CVE-2025-2291

CVE-2025-2291

Name

CVE-2025-2291

Description

Password can be used past expiry in PgBouncer due to auth_query not taking into account Postgres its VALID UNTIL value, which allows an attacker to log in with an already expired password

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
f86ef6dc-4d3a-42ad-8f28-e6d5547a5007	https://www.pgbouncer.org/changelog.html#pgbouncer-124x
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/05/msg00032.html

Type

URI

f86ef6dc-4d3a-42ad-8f28-e6d5547a5007

https://www.pgbouncer.org/changelog.html#pgbouncer-124x

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/05/msg00032.html

CPE URI	Source package	Min version	Max version
	pgbouncer	>= 0	< 1.24.1

CPE URI

Source package

Min version

Max version

pgbouncer

>= 0

< 1.24.1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
pgbouncer	edge-community	1.24.0-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
pgbouncer	edge-community	1.23.1-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
pgbouncer	3.22-community	1.24.0-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
pgbouncer	3.22-community	1.23.1-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

pgbouncer

edge-community

1.24.0-r0

Francesco Colista <fcolista@alpinelinux.org>

possibly vulnerable

pgbouncer

edge-community