8_10.i686.rpm
libpq-debuginfo-0:13.23-1.el8_10.x86_64.rpm
libpq-debugsource-0:13.23-1.el8_10.i686.rpm
libpq-debugsource-0:13.23-1.el8_10.x86_64.rpm
libpq-devel-0:13.23-1.el8_10.i686.rpm
libpq-devel-0:13.23-1.el8_10.x86_64.rpm
libpq-devel-debuginfo-0:13.23-1.el8_10.i686.rpm
libpq-devel-debuginfo-0:13.23-1.el8_10.x86_64.rpm