{"schema_version":"1.3.1","id":"GO-2026-4772","modified":"2026-04-17T19:01:28Z","published":"2026-04-07T14:58:41Z","aliases":["CVE-2026-33816","GHSA-9jj7-4m8r-rfcm"],"summary":"CVE-2026-33816 in github.com/jackc/pgx","details":"Memory-safety vulnerability in github.com/jackc/pgx/v5.","affected":[{"package":{"name":"github.com/jackc/pgx/v5","ecosystem":"Go"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"5.9.0"}]}],"ecosystem_specific":{"imports":[{"path":"github.com/jackc/pgx/v5/pgproto3","symbols":["Backend.Receive","FunctionCall.Decode"]}]}}],"database_specific":{"url":"https://pkg.go.dev/vuln/GO-2026-4772","review_status":"REVIEWED"}}