Oval Definition:	oval:org.opensuse.security:def:51083
Revision Date: 2020-12-04 Version: 1 Title: Security update for postgresql12 (Important) Description: This update for postgresql12 fixes the following issues: Upgrade to version 12.5: CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/12/release-12-5.html The previous postgresql12 update already addressed: Update to 12.4: CVE-2020-14349, bsc#1175193: Set a secure search_path in logical replication walsenders and apply workers * CVE-2020-14350, bsc#1175194: Make contrib modules' installation scripts more secure. https://www.postgresql.org/docs/12/release-12-4.html Family: unix Class: patch Status: Reference(s): 1012382 1047962 1049826 1050242 1051510 1053043 1053177 1055186 1056787 1058115 1063638 1064802 1065022 1065600 1065729 1066129 1068546 1071995 1075020 1081947 1082387 1083647 1085535 1099019 1099658 1102261 1103093 1103737 1103992 1104353 1104427 1106011 1106284 1108193 1108838 1108937 1110542 1110946 1111319 1111696 1112063 1112911 1113296 1113722 1114427 1114908 1115341 1115688 1116840 1117158 1117561 1118139 1118758 1119373 1119820 1119843 1119873 1120091 1120263 1120423 1120463 1120566 1120629 1120630 1120631 1120843 1120902 1121611 1122062 1122292 1122299 1122471 1122776 1123137 1123454 1123663 1123681 1123843 1123865 1123967 1124503 1124839 1124897 1125415 1126356 1127026 1127155 1127220 1127616 1128052 1128904 1128979 1129138 1129273 1129497 1129693 1129770 1130161 1130579 1130699 1130972 1131326 1131451 1131488 1131565 1131673 1131823 1132044 1133176 1133188 1133190 1133320 1133612 1133616 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134760 1134806 1134810 1134813 1134848 1134936 1135006 1135007 1135008 1135056 1135100 1135120 1135278 1135281 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135749 1135758 1136206 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136573 1136586 1136881 1136935 1136990 1137151 1137152 1137153 1137162 1137372 1137444 1137586 1137739 1137752 1137977 1140750 1140868 1141063 1141780 1141782 1141783 1141785 1141787 1141789 1141844 1147021 1153451 1153459 1155075 1160790 1161088 1161089 1161670 1173100 1173274 1173659 1173661 1173663 1173869 1173942 1173963 1174186 1174247 1175109 1175193 1175194 1178666 1178667 1178668 663358 764147 965786 978193 993025 CVE-2009-2625 CVE-2009-3560 CVE-2009-3720 CVE-2010-0405 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2011-2721 CVE-2011-3627 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2018-11212 CVE-2018-14424 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-7191 CVE-2019-0155 CVE-2019-10124 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-13314 CVE-2019-13616 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-17041 CVE-2019-17042 CVE-2019-19447 CVE-2019-2449 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-3691 CVE-2019-3846 CVE-2019-4473 CVE-2019-5489 CVE-2019-7317 CVE-2019-9458 CVE-2019-9811 CVE-2020-11668 CVE-2020-14331 CVE-2020-14349 CVE-2020-14350 CVE-2020-14422 CVE-2020-15780 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-8231 SUSE-SU-2018:2771-1 SUSE-SU-2019:1529-1 SUSE-SU-2019:1960-1 SUSE-SU-2019:2030-1 SUSE-SU-2019:2291-1 SUSE-SU-2019:2937-1 SUSE-SU-2019:3190-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:3045-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:3630-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xorg-x11-Xvnc-7.4-27.70.76 is installed OR xorg-x11-server-7.4-27.70.76 is installed OR xorg-x11-server-extra-7.4-27.70.76 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND fetchmail-6.3.8.90-13.20.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND clamav-0.98.4-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information coreutils-8.22-9 is installed OR coreutils-lang-8.22-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information curl-7.37.0-28 is installed OR libcurl4-7.37.0-28 is installed OR libcurl4-32bit-7.37.0-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python2-waitress-1.4.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information gdm-3.26.2.1-13.9 is installed OR gdm-devel-3.26.2.1-13.9 is installed OR gdm-lang-3.26.2.1-13.9 is installed OR gdmflexiserver-3.26.2.1-13.9 is installed OR libgdm1-3.26.2.1-13.9 is installed OR typelib-1_0-Gdm-1_0-3.26.2.1-13.9 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.22 is installed OR kernel-default-livepatch-4.12.14-150.22 is installed OR kernel-livepatch-4_12_14-150_22-default-1-1.5 is installed OR kernel-livepatch-SLE15_Update_11-1-1.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information curl-7.66.0-4.6 is installed OR curl-mini-7.66.0-4.6 is installed OR libcurl-devel-32bit-7.66.0-4.6 is installed OR libcurl-mini-devel-7.66.0-4.6 is installed OR libcurl4-mini-7.66.0-4.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information rsyslog-8.33.1-3.22 is installed OR rsyslog-module-gssapi-8.33.1-3.22 is installed OR rsyslog-module-gtls-8.33.1-3.22 is installed OR rsyslog-module-mmnormalize-8.33.1-3.22 is installed OR rsyslog-module-mysql-8.33.1-3.22 is installed OR rsyslog-module-pgsql-8.33.1-3.22 is installed OR rsyslog-module-relp-8.33.1-3.22 is installed OR rsyslog-module-snmp-8.33.1-3.22 is installed OR rsyslog-module-udpspoof-8.33.1-3.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information python3-virt-bootstrap-1.0.0-5.3 is installed OR virt-bootstrap-1.0.0-5.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information kernel-default-3.12.51-60.25 is installed OR kernel-default-base-3.12.51-60.25 is installed OR kernel-default-devel-3.12.51-60.25 is installed OR kernel-default-man-3.12.51-60.25 is installed OR kernel-devel-3.12.51-60.25 is installed OR kernel-macros-3.12.51-60.25 is installed OR kernel-source-3.12.51-60.25 is installed OR kernel-syms-3.12.51-60.25 is installed OR kernel-xen-3.12.51-60.25 is installed OR kernel-xen-base-3.12.51-60.25 is installed OR kernel-xen-devel-3.12.51-60.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-otp-2.1.26-7 is installed OR cyrus-sasl-otp-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dbus-1-1.8.22-29.10 is installed OR dbus-1-x11-1.8.22-29.10 is installed OR libdbus-1-3-1.8.22-29.10 is installed OR libdbus-1-3-32bit-1.8.22-29.10 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND python-ipaddress-1.0.18-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information libecpg6-12.5-3.9.3 is installed OR libpq5-12.5-3.9.3 is installed OR libpq5-32bit-12.5-3.9.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.8.0-3.46 is installed OR MozillaThunderbird-translations-common-60.8.0-3.46 is installed OR MozillaThunderbird-translations-other-60.8.0-3.46 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Pillow-2.7.0-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-glance-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed OR python-glance-13.0.1~a0~dev6-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libsystemd0-228-150.82 is installed OR libsystemd0-32bit-228-150.82 is installed OR libudev1-228-150.82 is installed OR libudev1-32bit-228-150.82 is installed OR systemd-228-150.82 is installed OR systemd-32bit-228-150.82 is installed OR systemd-bash-completion-228-150.82 is installed OR systemd-sysvinit-228-150.82 is installed OR udev-228-150.82 is installed
BACK