[El-errata] ELSA-2026-3887 Important: Oracle Linux 10 postgresql16 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Mon Mar 9 13:55:54 UTC 2026
Oracle Linux Security Advisory ELSA-2026-3887
http://linux.oracle.com/errata/ELSA-2026-3887.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
x86_64:
postgresql-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-contrib-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-docs-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-plperl-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-plpython3-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-pltcl-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-private-devel-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-private-libs-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-server-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-server-devel-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-static-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-test-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-test-rpm-macros-16.13-1.0.1.el10_1.noarch.rpm
postgresql-upgrade-16.13-1.0.1.el10_1.x86_64.rpm
postgresql-upgrade-devel-16.13-1.0.1.el10_1.x86_64.rpm
aarch64:
postgresql-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-contrib-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-docs-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-plperl-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-plpython3-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-pltcl-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-private-devel-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-private-libs-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-server-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-server-devel-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-static-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-test-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-test-rpm-macros-16.13-1.0.1.el10_1.noarch.rpm
postgresql-upgrade-16.13-1.0.1.el10_1.aarch64.rpm
postgresql-upgrade-devel-16.13-1.0.1.el10_1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/postgresql16-16.13-1.0.1.el10_1.src.rpm
Related CVEs:
CVE-2026-2004
CVE-2026-2005
CVE-2026-2006
Description of changes:
[16.13-1.0.1]
- Replace upstream reference [Orabug: 37044148]
[16.13-1]
- Update to 16.13
- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input
- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow
- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length
- Resolves: RHEL-149364 RHEL-149398 RHEL-149332
More information about the El-errata
mailing list