This bug was fixed in the package postgresql-12 - 12.22-0ubuntu0.20.04.4
---------------
postgresql-12 (12.22-0ubuntu0.20.04.4) focal-security; urgency=medium
* SECURITY UPDATE: crash via incomplete multibyte character
- debian/patches/CVE-2025-4207.patch: with GB18030, prevent SIGSEGV
from reading past end of allocation in
src/backend/utils/mb/mbutils.c, src/backend/utils/mb/wchar.c,
src/include/mb/pg_wchar.h, src/interfaces/libpq/fe-exec.c,
src/interfaces/libpq/fe-misc.c,
src/test/modules/test_escape/test_escape.c.
- CVE-2025-4207
-- Marc Deslauriers <[email protected]> Mon, 12 May 2025
14:17:28 +0200
** Changed in: postgresql-12 (Ubuntu Focal)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-4207
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2095233
Title:
tzdata 2025a release
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/exchange-calendars/+bug/2095233/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
