Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Mondoo Vulnerability Intelligence
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Package updates are available for Amazon Linux 2023 that fix the following vulnerabilities: CVE-2025-12818: Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
CVE-2025-12817: Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.
16.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.116.11-1.amzn2023.0.1