PostgreSQL Product Security Update Advisory (CVE-2026-6476)
Overview
A SQL Injection vulnerability, CVE-2026-6476, has been identified in the PostgreSQL product and a security update has been released to address it.
Target Products
- PostgreSQL version: 18.
- PostgreSQL version: 17.
Action taken
- a Vulnerability Patch has been made available in the latest update.
- you should follow the instructions to update to the latest version of the Vulnerability Patch.
- applicable patch versions are PostgreSQL version 18.4 and PostgreSQL version 17.10.