CVE-2026-32286
ADVISORY - githubSummary
The DataRow.Decode function fails to properly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow message with a negative field length, causing a slice bounds out of range panic.
Common Weakness Enumeration (CWE)
Improper Validation of Array Index
Improper Validation of Array Index
NIST
3.9
CVSS SCORE
7.5highGitHub
3.9
CVSS SCORE
7.5highDebian
-
Ubuntu
-
CVSS SCORE
N/AmediumGoLang
-
Rocky
-
CVSS SCORE
N/AhighRocky
-
CVSS SCORE
N/AhighChainguard
CGA-2gp2-5252-r938
-
Chainguard
CGA-722j-m72r-cchj
-
minimos
MINI-2pm7-6c29-7xvq
-
minimos
MINI-2prj-qvxh-pmc6
-
minimos
MINI-35m7-jc6c-j4c8
-
minimos
MINI-422m-rmqr-xc5m
-
minimos
MINI-443f-qw43-386c
-
minimos
MINI-62cj-85fp-48r2
-
minimos
MINI-66vf-59rm-rpq7
-
minimos
MINI-6fwx-9pvh-73j3
-
minimos
MINI-77c4-8ghx-vg9j
-
minimos
MINI-7mg6-6qfp-fphx
-
minimos
MINI-9637-mp6c-88ww
-
minimos
MINI-c254-p7wx-5j7j
-
minimos
MINI-c363-hphw-q6hx
-
minimos
MINI-f42r-6v96-6hwr
-
minimos
MINI-fqx4-rwgx-q5mc
-
minimos
MINI-ghqf-h4wf-358p
-
minimos
MINI-ghvx-wm83-8234
-
minimos
MINI-mm87-4xv9-52f4
-
minimos
MINI-pxgr-qjfw-23xq
-
minimos
MINI-qh8h-rmmr-jg28
-
minimos
MINI-v9w2-x6q6-f2r6
-
minimos
MINI-vfvr-2fr8-gpxw
-
minimos
MINI-w4w5-p9gr-wfpp
-
minimos
MINI-wq3x-6jx7-xcrq
-
minimos
MINI-wxxr-3w2j-mf3g
-