[Git][security-tracker-team/security-tracker][master] Add notes for CVE-2025-1094/postgresql

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Feb 13 17:04:44 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
de90c8a5 by Salvatore Bonaccorso at 2025-02-13T18:04:22+01:00
Add notes for CVE-2025-1094/postgresql

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,6 +2,14 @@ CVE-2025-1094 [Harden PQescapeString and allied functions against invalidly-enco
 	- postgresql-17 17.3-1
 	- postgresql-15 <removed>
 	- postgresql-13 <removed>
+	NOTE: https://www.postgresql.org/support/security/CVE-2025-1094/
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=7d43ca6fe068015b403ffa1762f4df4efdf68b69 (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=61ad93cdd48ecc8c6edf943f4d888a9325b66882 (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=43a77239d412db194a69b18b7850580e3b78218f (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=02d4d87ac20e2698b5375b347c451c55045e388d (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=dd3c1eb38e9add293f8be59b6aec7574e8584bdb (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=05abb0f8303a78921f7113bee1d72586142df99e (REL_17_3)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=85c1fcc6563843d7ee7ae6f81f29ef813e77a4b6 (REL_17_3)
 CVE-2025-21701 [net: avoid race between device unregistration and ethnl ops]
 	- linux 6.12.13-1
 	NOTE: https://git.kernel.org/linus/12e070eb6964b341b41677fd260af5a305316a1f (6.14-rc1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de90c8a5e33356ce4791454fc43ae7b1bd085699

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/de90c8a5e33356ce4791454fc43ae7b1bd085699
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250213/6addfb61/attachment.htm>

More information about the debian-security-tracker-commits mailing list