Skip to content

Upgrade postgresql JDBC driver to 42.7.13 to fix CVE-2026-54291#401

Merged
laffer1 merged 2 commits into
masterfrom
copilot/fix-cve-2026-54291
Jul 12, 2026
Merged

Upgrade postgresql JDBC driver to 42.7.13 to fix CVE-2026-54291#401
laffer1 merged 2 commits into
masterfrom
copilot/fix-cve-2026-54291

Conversation

Copilot AI commented Jul 12, 2026

Copy link
Copy Markdown
Contributor

CVE-2026-54291 (Medium) was detected in postgresql-42.7.9.jar. Bumps the PostgreSQL JDBC driver to the latest 42.7.13 patch release which supersedes the affected version.

Changes

  • pom.xml: org.postgresql:postgresql 42.7.1242.7.13

@laffer1

laffer1 commented Jul 12, 2026

Copy link
Copy Markdown
Member

Snyk checks have passed. No issues have been found so far.

Status Scan Engine Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

Copilot AI changed the title [WIP] Fix CVE-2026-54291 vulnerability in postgresql-42.7.9.jar Upgrade postgresql JDBC driver to 42.7.13 to fix CVE-2026-54291 Jul 12, 2026
Copilot AI requested a review from laffer1 July 12, 2026 19:11
@sonarqubecloud

Copy link
Copy Markdown

@laffer1 laffer1 marked this pull request as ready for review July 12, 2026 19:16
Copilot AI review requested due to automatic review settings July 12, 2026 19:16
@laffer1 laffer1 merged commit eebc2f9 into master Jul 12, 2026
12 checks passed

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates the PostgreSQL JDBC driver dependency to a patched version to address CVE-2026-54291 detected in older postgresql-42.7.x artifacts.

Changes:

  • Bump org.postgresql:postgresql from 42.7.12 to 42.7.13 in Maven dependencies.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

CVE-2026-54291 (Medium) detected in postgresql-42.7.9.jar

3 participants