Security Advisory

CVE-2026-32286

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 19:40:51
Last updated 2026-07-01 12:04:50
Assigner Go
State PUBLISHED

Description

The DataRow.Decode function fails to properly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow message with a negative field length, causing a slice bounds out of range panic.