PostgreSQL Vulnerability Security Update Advisory

Aug 19 2025

Overview

PostgreSQL(https://www.postgresql.org/) has released a security update that fixes vulnerabilities in its shipped products. Users of affected products are advised to update to the latest version.

Affected Products

PostgreSQL 17

PostgreSQL 16

PostgreSQL 15

PostgreSQL 14

PostgreSQL 13

Resolved Vulnerabilities

SQL Injection Vulnerability in PostgreSQL (CVE-2025-8715, CVSS 8.8) [1] [2

Arbitrary Code Execution Vulnerability in PostgreSQL (CVE-2025-8714, CVSS 8.8) [2]

Vulnerability Patches

Please follow the security advisory published on August 14 to update to the appropriate version and the latest version.

PostgreSQL 17.6

PostgreSQL 16.10

PostgreSQL 15.14

PostgreSQL 14.19

PostgreSQL 13.22

Referenced Sites

[1] CVE-2025-8715 : PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server

https://www.postgresql.org/support/security/CVE-2025-8715/

[2] CVE-2025-8714 : PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client

https://www.postgresql.org/support/security/CVE-2025-8714/

PostgreSQL Vulnerability Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Google Chrome Browser (139.0.7258.138/.139) Security Update Advisory

Microsoft Edge browser (139.0.3405.102) version security update advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Google Chrome Browser (139.0.7258.138/.139) Security Update Advisory

Microsoft Edge browser (139.0.3405.102) version security update advisory