Product Release Advisory - VMware Tanzu for Postgres 18.0.0, 17.6.0, 16.10.0, 15.14.0, 14.19.0, 13.22.0

VMware Tanzu Data Intelligence

6 more products

36284

29 October 2025

29 October 2025

CLOSED

HIGH

Product Release Advisory

Advisory ID:

TNZ-2025-0134

Severity:

High

Issue Date:

2025-10-29

Updated on:

2025-10-29

Synopsys

Bumped multiple dependencies updates which resulted in 15 CVEs remediated in this release.

 

Product Version Release Advisory

Security Fixes

This release has the following security fixes, listed by component and area.

Component

Vulnerabilities Resolved

VMware Tanzu for Postgres 17.6.0

CVE-2025-8714 (high)
CVE-2025-8715 (high)
CVE-2025-8713 (low)

VMware Tanzu for Postgres 16.10.0

CVE-2025-8714 (high)
CVE-2025-8715 (high)
CVE-2025-8713 (low)

VMware Tanzu for Postgres 15.14.0

CVE-2025-8714 (high)
CVE-2025-8715 (high)
CVE-2025-8713 (low)

VMware Tanzu for Postgres 14.19.0

CVE-2025-8714 (high)
CVE-2025-8715 (high)
CVE-2025-8713 (low)

VMware Tanzu for Postgres 13.22.0

CVE-2025-8714 (high)
CVE-2025-8715 (high)
CVE-2025-8713 (low)

 

History

2025-10-29: Initial vulnerability report published.

Contact

E-mail: [email protected]

VMware Tanzu Security Advisories: https://tanzu.vmware.com/security