1. PgBouncer CVE-2026-6664: Unauthenticated Remote Crash via Integer Overflow in SCRAM Parsing
A high-severity integer overflow vulnerability in PgBouncer enables unauthenticated remote attackers to crash the PostgreSQL connection pooler by exploiting a flaw in SCRAM authentication packet parsing. Tracked as CVE-2026-6664 with a CVSS score of 7.5, the vulnerability affects all PgBouncer versions prior to 1.25.2 ...