Primary

Context

PostgreSQL Buffer Over-Read Vulnerability in pg_restore_attribute_stats Function

Vulnerability

Patched

A buffer over-read vulnerability has been identified in the PostgreSQL function pg_restore_attribute_stats(). This issue arises because the function accepts array values of mismatched lengths, leading to query planning that reads beyond the end of one array. As a result, a table maintainer could potentially infer memory values past the array's boundary. This vulnerability affects PostgreSQL major version 18, minor versions prior to 18.4. Versions before PostgreSQL 18 are not affected.

Impact

Exploitation of this vulnerability allows for a buffer over-read, where memory values beyond the intended array boundary can be accessed. This could lead to information disclosure by allowing a table maintainer to infer sensitive memory contents.

Remediation

Users can upgrade to PostgreSQL version 18.4 to address this vulnerability. Instructions for upgrading can be found in the PostgreSQL versioning policy.

Added: May 14, 2026, 2:19 PM

Updated: May 14, 2026, 2:19 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

0.6

exploitability

4.9

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

0.6

exploitability

4.9

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PostgreSQL Buffer Over-Read Vulnerability in pg_restore_attribute_stats Function

Vulnerability

Impact

Remediation

Affected Products

PostgreSQL

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating