Oval Definition:oval:org.opensuse.security:def:56907
Revision Date:2020-12-04Version:1
Title:Security update for postgresql12 (Important)
Description:



This update for postgresql12 fixes the following issues:

Upgrade to version 12.5:

CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/12/release-12-5.html

The previous postgresql12 update already addressed:

Update to 12.4:

CVE-2020-14349, bsc#1175193: Set a secure search_path in logical replication walsenders and apply workers * CVE-2020-14350, bsc#1175194: Make contrib modules' installation scripts more secure.

https://www.postgresql.org/docs/12/release-12-4.html


Family:unixClass:patch
Status:Reference(s):1005091
1012382
1012677
1018870
1024724
1025013
1025254
1027053
1027057
1030575
1031481
1031660
1035829
1039496
1041830
1043484
1043607
1045060
1045062
1045065
1048576
1050242
1051510
1053043
1056787
1058115
1063638
1064802
1065600
1065729
1066129
1068546
1069708
1071995
1075020
1082387
1083125
1083647
1085447
1085535
1090368
1090646
1091396
1099658
1103992
1104353
1104427
1105010
1106011
1106284
1107832
1108838
1108963
1110233
1110946
1111696
1112063
1113722
1114427
1114893
1115688
1115713
1117158
1117561
1118139
1119843
1120091
1120423
1120566
1120843
1120902
1122776
1123156
1123454
1123663
1124503
1124839
1126356
1127616
1128052
1128904
1128905
1128979
1129138
1129497
1129693
1129770
1129848
1129857
1130409
1130699
1130972
1131451
1131488
1131565
1131673
1132044
1132894
1133176
1133188
1133190
1133320
1133612
1133616
1134160
1134162
1134199
1134200
1134201
1134202
1134203
1134204
1134205
1134354
1134393
1134459
1134460
1134461
1134537
1134591
1134597
1134607
1134651
1134671
1134760
1134806
1134810
1134813
1134848
1134936
1135006
1135007
1135008
1135056
1135100
1135120
1135278
1135281
1135309
1135312
1135314
1135315
1135316
1135320
1135323
1135330
1135492
1135542
1135556
1135603
1135642
1135661
1135758
1136206
1136424
1136428
1136430
1136432
1136434
1136435
1136438
1136439
1136477
1136478
1136573
1136586
1136881
1136935
1136990
1137151
1137152
1137153
1137162
1137372
1137444
1137586
1137739
1137752
1146873
1149811
1161066
1163018
1166240
1170940
1172405
1175193
1175194
1178666
1178667
1178668
880984
936923
956159
960506
961305
964336
995964
CVE-2013-2063
CVE-2014-1545
CVE-2015-7183
CVE-2015-8605
CVE-2016-7098
CVE-2017-1000364
CVE-2017-13166
CVE-2017-16939
CVE-2017-3167
CVE-2017-3167
CVE-2017-3169
CVE-2017-3169
CVE-2017-5953
CVE-2017-6349
CVE-2017-6350
CVE-2017-7679
CVE-2017-7679
CVE-2017-9788
CVE-2018-14633
CVE-2018-14634
CVE-2018-15473
CVE-2018-17182
CVE-2018-19208
CVE-2018-7191
CVE-2018-8781
CVE-2018-8897
CVE-2019-10124
CVE-2019-11085
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11486
CVE-2019-11487
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12068
CVE-2019-12382
CVE-2019-15890
CVE-2019-3846
CVE-2019-5489
CVE-2019-6778
CVE-2020-14349
CVE-2020-14350
CVE-2020-1711
CVE-2020-1983
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-7039
CVE-2020-8022
CVE-2020-8608
SUSE-SU-2016:0541-1
SUSE-SU-2016:3268-1
SUSE-SU-2017:1712-1
SUSE-SU-2017:1714-1
SUSE-SU-2017:1937-1
SUSE-SU-2017:2449-1
SUSE-SU-2017:3338-1
SUSE-SU-2018:1528-1
SUSE-SU-2018:3812-2
SUSE-SU-2018:3910-1
SUSE-SU-2019:1530-1
SUSE-SU-2020:1514-1
SUSE-SU-2020:1791-1
SUSE-SU-2020:3630-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.0 NonFree
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libIlmImf-2_2-23-2.2.1-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 NonFree is installed
  • AND opera-54.0.2952.41-lp150.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • fence-agents-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-amt_ws-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libwpd-0.10.2-2.7 is installed
  • OR libwpd-0_10-10-0.10.2-2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • dhcp-4.3.3-4 is installed
  • OR dhcp-client-4.3.3-4 is installed
  • OR dhcp-relay-4.3.3-4 is installed
  • OR dhcp-server-4.3.3-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_29-default-5-3 is installed
  • OR kgraft-patch-3_12_69-60_64_29-xen-5-3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_12-5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXtst6-1.2.2-3 is installed
  • OR libXtst6-32bit-1.2.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • perl-5.18.2-12.14 is installed
  • OR perl-32bit-5.18.2-12.14 is installed
  • OR perl-base-5.18.2-12.14 is installed
  • OR perl-doc-5.18.2-12.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.5-30.63 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.5-30.63 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr6.5-30.63 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.5-30.63 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND squid-3.5.21-26.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libecpg6-12.5-3.9.3 is installed
  • OR libpq5-12.5-3.9.3 is installed
  • OR libpq5-32bit-12.5-3.9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libspice-client-glib-2_0-8-0.33-3.6 is installed
  • OR libspice-client-glib-helper-0.33-3.6 is installed
  • OR libspice-client-gtk-3_0-5-0.33-3.6 is installed
  • OR libspice-controller0-0.33-3.6 is installed
  • OR spice-gtk-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND powerpc-utils-1.3.5-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openssh-7.2p2-74.30 is installed
  • OR openssh-askpass-gnome-7.2p2-74.30 is installed
  • OR openssh-fips-7.2p2-74.30 is installed
  • OR openssh-helpers-7.2p2-74.30 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • krb5-appl-1.0.3-3.3 is installed
  • OR krb5-appl-clients-1.0.3-3.3 is installed
  • OR krb5-appl-servers-1.0.3-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • BACK