Oval Definition:	oval:org.opensuse.security:def:58474
Revision Date: 2020-12-01 Version: 1 Title: Security update for postgresql94 (Moderate) Description: This update for postgresql94 to 9.4.12 fixes the following issues: Upstream changelogs: - https://www.postgresql.org/docs/9.4/static/release-9-4-12.html - https://www.postgresql.org/docs/9.4/static/release-9-4-11.html - https://www.postgresql.org/docs/9.4/static/release-9-4-10.html Security issues fixed: CVE-2017-7486: Restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1037624) Please note that manual action is needed to fix this in existing databases See the upstream release notes for details. * CVE-2017-7485: recognize PGREQUIRESSL variable again. (bsc#1038293) * CVE-2017-7484: Prevent exposure of statistical information via leaky operators. (bsc#1037603) Changes in version 9.4.12: Build corruption with CREATE INDEX CONCURRENTLY * Fixes for visibility and write-ahead-log stability Changes in version 9.4.10: Fix WAL-logging of truncation of relation free space maps and visibility maps * Fix incorrect creation of GIN index WAL records on big-endian machines * Fix SELECT FOR UPDATE/SHARE to correctly lock tuples that have been updated by a subsequently-aborted transaction * Fix EvalPlanQual rechecks involving CTE scans * Fix improper repetition of previous results from hashed aggregation in a subquery The libraries libpq and libecpg are now supplied by postgresql 9.6. Family: unix Class: patch Status: Reference(s): 1000118 1000189 1000287 1000304 1000433 1000776 1001169 1001171 1001310 1001462 1001486 1001888 1002322 1002770 1002786 1003068 1003566 1003581 1003606 1003813 1003866 1003964 1004048 1004052 1004252 1004365 1004517 1005169 1005327 1005545 1005666 1005745 1005895 1005917 1005921 1005923 1005925 1005929 1006103 1006175 1006267 1006528 1006576 1006804 1006809 1006827 1006915 1006918 1007197 1007615 1007653 1007955 1008557 1008979 1009062 1009966 1009969 1009994 1010040 1010158 1010444 1010478 1010507 1010665 1010690 1010756 1010757 1010766 1010774 1010782 1010968 1010970 1010975 1011176 1011250 1011913 1012060 1012094 1012452 1012767 1012829 1012992 1013001 1013479 1013531 1013700 1014120 1014392 1014701 1014710 1015212 1015359 1015367 1015416 1022263 1022264 1022265 1022283 1022284 1022553 1037603 1037624 1038293 1047958 1049485 1049491 1063269 1096564 1097108 1097356 1099306 1103203 1121571 1121816 1121818 1121821 1121826 1129186 1164692 1167373 1169740 1171355 1172031 1172225 1172651 1173304 1173334 1174662 799133 910252 910253 913650 913651 914939 917152 922634 963609 963655 963904 964462 966170 966172 966186 966191 966316 966318 966325 966471 969474 969475 969476 969477 969756 971975 971989 972993 974313 974842 974843 978907 979378 979681 981825 983087 983152 983318 985850 986255 986987 987641 987703 987805 988524 988715 990384 992555 993739 993841 993891 994881 995278 996511 997059 997639 997807 998054 998689 999907 999932 CVE-2014-8116 CVE-2014-8117 CVE-2014-9620 CVE-2014-9621 CVE-2014-9653 CVE-2015-1350 CVE-2015-8964 CVE-2016-10166 CVE-2016-10167 CVE-2016-10168 CVE-2016-6906 CVE-2016-6912 CVE-2016-7039 CVE-2016-7042 CVE-2016-7425 CVE-2016-7913 CVE-2016-7917 CVE-2016-8645 CVE-2016-8666 CVE-2016-9083 CVE-2016-9084 CVE-2016-9262 CVE-2016-9317 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9793 CVE-2016-9919 CVE-2017-1000050 CVE-2017-1000198 CVE-2017-1000199 CVE-2017-11600 CVE-2017-18344 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2018-10853 CVE-2018-20685 CVE-2018-3646 CVE-2018-5848 CVE-2018-8956 CVE-2019-18860 CVE-2019-20807 CVE-2019-3838 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-6133 CVE-2020-11868 CVE-2020-13817 CVE-2020-14059 CVE-2020-15025 CVE-2020-1938 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 SUSE-SU-2017:0181-1 SUSE-SU-2017:0468-1 SUSE-SU-2017:1690-1 SUSE-SU-2017:1916-1 SUSE-SU-2017:2601-1 SUSE-SU-2017:3048-1 SUSE-SU-2018:2387-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0719-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:2232-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ibus-chewing-1.4.14-lp150.1 is installed OR ibus-pinyin-1.5.0-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND bubblewrap-0.3.3-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information postgresql94-9.4.12-20 is installed OR postgresql94-contrib-9.4.12-20 is installed OR postgresql94-docs-9.4.12-20 is installed OR postgresql94-server-9.4.12-20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.35 is installed OR openssh-askpass-gnome-7.2p2-74.35 is installed OR openssh-fips-7.2p2-74.35 is installed OR openssh-helpers-7.2p2-74.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ceph-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR ceph-common-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR libcephfs2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR librados2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR libradosstriper1-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR librbd1-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR librgw2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR python-cephfs-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR python-rados-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR python-rbd-12.2.13+git.1592168685.85110a3e9d-2.50 is installed OR python-rgw-12.2.13+git.1592168685.85110a3e9d-2.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND openvswitch-2.7.6-3.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ft2demos-2.6.3-7.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-4.15 is installed OR crowbar-core-5.0+git.1565280360.01fed6905-3.26 is installed OR crowbar-core-branding-upstream-5.0+git.1565280360.01fed6905-3.26 is installed OR crowbar-ha-5.0+git.1562069707.e2de18c-3.20 is installed OR crowbar-openstack-5.0+git.1565270683.ea6e63d87-4.28 is installed OR crowbar-ui-1.2.0+git.1563181545.65360af5-3.9 is installed OR documentation-suse-openstack-cloud-deployment-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-supplement-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20190805-1.20 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20190805-1.20 is installed OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-4.6 is installed OR grafana-monasca-ui-drilldown-1.8.1~dev39-3.9 is installed OR openstack-cinder-11.2.3~dev7-3.18 is installed OR openstack-cinder-api-11.2.3~dev7-3.18 is installed OR openstack-cinder-backup-11.2.3~dev7-3.18 is installed OR openstack-cinder-doc-11.2.3~dev7-3.18 is installed OR openstack-cinder-scheduler-11.2.3~dev7-3.18 is installed OR openstack-cinder-volume-11.2.3~dev7-3.18 is installed OR openstack-glance-15.0.3~dev2-3.9 is installed OR openstack-glance-api-15.0.3~dev2-3.9 is installed OR openstack-glance-doc-15.0.3~dev2-3.9 is installed OR openstack-glance-registry-15.0.3~dev2-3.9 is installed OR openstack-heat-9.0.8~dev11-3.21 is installed OR openstack-heat-api-9.0.8~dev11-3.21 is installed OR openstack-heat-api-cfn-9.0.8~dev11-3.21 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev11-3.21 is installed OR openstack-heat-doc-9.0.8~dev11-3.21 is installed OR openstack-heat-engine-9.0.8~dev11-3.21 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev11-3.21 is installed OR openstack-heat-test-9.0.8~dev11-3.21 is installed OR openstack-horizon-plugin-monasca-ui-1.8.1~dev39-3.9 is installed OR openstack-horizon-plugin-neutron-fwaas-ui-1.0.1~dev9-4.6 is installed OR openstack-ironic-9.1.8~dev7-3.21 is installed OR openstack-ironic-api-9.1.8~dev7-3.21 is installed OR openstack-ironic-conductor-9.1.8~dev7-3.21 is installed OR openstack-ironic-doc-9.1.8~dev7-3.21 is installed OR openstack-keystone-12.0.4~dev2-5.22 is installed OR openstack-keystone-doc-12.0.4~dev2-5.22 is installed OR openstack-manila-5.1.1~dev2-3.18 is installed OR openstack-manila-api-5.1.1~dev2-3.18 is installed OR openstack-manila-data-5.1.1~dev2-3.18 is installed OR openstack-manila-doc-5.1.1~dev2-3.18 is installed OR openstack-manila-scheduler-5.1.1~dev2-3.18 is installed OR openstack-manila-share-5.1.1~dev2-3.18 is installed OR openstack-monasca-agent-2.2.5~dev5-3.12 is installed OR openstack-monasca-api-2.2.2~dev1-3.15 is installed OR openstack-monasca-persister-1.7.1~dev10-3.9 is installed OR openstack-monasca-persister-java-1.7.1~a0~dev2-3.3 is installed OR openstack-murano-4.0.2~dev2-3.9 is installed OR openstack-murano-api-4.0.2~dev2-3.9 is installed OR openstack-murano-doc-4.0.2~dev2-3.9 is installed OR openstack-murano-engine-4.0.2~dev2-3.9 is installed OR openstack-neutron-11.0.9~dev42-3.21 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-doc-11.0.9~dev42-3.21 is installed OR openstack-neutron-gbp-7.3.1~dev45-3.6 is installed OR openstack-neutron-ha-tool-11.0.9~dev42-3.21 is installed OR openstack-neutron-l3-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.12 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.12 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.12 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-metadata-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-metering-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev42-3.21 is installed OR openstack-neutron-server-11.0.9~dev42-3.21 is installed OR openstack-nova-16.1.9~dev4-3.26 is installed OR openstack-nova-api-16.1.9~dev4-3.26 is installed OR openstack-nova-cells-16.1.9~dev4-3.26 is installed OR openstack-nova-compute-16.1.9~dev4-3.26 is installed OR openstack-nova-conductor-16.1.9~dev4-3.26 is installed OR openstack-nova-console-16.1.9~dev4-3.26 is installed OR openstack-nova-consoleauth-16.1.9~dev4-3.26 is installed OR openstack-nova-doc-16.1.9~dev4-3.26 is installed OR openstack-nova-novncproxy-16.1.9~dev4-3.26 is installed OR openstack-nova-placement-api-16.1.9~dev4-3.26 is installed OR openstack-nova-scheduler-16.1.9~dev4-3.26 is installed OR openstack-nova-serialproxy-16.1.9~dev4-3.26 is installed OR openstack-nova-vncproxy-16.1.9~dev4-3.26 is installed OR openstack-octavia-1.0.6~dev2-4.18 is installed OR openstack-octavia-amphora-agent-1.0.6~dev2-4.18 is installed OR openstack-octavia-api-1.0.6~dev2-4.18 is installed OR openstack-octavia-health-manager-1.0.6~dev2-4.18 is installed OR openstack-octavia-housekeeping-1.0.6~dev2-4.18 is installed OR openstack-octavia-worker-1.0.6~dev2-4.18 is installed OR python-cinder-11.2.3~dev7-3.18 is installed OR python-glance-15.0.3~dev2-3.9 is installed OR python-heat-9.0.8~dev11-3.21 is installed OR python-horizon-plugin-monasca-ui-1.8.1~dev39-3.9 is installed OR python-horizon-plugin-neutron-fwaas-ui-1.0.1~dev9-4.6 is installed OR python-ironic-9.1.8~dev7-3.21 is installed OR python-keystone-12.0.4~dev2-5.22 is installed OR python-manila-5.1.1~dev2-3.18 is installed OR python-monasca-agent-2.2.5~dev5-3.12 is installed OR python-monasca-api-2.2.2~dev1-3.15 is installed OR python-monasca-persister-1.7.1~dev10-3.9 is installed OR python-murano-4.0.2~dev2-3.9 is installed OR python-neutron-11.0.9~dev42-3.21 is installed OR python-neutron-gbp-7.3.1~dev45-3.6 is installed OR python-neutron-lbaas-11.0.4~dev6-3.12 is installed OR python-nova-16.1.9~dev4-3.26 is installed OR python-octavia-1.0.6~dev2-4.18 is installed OR python-oslo.db-4.25.2-3.6 is installed OR python-osprofiler-1.11.1-3.3 is installed
BACK