Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Lightspeed
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Lightspeed
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2026:29815 - Security Advisory
Issued:
2026-06-25
Updated:
2026-06-25

RHSA-2026:29815 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: postgresql:12 security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

PostgreSQL is an advanced object-relational database management system (DBMS).

Security Fix(es):

  • postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind (CVE-2026-6475)
  • postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory (CVE-2026-6477)
  • postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison (CVE-2026-6478)
  • postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write (CVE-2026-6473)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Fixes

  • BZ - 2477439 - CVE-2026-6475 postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
  • BZ - 2477442 - CVE-2026-6477 postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
  • BZ - 2477447 - CVE-2026-6478 postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
  • BZ - 2477448 - CVE-2026-6473 postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write

CVEs

  • CVE-2026-6473
  • CVE-2026-6475
  • CVE-2026-6477
  • CVE-2026-6478

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6

SRPM
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: 82c8ea0e72ae72fc696a5bffd3ff569476d7210a9506ad99c98c48c163a37843
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: 45156076f19a7507973697923e14147b1285d7bb00615978a347aa878e384aae
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: b521220b59d18b13b7a35c744b144c952ebde08f2553747cecc0e86b8737eaea
postgresql-12.22-1.module+el8.6.0+24433+21669af6.4.src.rpm SHA-256: e20047bf9e998921270ca5fd9099821aa6c08a153d966be1666647647119848f
x86_64
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: cb60723f9b6e3601abcb4c474a4878f8582b1edde031af7e721df820da5b62dd
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: c8caad1c9ba892a7e2de313f3b1738cb6fefaf427fc5d483a8521b97e8e1a02c
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: a8741b343a45194fe30396317552c1aa3776fa9a9d73beee505db60c7996370e
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: e56e99127598dbabd012dd019b7a4c33a738add836a0aa5f4b489cc8513d10b4
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: ba48771ef15f6946785b8f016e420cc502344a0248262fb55034b3d011fec2a6
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 256f06fce473bd9eadcb7465a0e6bdf551c92c49778ac6ec91847eb1932db840
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 2eb5e674808b184a01f53b8bf84b334bf210b1affaad6dda7c599eb42065922c
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 53bcf8ca8e4d43b7185391409dd87f5604a437d9b15a25f4113927545e8e1450
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 9610cb4d1cd18812a51b238a38e1260e8b86243b4cb4536da621195e148313ef
postgresql-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 2453d0017cb5cf9e76272c6f81895c35ad7d01bc6d43c644f9b8b6a840225e27
postgresql-contrib-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 0e13e5ee872e0aa139b6117c84e1190fe167eb5f88b3d889780bf6671898f535
postgresql-contrib-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 130e4773a3ac18bc15e2580ef29de9c1c65e9dceaa3391e01fc8b6785f38cf62
postgresql-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: ba5d85a746c2cb0e2bce985a95657c7167b04182d6be08e4624be8b69dd7943b
postgresql-debugsource-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: f8def7599e29da40c398bcd10ea3875d5d782a8f5a2cd77a727733e054b1fbc3
postgresql-docs-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 101fb153b504ecdd5b9432e51b7653213814bc82a4d28b7012a3615bbf192df1
postgresql-docs-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 26807d4af3e84b74c974e79300f41677bccd93198937f42f8144c22464068bd0
postgresql-plperl-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 52377eb9939a722134c36eaa0846cc235209f1164b422bbfa31b17940aec3606
postgresql-plperl-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: be88dcc366615d77a4eb2a17fd91c18310c270ccd9cda7995a48bd95b9321d0d
postgresql-plpython3-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 0bc99f50cfd3b536d7234660a968fb8abe2ae55fd495477b9e5d2ee68b748781
postgresql-plpython3-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 682764b7fba15367384100ff7d8cb34ff6080a6d87bf9d69e5dc53c87bb8d84a
postgresql-pltcl-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 8be5b9e49037aa43e29efd12af66bae97400de293b874c41014d39c86a22682d
postgresql-pltcl-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: b7b693e4aaac4011f69918205a4ba431a5d3602ed234a3c8cbd7830eeb4f32d5
postgresql-server-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 38ba775db97f74f6182f39992aca4ef6633b0ecc9d6dbf53f822b31535d66c05
postgresql-server-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 3e07df4ccb9f98368385792d6fb7550eefe8792c6b7902105f1da16b9183406a
postgresql-server-devel-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: e71ec3b3492a1167a4f998d4203557c3145d9b5da2b6cb6ccea483355b02c77f
postgresql-server-devel-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: db9fbc3dfb2b865a3baad29ae29c3770ec9d4830ad26341d82dbec6b64d6e06f
postgresql-static-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 4ebd11e960bdd88ae63e8ddacafd004e434d52f1d49bae77d8b52ef003777a1c
postgresql-test-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: d74c95108d8a4dce9aaa7823142342cd4a0e443b7fea6224e2cbdc2bbc630863
postgresql-test-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 9f3c19ca500efef647cf7a502f4cae8b7a980ad83c9bcbace3fbff82008b11f0
postgresql-test-rpm-macros-12.22-1.module+el8.6.0+24433+21669af6.4.noarch.rpm SHA-256: 48c1069a18b992b0568677852bb526600e713d51f2b8c2b3cf97758671cd4c5f
postgresql-upgrade-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: c2117e18f3725f54ac843a75fc6d24ea63dfd72f94e8974f303d47a832fcaa41
postgresql-upgrade-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 7e82bd5a1ab5c490fd4b7a8d423fac86b28dc3c12296c2be67abe8e924772eba
postgresql-upgrade-devel-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: acf11def361a32965eec9b4c17b204b06191fb9aa87d6afefa6f9b332e5f2ea8
postgresql-upgrade-devel-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 851e41eb0fad0d3d554d0b04d95fa286ad2ce0d6554e645eaa10db1efc584fa3

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: 82c8ea0e72ae72fc696a5bffd3ff569476d7210a9506ad99c98c48c163a37843
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: 45156076f19a7507973697923e14147b1285d7bb00615978a347aa878e384aae
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.src.rpm SHA-256: b521220b59d18b13b7a35c744b144c952ebde08f2553747cecc0e86b8737eaea
postgresql-12.22-1.module+el8.6.0+24433+21669af6.4.src.rpm SHA-256: e20047bf9e998921270ca5fd9099821aa6c08a153d966be1666647647119848f
x86_64
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: cb60723f9b6e3601abcb4c474a4878f8582b1edde031af7e721df820da5b62dd
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: c8caad1c9ba892a7e2de313f3b1738cb6fefaf427fc5d483a8521b97e8e1a02c
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: a8741b343a45194fe30396317552c1aa3776fa9a9d73beee505db60c7996370e
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: e56e99127598dbabd012dd019b7a4c33a738add836a0aa5f4b489cc8513d10b4
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: ba48771ef15f6946785b8f016e420cc502344a0248262fb55034b3d011fec2a6
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 256f06fce473bd9eadcb7465a0e6bdf551c92c49778ac6ec91847eb1932db840
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 2eb5e674808b184a01f53b8bf84b334bf210b1affaad6dda7c599eb42065922c
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 53bcf8ca8e4d43b7185391409dd87f5604a437d9b15a25f4113927545e8e1450
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm SHA-256: 9610cb4d1cd18812a51b238a38e1260e8b86243b4cb4536da621195e148313ef
postgresql-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 2453d0017cb5cf9e76272c6f81895c35ad7d01bc6d43c644f9b8b6a840225e27
postgresql-contrib-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 0e13e5ee872e0aa139b6117c84e1190fe167eb5f88b3d889780bf6671898f535
postgresql-contrib-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 130e4773a3ac18bc15e2580ef29de9c1c65e9dceaa3391e01fc8b6785f38cf62
postgresql-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: ba5d85a746c2cb0e2bce985a95657c7167b04182d6be08e4624be8b69dd7943b
postgresql-debugsource-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: f8def7599e29da40c398bcd10ea3875d5d782a8f5a2cd77a727733e054b1fbc3
postgresql-docs-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 101fb153b504ecdd5b9432e51b7653213814bc82a4d28b7012a3615bbf192df1
postgresql-docs-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 26807d4af3e84b74c974e79300f41677bccd93198937f42f8144c22464068bd0
postgresql-plperl-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 52377eb9939a722134c36eaa0846cc235209f1164b422bbfa31b17940aec3606
postgresql-plperl-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: be88dcc366615d77a4eb2a17fd91c18310c270ccd9cda7995a48bd95b9321d0d
postgresql-plpython3-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 0bc99f50cfd3b536d7234660a968fb8abe2ae55fd495477b9e5d2ee68b748781
postgresql-plpython3-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 682764b7fba15367384100ff7d8cb34ff6080a6d87bf9d69e5dc53c87bb8d84a
postgresql-pltcl-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 8be5b9e49037aa43e29efd12af66bae97400de293b874c41014d39c86a22682d
postgresql-pltcl-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: b7b693e4aaac4011f69918205a4ba431a5d3602ed234a3c8cbd7830eeb4f32d5
postgresql-server-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 38ba775db97f74f6182f39992aca4ef6633b0ecc9d6dbf53f822b31535d66c05
postgresql-server-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 3e07df4ccb9f98368385792d6fb7550eefe8792c6b7902105f1da16b9183406a
postgresql-server-devel-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: e71ec3b3492a1167a4f998d4203557c3145d9b5da2b6cb6ccea483355b02c77f
postgresql-server-devel-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: db9fbc3dfb2b865a3baad29ae29c3770ec9d4830ad26341d82dbec6b64d6e06f
postgresql-static-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 4ebd11e960bdd88ae63e8ddacafd004e434d52f1d49bae77d8b52ef003777a1c
postgresql-test-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: d74c95108d8a4dce9aaa7823142342cd4a0e443b7fea6224e2cbdc2bbc630863
postgresql-test-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 9f3c19ca500efef647cf7a502f4cae8b7a980ad83c9bcbace3fbff82008b11f0
postgresql-test-rpm-macros-12.22-1.module+el8.6.0+24433+21669af6.4.noarch.rpm SHA-256: 48c1069a18b992b0568677852bb526600e713d51f2b8c2b3cf97758671cd4c5f
postgresql-upgrade-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: c2117e18f3725f54ac843a75fc6d24ea63dfd72f94e8974f303d47a832fcaa41
postgresql-upgrade-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 7e82bd5a1ab5c490fd4b7a8d423fac86b28dc3c12296c2be67abe8e924772eba
postgresql-upgrade-devel-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: acf11def361a32965eec9b4c17b204b06191fb9aa87d6afefa6f9b332e5f2ea8
postgresql-upgrade-devel-debuginfo-12.22-1.module+el8.6.0+24433+21669af6.4.x86_64.rpm SHA-256: 851e41eb0fad0d3d554d0b04d95fa286ad2ce0d6554e645eaa10db1efc584fa3

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2026 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility