CVE-2025-4207

ADVISORY - nist

Summary

Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.

EPSS Score⁠: 0.00326 (0.557)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-126⁠

Buffer Over-read

ADVISORY - redhat

CWE-126⁠

Buffer Over-read

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.