<!--IssueSummary start--> <details> <summary> Everyone can contribute. [Help move this issue forward](https://handbook.gitlab.com/handbook/marketing/developer-relations/contributor-success/community-contributors-workflows/#contributor-links) while earning points, leveling up and collecting rewards. </summary> - [Close this issue](https://contributors.gitlab.com/manage-issue?action=close&projectId=278964&issueIid=591468) </details> <!--IssueSummary end--> [Nessus has caught](https://www.tenable.com/plugins/nessus/299758) that the embedded version of Postgresql (16.11) used in GitLab v18.x, including in the latest patch releases v18.8.5 and v18.9.1, is vulnerable to multiple high and medium risk vulnerabilities: - [CVE-2026-2003](https://www.postgresql.org/support/security/CVE-2026-2003/) - [CVE-2026-2004](https://www.postgresql.org/support/security/CVE-2026-2004/) - [CVE-2026-2005](https://www.postgresql.org/support/security/CVE-2026-2005/) - [CVE-2026-2006](https://www.postgresql.org/support/security/CVE-2026-2006/) Remediation could be updating the embedded version to 16.12.