Oval Definition:	oval:org.opensuse.security:def:55831
Revision Date: 2021-01-26 Version: 1 Title: Security update for postgresql, postgresql12, postgresql13 (Important) Description: This update for postgresql, postgresql12, postgresql13 fixes the following issues: Initial packaging of PostgreSQL 13: https://www.postgresql.org/about/news/2077/ * https://www.postgresql.org/docs/13/release-13.html Changes in postgresql: - Bump postgresql major version to 13. Changes in postgresql12: - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) - Fix a DST problem in the test suite. Changes in postgresql13: - Add postgresql-icu68.patch: fix build with ICU 68 - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) Upgrade to version 13.1: CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/13/release-13-1.html - Fix a DST problem in the test suite. Family: unix Class: patch Status: Reference(s): 1004237 1056061 1068032 1081557 1083125 1085447 1090368 1090646 1104199 1124211 1141493 1178666 1178667 1178668 1178961 1179765 729190 833278 840826 847506 858639 875647 881241 902197 917129 929493 932483 938715 945484 945493 947458 948902 955783 959290 960319 960414 961368 962313 963539 965576 968392 968393 968394 968395 969785 970632 973782 973783 975865 976553 976556 979008 979009 979010 979011 CVE-2011-3172 CVE-2013-5018 CVE-2014-0591 CVE-2014-9654 CVE-2015-3455 CVE-2015-5400 CVE-2015-7555 CVE-2015-8325 CVE-2016-1908 CVE-2016-2569 CVE-2016-2570 CVE-2016-2571 CVE-2016-2572 CVE-2016-2851 CVE-2016-3115 CVE-2016-3947 CVE-2016-3948 CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 CVE-2016-8602 CVE-2017-12652 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-13166 CVE-2017-18190 CVE-2017-5715 CVE-2018-10915 CVE-2018-8781 CVE-2018-8897 CVE-2019-7317 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 SUSE-SU-2015:1144-1 SUSE-SU-2015:1205-1 SUSE-SU-2016:0192-1 SUSE-SU-2016:0707-1 SUSE-SU-2016:1386-1 SUSE-SU-2016:2008-1 SUSE-SU-2016:2654-1 SUSE-SU-2017:2745-1 SUSE-SU-2018:0056-1 SUSE-SU-2018:0604-1 SUSE-SU-2018:1528-1 SUSE-SU-2018:3909-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bluez-5.48-lp150.3 is installed OR libbluetooth3-5.48-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information mumble-1.2.19-9 is installed OR mumble-32bit-1.2.19-lp151.4.6 is installed OR mumble-server-1.2.19-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information strongswan-4.4.0-6.21 is installed OR strongswan-doc-4.4.0-6.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information giflib-4.1.6-13 is installed OR giflib-32bit-4.1.6-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ghostscript-9.15-14 is installed OR ghostscript-x11-9.15-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libpng16-1.6.8-15.5 is installed OR libpng16-16-1.6.8-15.5 is installed OR libpng16-16-32bit-1.6.8-15.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information pam-modules-12.1-23 is installed OR pam-modules-32bit-12.1-23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_82-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_82-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_25-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libecpg6-13.1-3.3.1 is installed OR libpq5-13.1-3.3.1 is installed OR libpq5-32bit-13.1-3.3.1 is installed OR postgresql-13-4.7.1 is installed OR postgresql-contrib-13-4.7.1 is installed OR postgresql-docs-13-4.7.1 is installed OR postgresql-plperl-13-4.7.1 is installed OR postgresql-plpython-13-4.7.1 is installed OR postgresql-pltcl-13-4.7.1 is installed OR postgresql-server-13-4.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND git-core-2.12.3-26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND hyper-v-7-7 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND wpa_supplicant-2.2-15.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-Django-1.8.19-3.4 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information cups-1.7.5-20.29 is installed OR cups-client-1.7.5-20.29 is installed OR cups-libs-1.7.5-20.29 is installed OR cups-libs-32bit-1.7.5-20.29 is installed
BACK