Oval Definition:oval:org.opensuse.security:def:102710
Revision Date:2020-11-20Version:1
Title:Security update for postgresql10 (Important)
Description:

This update for postgresql10 fixes the following issues:

- Upgrade to version 10.15: * CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/10/release-10-15.html
Family:unixClass:patch
Status:Reference(s):1178666
1178667
1178668
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
SUSE-SU-2020:3476-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • postgresql10-contrib-10.15-8.22.1 is installed
  • OR postgresql10-devel-10.15-8.22.1 is installed
  • OR postgresql10-docs-10.15-8.22.1 is installed
  • OR postgresql10-plperl-10.15-8.22.1 is installed
  • OR postgresql10-plpython-10.15-8.22.1 is installed
  • OR postgresql10-pltcl-10.15-8.22.1 is installed
  • OR postgresql10-server-10.15-8.22.1 is installed
    • BACK