Red Hat Product Errata RHSA-2026:0265 - Security Advisory
Issued:
2026-01-08
Updated:
2026-01-08

RHSA-2026:0265 - Security Advisory

Synopsis

Moderate: postgresql:13 security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the postgresql:13 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

PostgreSQL is an advanced object-relational database management system (DBMS).

Security Fix(es):

  • postgresql: CREATE STATISTICS does not check for schema CREATE privilege (CVE-2025-12817)
  • postgresql: libpq undersizes allocations, via integer wraparound (CVE-2025-12818)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Fixes

  • BZ - 2414825 - CVE-2025-12817 postgresql: CREATE STATISTICS does not check for schema CREATE privilege
  • BZ - 2414826 - CVE-2025-12818 postgresql: libpq undersizes allocations, via integer wraparound

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
pgaudit-1.5.0-1.module+el8.4.0+8873+b821c30a.src.rpm SHA-256: 69d37c6427f18ed1bd6d29cb2f54e083fb125c162fcb59a687c67528a2fb08e9
postgres-decoderbufs-0.10.0-2.module+el8.4.0+8873+b821c30a.src.rpm SHA-256: 1afa4d664011737a91d8efe7f3ba1f1f9bd6c8e7c510d867bbd1ff41832fe95a
postgresql-13.23-1.module+el8.4.0+23703+6d959a24.src.rpm SHA-256: e84be43f2453a2d8a22f3cbdf760b1b853c77a5cad2c83e03084dedab9fa3ab5
x86_64
pgaudit-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 0ee2cdf7b40988a40a70294764149d58ef44f12b69ac85752465444a5b011340
pgaudit-debuginfo-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: ed444ce541962f85a37cae58466a203788f69a184d7dbeec159d7b424ab0ff8c
pgaudit-debugsource-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 3092f6f3bd32f8b30489fed2aad9d9884f77da6872a53d6b183a49b0224e7d91
postgres-decoderbufs-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: c2d5f6f1d41fd29098090d75b4927696fc01450d42ae75311c14056e574645c0
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 7275a1229edefdcf0df138ea35e317fb9143461c6122cb4c8a3ec2821f5e1b65
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: c7145f0c47def50c037cd2694d408fa03627e7581a1303e8d7ccfb5cf47918e6
postgresql-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 339fa81534db0508a958548ada171bc46842a6067956fc120abc059cffc3f1f2
postgresql-contrib-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: af0870983622e0288e3755689ace5cce2d8ba2ae7cd119960ab854a297d6b250
postgresql-contrib-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: fba07e6c2e786922125a7ef5b010815d2800c2d712b9af4b38ba871f6f26c118
postgresql-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b64980376e16aa6cd13bbb88f8a8456bdb8e3873bcc1af36679d1cf1469fe9f8
postgresql-debugsource-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: c28e79c459141eee9ad4f830adf70308a52c98e5219bf8455ad942092b2bd8ae
postgresql-docs-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 03172539eb305060f1e578d7d07c9641799e26caa93acae85ebad4914c11cd20
postgresql-docs-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 770a2ef5b692b78d6a67dbbadd6730ee25151dee05b4fccefb50f990ec424d59
postgresql-plperl-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b55239e1e3c4337e89f6456c569ab643083b01837818fc3d6f6907fefc9edb9a
postgresql-plperl-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: d0ed8f6f872e71df174ba821bb5a7457f71fa04acc6b09b0c6cfadda1aa445a7
postgresql-plpython3-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 7b6a6b41f44535deab6d83865013dddfb61f7b801c06cfcb50a0c7db353d11bb
postgresql-plpython3-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 521d993455d1fdbb8a46da0e122f13256161298b797e4bd45fee0b5ef2e08dee
postgresql-pltcl-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b04093cf3a3708cec89e6040a55183fd775331590dee0c21f56e04b5f049f3cf
postgresql-pltcl-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: ba501b1d6a554ca9887d2b44b57edcb78c7c54aff12c682ddb67e82bbfa584bf
postgresql-server-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: da621b9aac4ce6a6a27c2b629443c75a5c1497bd4b0c75b1d8ffcb754ee2de2b
postgresql-server-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: a52abbd04ccf2b3697084a6eee241ca4ce3879919f1e0266d6c3bccebb5aa8fc
postgresql-server-devel-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 856966428974e2c37d7f348bc75f11da9ff3144e2181882a7c4bd7375d46282a
postgresql-server-devel-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: e7d71a4db53651774351c195efd56b895be4f6abad0d574b94e1105d567821f2
postgresql-static-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: e25e361af4e7563d94f23d0225f547f437d079d74bb44e65a5ac560e7c93d672
postgresql-test-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 87aedde6466b11563046703da590da238686cd8ea870180ceaa5dd52ff427d4f
postgresql-test-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 97498d667faf9e8d4647ff81ee6e53c1b7e371a97c9c193b9ede2ad20718d31a
postgresql-test-rpm-macros-13.23-1.module+el8.4.0+23703+6d959a24.noarch.rpm SHA-256: 09caa3db6d7d6f1a969aa5f1b905c4cc5a14b344d8902cc4d2128bbfd86d6f60
postgresql-upgrade-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 5c75189c87ca80fdee5359cdbf6cd1a426236fe665a8b9fd7517b0cdff99be2b
postgresql-upgrade-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 95da465c204360ece278d96d9b06c37d7931a9be04d83496ef1b1dbf33925ef8
postgresql-upgrade-devel-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: cc6fc6d5fce24f7a8993748dc6b3faf86697a2fe48408962b724532a350f79f1
postgresql-upgrade-devel-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 615bafb2d82bb30de696141fbf37639a7eb7872779fd895942972101f7c4696f

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
pgaudit-1.5.0-1.module+el8.4.0+8873+b821c30a.src.rpm SHA-256: 69d37c6427f18ed1bd6d29cb2f54e083fb125c162fcb59a687c67528a2fb08e9
postgres-decoderbufs-0.10.0-2.module+el8.4.0+8873+b821c30a.src.rpm SHA-256: 1afa4d664011737a91d8efe7f3ba1f1f9bd6c8e7c510d867bbd1ff41832fe95a
postgresql-13.23-1.module+el8.4.0+23703+6d959a24.src.rpm SHA-256: e84be43f2453a2d8a22f3cbdf760b1b853c77a5cad2c83e03084dedab9fa3ab5
x86_64
pgaudit-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 0ee2cdf7b40988a40a70294764149d58ef44f12b69ac85752465444a5b011340
pgaudit-debuginfo-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: ed444ce541962f85a37cae58466a203788f69a184d7dbeec159d7b424ab0ff8c
pgaudit-debugsource-1.5.0-1.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 3092f6f3bd32f8b30489fed2aad9d9884f77da6872a53d6b183a49b0224e7d91
postgres-decoderbufs-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: c2d5f6f1d41fd29098090d75b4927696fc01450d42ae75311c14056e574645c0
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: 7275a1229edefdcf0df138ea35e317fb9143461c6122cb4c8a3ec2821f5e1b65
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.4.0+8873+b821c30a.x86_64.rpm SHA-256: c7145f0c47def50c037cd2694d408fa03627e7581a1303e8d7ccfb5cf47918e6
postgresql-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 339fa81534db0508a958548ada171bc46842a6067956fc120abc059cffc3f1f2
postgresql-contrib-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: af0870983622e0288e3755689ace5cce2d8ba2ae7cd119960ab854a297d6b250
postgresql-contrib-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: fba07e6c2e786922125a7ef5b010815d2800c2d712b9af4b38ba871f6f26c118
postgresql-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b64980376e16aa6cd13bbb88f8a8456bdb8e3873bcc1af36679d1cf1469fe9f8
postgresql-debugsource-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: c28e79c459141eee9ad4f830adf70308a52c98e5219bf8455ad942092b2bd8ae
postgresql-docs-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 03172539eb305060f1e578d7d07c9641799e26caa93acae85ebad4914c11cd20
postgresql-docs-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 770a2ef5b692b78d6a67dbbadd6730ee25151dee05b4fccefb50f990ec424d59
postgresql-plperl-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b55239e1e3c4337e89f6456c569ab643083b01837818fc3d6f6907fefc9edb9a
postgresql-plperl-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: d0ed8f6f872e71df174ba821bb5a7457f71fa04acc6b09b0c6cfadda1aa445a7
postgresql-plpython3-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 7b6a6b41f44535deab6d83865013dddfb61f7b801c06cfcb50a0c7db353d11bb
postgresql-plpython3-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 521d993455d1fdbb8a46da0e122f13256161298b797e4bd45fee0b5ef2e08dee
postgresql-pltcl-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: b04093cf3a3708cec89e6040a55183fd775331590dee0c21f56e04b5f049f3cf
postgresql-pltcl-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: ba501b1d6a554ca9887d2b44b57edcb78c7c54aff12c682ddb67e82bbfa584bf
postgresql-server-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: da621b9aac4ce6a6a27c2b629443c75a5c1497bd4b0c75b1d8ffcb754ee2de2b
postgresql-server-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: a52abbd04ccf2b3697084a6eee241ca4ce3879919f1e0266d6c3bccebb5aa8fc
postgresql-server-devel-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 856966428974e2c37d7f348bc75f11da9ff3144e2181882a7c4bd7375d46282a
postgresql-server-devel-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: e7d71a4db53651774351c195efd56b895be4f6abad0d574b94e1105d567821f2
postgresql-static-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: e25e361af4e7563d94f23d0225f547f437d079d74bb44e65a5ac560e7c93d672
postgresql-test-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 87aedde6466b11563046703da590da238686cd8ea870180ceaa5dd52ff427d4f
postgresql-test-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 97498d667faf9e8d4647ff81ee6e53c1b7e371a97c9c193b9ede2ad20718d31a
postgresql-test-rpm-macros-13.23-1.module+el8.4.0+23703+6d959a24.noarch.rpm SHA-256: 09caa3db6d7d6f1a969aa5f1b905c4cc5a14b344d8902cc4d2128bbfd86d6f60
postgresql-upgrade-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 5c75189c87ca80fdee5359cdbf6cd1a426236fe665a8b9fd7517b0cdff99be2b
postgresql-upgrade-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 95da465c204360ece278d96d9b06c37d7931a9be04d83496ef1b1dbf33925ef8
postgresql-upgrade-devel-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: cc6fc6d5fce24f7a8993748dc6b3faf86697a2fe48408962b724532a350f79f1
postgresql-upgrade-devel-debuginfo-13.23-1.module+el8.4.0+23703+6d959a24.x86_64.rpm SHA-256: 615bafb2d82bb30de696141fbf37639a7eb7872779fd895942972101f7c4696f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.