Oval Definition:oval:org.opensuse.security:def:58646
Revision Date:2020-12-04Version:1
Title:Security update for postgresql12 (Important)
Description:



This update for postgresql12 fixes the following issues:

Upgrade to version 12.5:

CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/12/release-12-5.html

The previous postgresql12 update already addressed:

Update to 12.4:

CVE-2020-14349, bsc#1175193: Set a secure search_path in logical replication walsenders and apply workers * CVE-2020-14350, bsc#1175194: Make contrib modules' installation scripts more secure.

https://www.postgresql.org/docs/12/release-12-4.html


Family:unixClass:patch
Status:Reference(s):1017646
1027519
1035204
1039034
1049399
1049404
1049417
1054413
1054591
1072665
1073879
1083125
1085447
1086039
1089152
1089635
1090338
1090368
1090646
1090820
1090822
1090823
1090869
1091107
1096740
1103098
1103276
1109412
1109413
1109414
1111622
1111996
1112534
1112535
1113247
1113252
1113255
1116827
1118830
1118831
1120640
1121034
1121035
1121056
1122668
1127223
1127308
1128574
1133131
1133232
1141913
1142772
1160305
1160498
1162002
1170383
1171189
1171191
1171220
1171732
1171988
1172049
1172453
1172458
1172775
1172781
1172782
1172783
1172999
1174115
1174462
1174543
1175193
1175194
1178666
1178667
1178668
761500
922448
929736
935252
945455
947357
958791
961596
967128
CVE-2008-4316
CVE-2009-5155
CVE-2011-2186
CVE-2012-3524
CVE-2014-3430
CVE-2014-9390
CVE-2015-2296
CVE-2015-8540
CVE-2016-10087
CVE-2016-2315
CVE-2016-2324
CVE-2016-4983
CVE-2017-13166
CVE-2017-2669
CVE-2017-3636
CVE-2017-3641
CVE-2017-3653
CVE-2017-5436
CVE-2017-5754
CVE-2017-8386
CVE-2018-1000876
CVE-2018-10471
CVE-2018-10472
CVE-2018-1087
CVE-2018-17358
CVE-2018-17359
CVE-2018-17360
CVE-2018-17985
CVE-2018-18074
CVE-2018-18309
CVE-2018-18483
CVE-2018-18484
CVE-2018-18605
CVE-2018-18606
CVE-2018-18607
CVE-2018-19931
CVE-2018-19932
CVE-2018-20623
CVE-2018-20651
CVE-2018-20671
CVE-2018-3646
CVE-2018-3665
CVE-2018-5391
CVE-2018-8781
CVE-2018-8897
CVE-2018-8897
CVE-2019-1010180
CVE-2019-17015
CVE-2019-17016
CVE-2019-17017
CVE-2019-17021
CVE-2019-17022
CVE-2019-17024
CVE-2019-17026
CVE-2019-20810
CVE-2019-20812
CVE-2019-9169
CVE-2020-0305
CVE-2020-10135
CVE-2020-10711
CVE-2020-10732
CVE-2020-10751
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10773
CVE-2020-12771
CVE-2020-13974
CVE-2020-14349
CVE-2020-14350
CVE-2020-14416
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
SUSE-SU-2017:0860-1
SUSE-SU-2017:1149-1
SUSE-SU-2018:0079-1
SUSE-SU-2018:1524-1
SUSE-SU-2018:1943-1
SUSE-SU-2018:2410-1
SUSE-SU-2019:1958-1
SUSE-SU-2019:2650-1
SUSE-SU-2020:0068-1
SUSE-SU-2020:2134-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXvMC1-1.0.10-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND skopeo-0.1.32-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libpng12-1.2.50-19 is installed
  • OR libpng12-0-1.2.50-19 is installed
  • OR libpng12-0-32bit-1.2.50-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND binutils-2.32-9.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.5_02-43.30 is installed
  • OR xen-doc-html-4.7.5_02-43.30 is installed
  • OR xen-libs-4.7.5_02-43.30 is installed
  • OR xen-libs-32bit-4.7.5_02-43.30 is installed
  • OR xen-tools-4.7.5_02-43.30 is installed
  • OR xen-tools-domU-4.7.5_02-43.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_32-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_11-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dovecot22-2.2.30.2-14 is installed
  • OR dovecot22-backend-mysql-2.2.30.2-14 is installed
  • OR dovecot22-backend-pgsql-2.2.30.2-14 is installed
  • OR dovecot22-backend-sqlite-2.2.30.2-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libecpg6-12.5-3.9.3 is installed
  • OR libpq5-12.5-3.9.3 is installed
  • OR libpq5-32bit-12.5-3.9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libsndfile1-1.0.25-36.16 is installed
  • OR libsndfile1-32bit-1.0.25-36.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • tomcat-9.0.36-3.42 is installed
  • OR tomcat-admin-webapps-9.0.36-3.42 is installed
  • OR tomcat-docs-webapp-9.0.36-3.42 is installed
  • OR tomcat-el-3_0-api-9.0.36-3.42 is installed
  • OR tomcat-javadoc-9.0.36-3.42 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-3.42 is installed
  • OR tomcat-lib-9.0.36-3.42 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-3.42 is installed
  • OR tomcat-webapps-9.0.36-3.42 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND squid-3.5.21-26.17 is installed
    • BACK