Oval Definition:oval:org.opensuse.security:def:51921
Revision Date:2021-01-26Version:1
Title:Security update for postgresql, postgresql12, postgresql13 (Important)
Description:

This update for postgresql, postgresql12, postgresql13 fixes the following issues:

Initial packaging of PostgreSQL 13:

https://www.postgresql.org/about/news/2077/ * https://www.postgresql.org/docs/13/release-13.html

Changes in postgresql:

- Bump postgresql major version to 13.

Changes in postgresql12:

- %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) - Fix a DST problem in the test suite.

Changes in postgresql13:

- Add postgresql-icu68.patch: fix build with ICU 68

- %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765)

Upgrade to version 13.1:

CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/13/release-13-1.html

- Fix a DST problem in the test suite.


Family:unixClass:patch
Status:Reference(s):1058115
1071995
1133291
1135350
1135715
1140868
1148742
1154366
1164692
1164825
1164860
1165629
1165631
1171988
1172428
1172698
1172704
1173157
1173798
1174139
1174205
1174757
1174955
1175112
1175122
1175128
1175204
1175213
1175465
1175515
1175518
1175691
1175992
1176069
1176430
1177155
1178666
1178667
1178668
1178961
1179765
CVE-2004-2771
CVE-2009-1892
CVE-2010-2156
CVE-2010-3611
CVE-2010-3616
CVE-2011-0413
CVE-2011-0997
CVE-2011-1145
CVE-2011-2748
CVE-2011-2749
CVE-2011-4539
CVE-2011-4868
CVE-2012-3355
CVE-2012-3570
CVE-2012-3571
CVE-2012-3954
CVE-2012-3955
CVE-2013-2266
CVE-2013-4509
CVE-2014-7844
CVE-2015-0797
CVE-2016-5384
CVE-2016-9445
CVE-2016-9446
CVE-2016-9447
CVE-2016-9809
CVE-2017-18594
CVE-2017-5838
CVE-2018-15173
CVE-2019-11709
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11715
CVE-2019-11717
CVE-2019-11719
CVE-2019-11729
CVE-2019-11730
CVE-2019-17569
CVE-2019-6237
CVE-2019-8571
CVE-2019-8583
CVE-2019-8584
CVE-2019-8586
CVE-2019-8587
CVE-2019-8594
CVE-2019-8595
CVE-2019-8596
CVE-2019-8597
CVE-2019-8601
CVE-2019-8607
CVE-2019-8608
CVE-2019-8609
CVE-2019-8610
CVE-2019-8611
CVE-2019-8615
CVE-2019-8619
CVE-2019-8622
CVE-2019-8623
CVE-2019-9811
CVE-2020-10135
CVE-2020-14314
CVE-2020-14331
CVE-2020-14356
CVE-2020-14386
CVE-2020-15708
CVE-2020-16166
CVE-2020-1749
CVE-2020-1935
CVE-2020-1938
CVE-2020-24394
CVE-2020-25637
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-8023
SUSE-SU-2019:1869-1
SUSE-SU-2019:2425-1
SUSE-SU-2020:0631-1
SUSE-SU-2020:1856-1
SUSE-SU-2020:2610-1
SUSE-SU-2020:2970-1
SUSE-SU-2020:3476-1
SUSE-SU-2021:0217-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • groff-1.22.3-lp150.3 is installed
  • OR groff-full-1.22.3-lp150.3 is installed
  • OR gxditview-1.22.3-lp150.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • icu-4.0-7.26 is installed
  • OR libicu-4.0-7.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.26-0.62 is installed
  • OR libldap-2_4-2-32bit-2.4.26-0.62 is installed
  • OR openldap2-client-2.4.26-0.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • dhcp-4.2.6-7 is installed
  • OR dhcp-client-4.2.6-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • ibus-chewing-1.4.10.1-2 is installed
  • OR ibus-pinyin-1.5.0-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND mailx-12.5-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • fontconfig-2.11.1-7 is installed
  • OR fontconfig-32bit-2.11.1-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • coreutils-8.25-13.7 is installed
  • OR coreutils-lang-8.25-13.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-32bit-2.24.2-3.27 is installed
  • OR libwebkit2gtk-4_0-37-32bit-2.24.2-3.27 is installed
  • OR webkit-jsc-4-2.24.2-3.27 is installed
  • OR webkit2gtk3-2.24.2-3.27 is installed
  • OR webkit2gtk3-minibrowser-2.24.2-3.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libfreebl3-hmac-3.44.1-3.16 is installed
  • OR libsoftokn3-hmac-3.44.1-3.16 is installed
  • OR mozilla-nss-3.44.1-3.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • libvirt-6.0.0-13.8 is installed
  • OR libvirt-admin-6.0.0-13.8 is installed
  • OR libvirt-bash-completion-6.0.0-13.8 is installed
  • OR libvirt-client-6.0.0-13.8 is installed
  • OR libvirt-daemon-6.0.0-13.8 is installed
  • OR libvirt-daemon-config-network-6.0.0-13.8 is installed
  • OR libvirt-daemon-config-nwfilter-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-interface-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-libxl-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-lxc-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-network-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-nodedev-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-nwfilter-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-qemu-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-secret-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-core-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-disk-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-iscsi-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-logical-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-mpath-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-rbd-6.0.0-13.8 is installed
  • OR libvirt-daemon-driver-storage-scsi-6.0.0-13.8 is installed
  • OR libvirt-daemon-hooks-6.0.0-13.8 is installed
  • OR libvirt-daemon-lxc-6.0.0-13.8 is installed
  • OR libvirt-daemon-qemu-6.0.0-13.8 is installed
  • OR libvirt-daemon-xen-6.0.0-13.8 is installed
  • OR libvirt-devel-6.0.0-13.8 is installed
  • OR libvirt-doc-6.0.0-13.8 is installed
  • OR libvirt-lock-sanlock-6.0.0-13.8 is installed
  • OR libvirt-nss-6.0.0-13.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • tomcat-9.0.31-4.22 is installed
  • OR tomcat-admin-webapps-9.0.31-4.22 is installed
  • OR tomcat-el-3_0-api-9.0.31-4.22 is installed
  • OR tomcat-jsp-2_3-api-9.0.31-4.22 is installed
  • OR tomcat-lib-9.0.31-4.22 is installed
  • OR tomcat-servlet-4_0-api-9.0.31-4.22 is installed
  • OR tomcat-webapps-9.0.31-4.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libevent-2_0-5-2.0.21-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_24-default-9-4 is installed
  • OR kgraft-patch-3_12_67-60_64_24-xen-9-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_11-9-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • emacs-24.3-16 is installed
  • OR emacs-el-24.3-16 is installed
  • OR emacs-info-24.3-16 is installed
  • OR emacs-nox-24.3-16 is installed
  • OR emacs-x11-24.3-16 is installed
  • OR etags-24.3-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND mailman-2.1.17-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • crash-7.1.8-3 is installed
  • OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.5.0-109.106 is installed
  • OR MozillaFirefox-translations-common-68.5.0-109.106 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_61-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gvim-7.4.326-17.3 is installed
  • OR vim-7.4.326-17.3 is installed
  • OR vim-data-7.4.326-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND chrony-2.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • kernel-default-4.12.14-150.58 is installed
  • OR kernel-default-base-4.12.14-150.58 is installed
  • OR kernel-default-devel-4.12.14-150.58 is installed
  • OR kernel-default-man-4.12.14-150.58 is installed
  • OR kernel-devel-4.12.14-150.58 is installed
  • OR kernel-docs-4.12.14-150.58 is installed
  • OR kernel-macros-4.12.14-150.58 is installed
  • OR kernel-obs-build-4.12.14-150.58 is installed
  • OR kernel-source-4.12.14-150.58 is installed
  • OR kernel-syms-4.12.14-150.58 is installed
  • OR kernel-vanilla-4.12.14-150.58 is installed
  • OR kernel-vanilla-base-4.12.14-150.58 is installed
  • OR kernel-zfcpdump-4.12.14-150.58 is installed
  • OR reiserfs-kmp-default-4.12.14-150.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • libecpg6-13.1-3.3.1 is installed
  • OR libpq5-13.1-3.3.1 is installed
  • OR libpq5-32bit-13.1-3.3.1 is installed
  • OR postgresql-13-4.7.1 is installed
  • OR postgresql-contrib-13-4.7.1 is installed
  • OR postgresql-docs-13-4.7.1 is installed
  • OR postgresql-plperl-13-4.7.1 is installed
  • OR postgresql-plpython-13-4.7.1 is installed
  • OR postgresql-pltcl-13-4.7.1 is installed
  • OR postgresql-server-13-4.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.31 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.31 is installed
  • OR libldap-data-2.4.46-9.31 is installed
  • OR openldap2-2.4.46-9.31 is installed
  • OR openldap2-back-meta-2.4.46-9.31 is installed
  • OR openldap2-back-perl-2.4.46-9.31 is installed
  • OR openldap2-client-2.4.46-9.31 is installed
  • OR openldap2-devel-2.4.46-9.31 is installed
  • OR openldap2-devel-32bit-2.4.46-9.31 is installed
  • OR openldap2-devel-static-2.4.46-9.31 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.48 is installed
  • OR kernel-default-base-3.12.74-60.64.48 is installed
  • OR kernel-default-devel-3.12.74-60.64.48 is installed
  • OR kernel-devel-3.12.74-60.64.48 is installed
  • OR kernel-macros-3.12.74-60.64.48 is installed
  • OR kernel-source-3.12.74-60.64.48 is installed
  • OR kernel-syms-3.12.74-60.64.48 is installed
  • OR kernel-xen-3.12.74-60.64.48 is installed
  • OR kernel-xen-base-3.12.74-60.64.48 is installed
  • OR kernel-xen-devel-3.12.74-60.64.48 is installed
  • OR kgraft-patch-3_12_74-60_64_48-default-1-2 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-1-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-1-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-default-man-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND sudo-1.8.20p2-3.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-urllib3-1.23-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • BACK