PostgreSQL 9

by PostgreSQL Global Development Groupv9

Last updated Jun 8, 2026

The World's Most Advanced Open Source Relational Database

Install with winget

$ winget install --id PostgreSQL.PostgreSQL.9 --exact --version 9

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for PostgreSQL 9

PostgreSQL 9 uses EXE. The silent install switches are --mode unattended --unattendedmodeui none.

One-line silent install (x64, machine scope)

postgresql-9.6.24-1-windows-x64.exe --mode unattended --unattendedmodeui none

See the full silent install reference for PostgreSQL 9 →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

PostgreSQL is a powerful, open source object-relational database system with over 35 years of active development that has earned it a strong reputation for reliability, feature robustness, and performance.

Installers · v9

Architecture	Type	Scope	Install	Download
x86	EXE	machine		Direct
x64	EXE	machine		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

low3.7Patched in wingetCVE-2026-6638affects before 16.14, 17.10, 18.4May 14, 2026
SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major ver...
Patch Vendor advisory
high8.8Fix in v14.23CVE-2026-6637affects before 14.23, 15.18, 16.14, +2 moreMay 14, 2026
Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating system user running the database. A distinct attack is possible if the application declares a user-controlled column as a "refint" cascade primary...
Patch Vendor advisory
medium4.3Patched in wingetCVE-2026-6575affects before 18.4May 14, 2026
Buffer over-read in PostgreSQL function pg_restore_attribute_stats() accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor v...
Patch Vendor advisory
high7.5Fix in v14.23CVE-2026-6479affects before 14.23, 15.18, 16.14, +2 moreMay 14, 2026
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AF_UNIX socket to achieve sustained denial of service. If SSL and GSS are both disabled, an attacker can do the same via access to a PostgreSQL TCP socket. Versions...
Patch Vendor advisory
medium6.5Fix in v14.23CVE-2026-6478affects before 14.23, 15.18, 16.14, +2 moreMay 14, 2026
Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. This does not affect scram-sha-256 passwords, the default in all supported releases. However, current databases ma...
Patch Vendor advisory
high8.8Fix in v14.23CVE-2026-6477affects before 14.23, 15.18, 16.14, +2 moreMay 14, 2026
Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(), lo_lseek64(), and lo_tell64() functions allows the server superuser to overwrite a client stack buffer with an arbitrarily-large response. Like gets(), PQfn(..., res...
Patch Vendor advisory
high7.2Patched in wingetCVE-2026-6476affects before 17.10, 18.4May 14, 2026
SQL injection in PostgreSQL pg_createsubscriber allows an attacker with pg_create_subscription rights to execute arbitrary SQL as a superuser. The attack takes effect when pg_createsubscriber next runs. Within major versions 17 and 18, minor versions before PostgreSQL 18.4 and...
Patch Vendor advisory
high8.8Fix in v14.23CVE-2026-6475affects before 14.23, 15.18, 16.14, +2 moreMay 14, 2026
Symlink following in PostgreSQL pg_basebackup plain format and in pg_rewind allows an origin superuser to overwrite local files, e.g. /var/lib/postgres/.bashrc, that hijack the operating system account. It will remain the case that starting the server after these commands impli...
Patch Vendor advisory

Showing 8 of 25. Source: NVD, updated 1h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

PostgreSQL 18PostgreSQL Global Development Group
PostgreSQL.PostgreSQL.18v18.4-1
The World's Most Advanced Open Source Relational Database
PostgreSQL 17PostgreSQL Global Development Group
PostgreSQL.PostgreSQL.17v17.10-1
The World's Most Advanced Open Source Relational Database
PostgreSQL 15PostgreSQL Global Development Group
PostgreSQL.PostgreSQL.15v15.18-1
The World's Most Advanced Open Source Relational Database
PostgreSQL 12PostgreSQL Global Development Group
PostgreSQL.PostgreSQL.12v12.22-1
The World's Most Advanced Open Source Relational Database
PostgreSQL 11PostgreSQL Global Development Group
PostgreSQL.PostgreSQL.11v11
The World's Most Advanced Open Source Relational Database
psqlodbcPostgreSQL Global Development Group
PostgreSQL.psqlODBCv18.00.0001
The official PostgreSQL ODBC Driver

More from PostgreSQL Global Development Group or browse database, db.

Frequently asked questions

How do I install PostgreSQL 9 on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id PostgreSQL.PostgreSQL.9 --exact --version 9. winget downloads the installer from PostgreSQL Global Development Group and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install PostgreSQL 9 silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id PostgreSQL.PostgreSQL.9 --exact 9 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for PostgreSQL 9?

PostgreSQL 9 uses EXE. Run the downloaded installer with: postgresql-9.6.24-1-windows-x64.exe --mode unattended --unattendedmodeui none. The silent switches are --mode unattended --unattendedmodeui none.

How do I uninstall PostgreSQL 9 via winget?

Run: winget uninstall --id PostgreSQL.PostgreSQL.9 --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from PostgreSQL 9's Apps & Features entry.

Is PostgreSQL 9 free?

PostgreSQL 9 is distributed under PostgreSQL. Refer to the publisher (https://www.postgresql.org/download/windows/) for the full license terms - Wingetly itself does not charge for installation.

Does PostgreSQL 9 work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls PostgreSQL 9 directly from the publisher.

How do I keep PostgreSQL 9 up to date?

Run winget upgrade --id PostgreSQL.PostgreSQL.9 --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of PostgreSQL 9 from microsoft/winget-pkgs.