{"id":"CVE-2025-4207","details":"Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination.  This affects the database server and also libpq.  Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.","aliases":["BIT-postgresql-2025-4207"],"modified":"2026-04-10T05:26:31.362069Z","published":"2025-05-08T15:15:48Z","related":["MGASA-2025-0155","SUSE-SU-2025:01644-1","SUSE-SU-2025:01644-2","SUSE-SU-2025:01654-1","SUSE-SU-2025:01661-1","SUSE-SU-2025:01661-2","SUSE-SU-2025:01705-1","SUSE-SU-2025:01748-1","SUSE-SU-2025:01748-2","SUSE-SU-2025:01749-1","SUSE-SU-2025:01750-1","SUSE-SU-2025:01765-1","SUSE-SU-2025:01766-1","SUSE-SU-2025:01766-2","SUSE-SU-2025:01767-1","SUSE-SU-2025:01772-1","SUSE-SU-2025:01782-1","SUSE-SU-2025:01782-2","SUSE-SU-2025:01783-1","SUSE-SU-2025:01783-2","SUSE-SU-2025:01785-1","SUSE-SU-2025:01786-1","SUSE-SU-2025:01786-2","openSUSE-SU-2025:15137-1","openSUSE-SU-2025:15138-1","openSUSE-SU-2025:15139-1","openSUSE-SU-2025:15140-1","openSUSE-SU-2025:15151-1"],"references":[{"type":"WEB","url":"https://www.postgresql.org/support/security/CVE-2025-4207/"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2025/05/09/3"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00011.html"}],"schema_version":"1.7.5"}