pkg:Bitnami/postgresql-jdbc-driver

所有已知漏洞

• CRITICAL10.0CVE-2024-1597org.postgresql:postgresql vulnerable to SQL Injection via line comment generation
  from 0, < 42.2.28, >= 42.3.0, < 42.3.9, >= 42.4.0, < 42.4.4, >= 42.5.0, < 42.5.5, >= 42.6.0, < 42.6.1, >= 42.7.0, < 42.7.2
• CRITICAL9.8CVE-2022-26520Path traversal in org.postgresql:postgresql
  >= 42.1.0, < 42.1.5, >= 42.3.0, < 42.3.3
• HIGH8.2CVE-2025-49146pgjdbc Client Allows Fallback to Insecure Authentication Despite channelBinding=require Configuration
  >= 42.7.4, < 42.7.7
• HIGH7.7CVE-2020-13692Improper Restriction of XML External Entity Reference
  from 0, < 42.2.13
• HIGH7.5CVE-2026-42198pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS
  >= 42.2.0, < 42.7.11
• HIGH7.1CVE-2022-31197PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names
  from 0, < 42.2.26, >= 42.3.0, < 42.3.7 | >= 42.4.0, <= 42.4.0
• HIGH7.0CVE-2022-21724pgjdbc Does Not Check Class Instantiation when providing Plugin Classes
  from 0, < 42.2.25, >= 42.3.0, < 42.3.2
• MEDIUM4.7CVE-2022-41946TemporaryFolder on unix-like systems does not limit access to created files in pgjdbc
  >= 42.2.0, < 42.2.27, >= 42.3.0, < 42.3.8, >= 42.4.0, < 42.4.3, >= 42.5.0, < 42.5.1