ELSA-2026-24348

ELSA-2026-24348 - postgresql-jdbc security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-07-16

Description


[42.7.2-1.2]
- Add tests for CVE-2026-42198

[42.7.2-1.1]
- Limit SCRAM PBKDF2 iterations to prevent DoS via malicious server
- Resolves: RHEL-173479


Related CVEs


CVE-2026-42198

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) postgresql-jdbc-42.7.2-1.el10_2.2.src.rpmb86f06970faaee3d88ea90d9f80ff4a84eb6fb1c13968a2dd30be307665fbefd-ol10_aarch64_appstream
postgresql-jdbc-42.7.2-1.el10_2.2.noarch.rpme2810169d4370d85ecb4a9daf2631b61fcaed95b8483de939f36288c9f0f755a-ol10_aarch64_appstream
Oracle Linux 10 (x86_64) postgresql-jdbc-42.7.2-1.el10_2.2.src.rpmb86f06970faaee3d88ea90d9f80ff4a84eb6fb1c13968a2dd30be307665fbefd-ol10_x86_64_appstream
postgresql-jdbc-42.7.2-1.el10_2.2.noarch.rpme2810169d4370d85ecb4a9daf2631b61fcaed95b8483de939f36288c9f0f755a-ol10_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete