Oval Definition:	oval:org.opensuse.security:def:57958
Revision Date: 2021-01-26 Version: 1 Title: Security update for postgresql, postgresql12, postgresql13 (Important) Description: This update for postgresql, postgresql12, postgresql13 fixes the following issues: Initial packaging of PostgreSQL 13: https://www.postgresql.org/about/news/2077/ * https://www.postgresql.org/docs/13/release-13.html Changes in postgresql: - Bump postgresql major version to 13. Changes in postgresql12: - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) - Fix a DST problem in the test suite. Changes in postgresql13: - Add postgresql-icu68.patch: fix build with ICU 68 - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) Upgrade to version 13.1: CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/13/release-13-1.html - Fix a DST problem in the test suite. Family: unix Class: patch Status: Reference(s): 1018128 1030263 1032114 1032120 1036453 1037216 1056865 1075091 1075994 1087082 1087813 1091041 1092885 1095735 1096223 1098735 1099279 1106222 1107832 1110233 1110910 1111006 1111010 1111013 1114422 1115375 1120386 1120644 1121571 1121816 1121818 1121821 1122191 1131107 1133147 1136449 1137325 1138743 1139073 1141035 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1144903 1146519 1146544 1146612 1149294 1149295 1149296 1149297 1149298 1149299 1149303 1149304 1149324 1149591 1153108 1153158 1153161 1153811 1154844 1154849 1155311 1155787 1155897 1155988 1156060 1157038 1157042 1157070 1157143 1157155 1157157 1157158 1157303 1157324 1157333 1157464 1157804 1157923 1158021 1158132 1158381 1158394 1158398 1158410 1158413 1158417 1158427 1158445 1158819 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1160195 1162227 1162298 1162928 1162929 1162931 1163971 1164069 1164078 1164846 1165111 1165311 1165873 1165881 1165984 1165985 1167629 1168075 1168295 1168424 1168829 1168854 1170056 1170345 1170778 1178666 1178667 1178668 1178961 1179765 998182 CVE-2012-2150 CVE-2016-10220 CVE-2016-7404 CVE-2016-9601 CVE-2017-18255 CVE-2017-2518 CVE-2017-5715 CVE-2017-5951 CVE-2017-7207 CVE-2017-8291 CVE-2017-9951 CVE-2018-10839 CVE-2018-11806 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12617 CVE-2018-14633 CVE-2018-15746 CVE-2018-17182 CVE-2018-17958 CVE-2018-17962 CVE-2018-17963 CVE-2018-18849 CVE-2018-20406 CVE-2018-20685 CVE-2018-21008 CVE-2018-3639 CVE-2019-10220 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11753 CVE-2019-14615 CVE-2019-14834 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15213 CVE-2019-17133 CVE-2019-18660 CVE-2019-18675 CVE-2019-18683 CVE-2019-19052 CVE-2019-19062 CVE-2019-19066 CVE-2019-19073 CVE-2019-19074 CVE-2019-19319 CVE-2019-19332 CVE-2019-19447 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3701 CVE-2019-5010 CVE-2019-5108 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-7317 CVE-2019-9455 CVE-2019-9458 CVE-2019-9812 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-2732 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2017:1138-1 SUSE-SU-2017:1233-1 SUSE-SU-2018:0839-1 SUSE-SU-2018:1571-2 SUSE-SU-2018:2973-1 SUSE-SU-2018:4237-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0243-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2436-1 SUSE-SU-2019:2988-1 SUSE-SU-2019:3050-1 SUSE-SU-2020:0419-1 SUSE-SU-2020:1255-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information fuse-2.9.7-lp150.1 is installed OR libfuse2-2.9.7-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND schismtracker-20190805-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND xfsprogs-4.3.0-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.141-42 is installed OR java-1_7_0-openjdk-demo-1.7.0.141-42 is installed OR java-1_7_0-openjdk-devel-1.7.0.141-42 is installed OR java-1_7_0-openjdk-headless-1.7.0.141-42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-13.1-3.3.1 is installed OR libpq5-13.1-3.3.1 is installed OR libpq5-32bit-13.1-3.3.1 is installed OR postgresql-13-4.7.1 is installed OR postgresql-contrib-13-4.7.1 is installed OR postgresql-docs-13-4.7.1 is installed OR postgresql-plperl-13-4.7.1 is installed OR postgresql-plpython-13-4.7.1 is installed OR postgresql-pltcl-13-4.7.1 is installed OR postgresql-server-13-4.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-2 is installed OR libopenssl1_0_0-1.0.2p-2 is installed OR libopenssl1_0_0-32bit-1.0.2p-2 is installed OR libopenssl1_0_0-hmac-1.0.2p-2 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2p-2 is installed OR openssl-1_0_0-1.0.2p-2 is installed OR openssl-1_0_0-doc-1.0.2p-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-s390-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.6 is installed OR rubygem-actionview-4_2-4.2.9-9.6 is installed
BACK