Security Advisory

CVE-2026-32286

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 19:40:51

Last updated 2026-04-02 19:08:53

Assigner Go

State PUBLISHED

Description

The DataRow.Decode function fails to properly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow message with a negative field length, causing a slice bounds out of range panic.

← Browse all CVEs View on cve.org ↗