CVE-2026-6575

ADVISORY - nist

Summary

Buffer over-read in PostgreSQL function pg_restore_attribute_stats() accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL 18.4 are affected. Versions before PostgreSQL 18 are unaffected.

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-126⁠

Buffer Over-read

Impacted images

Advisories

NIST

CREATED

23 hours ago

UPDATED

21 hours ago

ADVISORY IDCVE-2026-6575⁠

EXPLOITABILITY SCORE

2.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

4.3medium

Alpine

CREATED

16 hours ago

UPDATED

1 hour ago

ADVISORY IDCVE-2026-6575⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

20 hours ago

UPDATED

8 hours ago

ADVISORY IDCVE-2026-6575⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY