Synced 17 Jun 2026 22:27 UTC Account

Is PostgreSQL 9.0.23 patched?

PostgreSQL · cycle 9.0 · end of life · Official site ↗
9.0.2326/100End of life

Current stable (18.4): 100/100

Minimum safe version14.23

9.0.23 has 20 open critical-or-high vulnerabilities. Run 14.23 or later to clear them. See what 14.23 fixes →

Health score26/100
Open issues24
Exploited now0
Cycle 9.0 EOL2015-10-08
Latest release18.4

Summary iPlain-English security status for PostgreSQL 9.0.23, built from its CVEs, active-exploitation data, end-of-life date and latest release.

PostgreSQL 9.0.23 is part of the 9.0 release line. 24 known vulnerabilities affect it. The minimum safe version is 14.23 — upgrade to it or later to clear the open critical/high issues. The 9.0 line reached end-of-life on 2015-10-08, so it no longer receives security patches. The latest supported PostgreSQL release is 18.4.

Known issues affecting 9.0.23

Exploited first, then by exploitation probability.

CVE-2020-25695 HIGH EPSS 46% → fixed in 13.1 CVE-2016-0773 HIGH EPSS 7% → see advisory CVE-2017-7486 HIGH EPSS 6% → see advisory CVE-2016-5423 HIGH EPSS 6% → see advisory CVE-2016-7048 HIGH EPSS 5% → fixed in 9.5.5 CVE-2016-5424 HIGH EPSS 5% → see advisory CVE-2018-1115 CRITICAL EPSS 4% → fixed in 10.4 CVE-2017-7484 HIGH EPSS 3% → see advisory CVE-2021-23214 HIGH EPSS 2% → fixed in 13.5 CVE-2019-10211 CRITICAL EPSS 2% → fixed in 11.5 CVE-2020-25694 HIGH EPSS 2% → fixed in 13.1 CVE-2021-3393 MEDIUM EPSS 1% → fixed in 13.2 CVE-2017-14798 HIGH EPSS 1% → fixed in 9.4-0.5.3.1 CVE-2026-6479 HIGH EPSS 0% → fixed in 18.4 CVE-2019-10128 HIGH EPSS 0% → fixed in 11.3 CVE-2026-6473 HIGH EPSS 0% → fixed in 18.4 CVE-2019-10210 HIGH EPSS 0% → fixed in 11.5 CVE-2026-6637 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6475 HIGH EPSS 0% → fixed in 18.4 CVE-2019-10127 HIGH EPSS 0% → fixed in 11.3

Other PostgreSQL versions

Check another release line of PostgreSQL.

PostgreSQL 18.4PostgreSQL 17.10PostgreSQL 16.14PostgreSQL 15.18PostgreSQL 14.23PostgreSQL 13.23PostgreSQL 12.22PostgreSQL 11.22PostgreSQL 10.23PostgreSQL 9.6.24PostgreSQL 9.5.25PostgreSQL 9.4.26PostgreSQL 9.3.25PostgreSQL 9.2.24PostgreSQL 9.1.24PostgreSQL 8.4.22PostgreSQL 8.3.23PostgreSQL 8.2.23PostgreSQL 8.1.23PostgreSQL 8.0.26PostgreSQL 7.4.30PostgreSQL 7.3.21PostgreSQL 7.2.8PostgreSQL 7.1.3PostgreSQL 7.0.3PostgreSQL 6.5.3PostgreSQL 6.4.2PostgreSQL 6.3.2

Frequently asked

Is PostgreSQL 9.0.23 patched?

PostgreSQL 9.0.23 is end-of-life and no longer receives security patches. Move to 18.4.

What version should I upgrade PostgreSQL 9.0.23 to?

Upgrade PostgreSQL 9.0.23 to at least 14.23 to clear its 20 open critical-or-high vulnerabilities.

When does PostgreSQL 9.0 reach end-of-life?

PostgreSQL 9.0 reached end-of-life on 2015-10-08 and no longer receives security patches.

What is the latest version of PostgreSQL?

The latest supported PostgreSQL release is 18.4.

Is PostgreSQL 9.0.23 still receiving security updates?

No — PostgreSQL 9.0.23 is on the 9.0 line, which reached end-of-life on 2015-10-08 and no longer receives security updates. Upgrade to 18.4 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against PostgreSQL's official advisory before you patch or upgrade — PostgreSQL official site ↗