Oval Definition:oval:org.opensuse.security:def:53019
Revision Date:2020-12-01Version:1
Title:Security update for postgresql10 and postgresql12 (Moderate)
Description:

This update for postgresql10 and postgresql12 fixes the following issues:

postgresql10 was updated to 10.13 (bsc#1171924).

https://www.postgresql.org/about/news/2038/ https://www.postgresql.org/docs/10/release-10-13.html

postgresql10 was updated to 10.12 (CVE-2020-1720, bsc#1163985)

- https://www.postgresql.org/about/news/2011/ - https://www.postgresql.org/docs/10/release-10-12.html

postgresql10 was updated to 10.11:

- https://www.postgresql.org/about/news/1994/ - https://www.postgresql.org/docs/10/release-10-11.html



postgresql12 was updated to 12.3 (bsc#1171924).

Bug Fixes and Improvements:

- Several fixes for GENERATED columns, including an issue where it was possible to crash or corrupt data in a table when the output of the generated column was the exact copy of a physical column on the table, e.g. if the expression called a function which could return its own input. - Several fixes for ALTER TABLE, including ensuring the SET STORAGE directive is propagated to a table's indexes. - Fix a potential race condition when using DROP OWNED BY while another session is deleting the same objects. - Allow for a partition to be detached when it has inherited ROW triggers. - Several fixes for REINDEX CONCURRENTLY, particularly with issues when a REINDEX CONCURRENTLY operation fails. - Fix crash when COLLATE is applied to an uncollatable type in a partition bound expression. - Fix performance regression in floating point overflow/underflow detection. - Several fixes for full text search, particularly with phrase searching. - Fix query-lifespan memory leak for a set-returning function used in a query's FROM clause. - Several reporting fixes for the output of VACUUM VERBOSE. - Allow input of type circle to accept the format (x,y),r, which is specified in the documentation. - Allow for the get_bit() and set_bit() functions to not fail on bytea strings longer than 256MB. - Avoid premature recycling of WAL segments during crash recovery, which could lead to WAL segments being recycled before being archived. - Avoid attempting to fetch nonexistent WAL files from archive storage during recovery by skipping irrelevant timelines. - Several fixes for logical replication and replication slots. - Fix several race conditions in synchronous standby management, including one that occurred when changing the synchronous_standby_names setting. - Several fixes for GSSAPI support, include a fix for a memory leak that occurred when using GSSAPI encryption. - Ensure that members of the pg_read_all_stats role can read all statistics views. - Fix performance regression in information_schema.triggers view. - Fix memory leak in libpq when using sslmode=verify-full. - Fix crash in psql when attempting to re-establish a failed connection. - Allow tab-completion of the filename argument to \gx command in psql. - Add pg_dump support for ALTER ... DEPENDS ON EXTENSION. - Several other fixes for pg_dump, which include dumping comments on RLS policies and postponing restore of event triggers until the end. - Ensure pg_basebackup generates valid tar files. - pg_checksums skips tablespace subdirectories that belong to a different PostgreSQL major version - Several Windows compatibility fixes

This update also contains timezone tzdata release 2020a for DST law changes in Morocco and the Canadian Yukon, plus historical corrections for Shanghai. The America/Godthab zone has been renamed to America/Nuuk to reflect current English usage ; however, the old name remains available as a compatibility link. This also updates initdb's list of known Windows time zone names to include recent additions.

For more details, check out:

- https://www.postgresql.org/docs/12/release-12-3.html

Other fixes:

- Let postgresqlXX conflict with postgresql-noarch < 12.0.1 to get a clean and complete cutover to the new packaging schema.
Family:unixClass:patch
Status:Reference(s):1048942
1051510
1071995
1078248
1082635
1089644
1091041
1103990
1103991
1104353
1104427
1104745
1108043
1109837
1111666
1112178
1112374
1113722
1113956
1113994
1114279
1117169
1118661
1119113
1120853
1126390
1127354
1127371
1129770
1131107
1134983
1135966
1135967
1137223
1137236
1138039
1140948
1142095
1142635
1142924
1143706
1144333
1146544
1148643
1149448
1150466
1151067
1151548
1151900
1152782
1153628
1153811
1154043
1154058
1154124
1154355
1154526
1154601
1155021
1155689
1155692
1155836
1155897
1155921
1156187
1156258
1156429
1156466
1156471
1156494
1156609
1156700
1156729
1156882
1156928
1157032
1157038
1157042
1157044
1157045
1157046
1157049
1157070
1157115
1157143
1157145
1157158
1157160
1157162
1157171
1157173
1157178
1157180
1157182
1157183
1157184
1157191
1157193
1157197
1157298
1157304
1157307
1157324
1157333
1157386
1157424
1157463
1157499
1157678
1157698
1157778
1157908
1158049
1158063
1158064
1158065
1158066
1158067
1158068
1158071
1158082
1158381
1158394
1158398
1158407
1158410
1158413
1158417
1158427
1158445
1158637
1158638
1158639
1158640
1158641
1158643
1158644
1158645
1158646
1158647
1158649
1158651
1158652
1163985
1171924
906574
907074
924960
933288
933878
936227
942865
954864
956829
957162
957226
957566
957567
957598
957600
960837
962960
964845
964847
964849
971741
972127
977450
977451
977452
977455
977457
977458
977459
977461
977464
979302
979981
981422
982064
982065
982066
982067
982068
CVE-2010-1172
CVE-2011-1946
CVE-2011-2483
CVE-2011-3177
CVE-2012-1152
CVE-2013-0292
CVE-2013-6393
CVE-2014-0172
CVE-2014-1829
CVE-2014-1830
CVE-2014-2525
CVE-2014-8964
CVE-2014-9087
CVE-2014-9092
CVE-2014-9130
CVE-2014-9447
CVE-2015-2325
CVE-2015-2327
CVE-2015-2328
CVE-2015-3210
CVE-2015-3217
CVE-2015-5073
CVE-2015-7512
CVE-2015-7704
CVE-2015-7705
CVE-2015-7974
CVE-2015-8345
CVE-2015-8370
CVE-2015-8380
CVE-2015-8381
CVE-2015-8382
CVE-2015-8383
CVE-2015-8384
CVE-2015-8385
CVE-2015-8386
CVE-2015-8387
CVE-2015-8388
CVE-2015-8389
CVE-2015-8390
CVE-2015-8391
CVE-2015-8392
CVE-2015-8393
CVE-2015-8394
CVE-2015-8395
CVE-2015-8803
CVE-2015-8804
CVE-2015-8805
CVE-2016-1283
CVE-2016-1547
CVE-2016-1548
CVE-2016-1549
CVE-2016-1550
CVE-2016-1551
CVE-2016-2516
CVE-2016-2517
CVE-2016-2518
CVE-2016-2519
CVE-2016-3191
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
CVE-2016-4957
CVE-2018-14779
CVE-2018-14780
CVE-2019-0154
CVE-2019-14895
CVE-2019-14901
CVE-2019-15213
CVE-2019-15916
CVE-2019-16231
CVE-2019-17055
CVE-2019-18660
CVE-2019-18683
CVE-2019-18805
CVE-2019-18809
CVE-2019-19046
CVE-2019-19049
CVE-2019-19052
CVE-2019-19056
CVE-2019-19057
CVE-2019-19058
CVE-2019-19060
CVE-2019-19062
CVE-2019-19063
CVE-2019-19065
CVE-2019-19067
CVE-2019-19068
CVE-2019-19073
CVE-2019-19074
CVE-2019-19075
CVE-2019-19077
CVE-2019-19078
CVE-2019-19080
CVE-2019-19081
CVE-2019-19082
CVE-2019-19083
CVE-2019-19227
CVE-2019-19524
CVE-2019-19525
CVE-2019-19528
CVE-2019-19529
CVE-2019-19530
CVE-2019-19531
CVE-2019-19534
CVE-2019-19536
CVE-2019-19543
CVE-2020-1720
SUSE-SU-2016:0455-1
SUSE-SU-2016:0459-1
SUSE-SU-2016:1568-1
SUSE-SU-2016:3161-1
SUSE-SU-2019:3372-1
SUSE-SU-2020:2149-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libarchive13-3.3.2-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libqb-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb-devel-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb-devel-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb-tests-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb-tools-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb20-1.0.3+20190326.a521604-lp151.2.3 is installed
  • OR libqb20-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • xen-4.1.5_02-0.5 is installed
  • OR xen-doc-html-4.1.5_02-0.5 is installed
  • OR xen-doc-pdf-4.1.5_02-0.5 is installed
  • OR xen-kmp-default-4.1.5_02_3.0.74_0.6.10-0.5 is installed
  • OR xen-kmp-pae-4.1.5_02_3.0.74_0.6.10-0.5 is installed
  • OR xen-kmp-trace-4.1.5_02_3.0.74_0.6.10-0.5 is installed
  • OR xen-libs-4.1.5_02-0.5 is installed
  • OR xen-libs-32bit-4.1.5_02-0.5 is installed
  • OR xen-tools-4.1.5_02-0.5 is installed
  • OR xen-tools-domU-4.1.5_02-0.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.7.0esr-0.8 is installed
  • OR MozillaFirefox-translations-24.7.0esr-0.8 is installed
  • OR libfreebl3-3.16.2-0.8 is installed
  • OR libfreebl3-32bit-3.16.2-0.8 is installed
  • OR libsoftokn3-3.16.2-0.8 is installed
  • OR libsoftokn3-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-3.16.2-0.8 is installed
  • OR mozilla-nss-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-tools-3.16.2-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xen-4.4.2_12-23 is installed
  • OR xen-doc-html-4.4.2_12-23 is installed
  • OR xen-kmp-default-4.4.2_12_3.0.101_63-23 is installed
  • OR xen-kmp-pae-4.4.2_12_3.0.101_63-23 is installed
  • OR xen-libs-4.4.2_12-23 is installed
  • OR xen-libs-32bit-4.4.2_12-23 is installed
  • OR xen-tools-4.4.2_12-23 is installed
  • OR xen-tools-domU-4.4.2_12-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libksba-1.3.0-9 is installed
  • OR libksba8-1.3.0-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND python-requests-2.3.0-6.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • dbus-1-glib-0.100.2-3 is installed
  • OR dbus-1-glib-32bit-0.100.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • elfutils-0.158-6 is installed
  • OR libasm1-0.158-6 is installed
  • OR libdw1-0.158-6 is installed
  • OR libdw1-32bit-0.158-6 is installed
  • OR libebl1-0.158-6 is installed
  • OR libebl1-32bit-0.158-6 is installed
  • OR libelf1-0.158-6 is installed
  • OR libelf1-32bit-0.158-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libgnomesu-2.0.0-353.6 is installed
  • OR libgnomesu-lang-2.0.0-353.6 is installed
  • OR libgnomesu0-2.0.0-353.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • postgresql-12.0.1-8.14 is installed
  • OR postgresql-test-12.0.1-8.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.22 is installed
  • OR kernel-azure-base-4.12.14-8.22 is installed
  • OR kernel-azure-devel-4.12.14-8.22 is installed
  • OR kernel-devel-azure-4.12.14-8.22 is installed
  • OR kernel-source-azure-4.12.14-8.22 is installed
  • OR kernel-syms-azure-4.12.14-8.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • emacs-24.3-14 is installed
  • OR emacs-el-24.3-14 is installed
  • OR emacs-info-24.3-14 is installed
  • OR emacs-nox-24.3-14 is installed
  • OR emacs-x11-24.3-14 is installed
  • OR etags-24.3-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-branding-SLE-52-31 is installed
  • OR MozillaFirefox-devel-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.6 is installed
  • OR libssh2-1-32bit-1.4.3-20.6 is installed
  • OR libssh2_org-1.4.3-20.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND shadow-4.2.1-27.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND shadow-4.2.1-27.9 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND
  • MozillaFirefox-60.7.2-109.80 is installed
  • OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND
  • MozillaFirefox-60.7.2-109.80 is installed
  • OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND hyper-v-7-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND gd-2.1.0-24.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-suds-jurko-0.6-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • pdns-4.1.2-3.3 is installed
  • OR pdns-backend-mysql-4.1.2-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libvirglrenderer0-0.5.0-12.3 is installed
  • OR virglrenderer-0.5.0-12.3 is installed
    • BACK