Oval Definition:	oval:org.opensuse.security:def:59762
Revision Date: 2021-01-26 Version: 1 Title: Security update for postgresql, postgresql12, postgresql13 (Important) Description: This update for postgresql, postgresql12, postgresql13 fixes the following issues: Initial packaging of PostgreSQL 13: https://www.postgresql.org/about/news/2077/ * https://www.postgresql.org/docs/13/release-13.html Changes in postgresql: - Bump postgresql major version to 13. Changes in postgresql12: - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) - Fix a DST problem in the test suite. Changes in postgresql13: - Add postgresql-icu68.patch: fix build with ICU 68 - %ghost the symlinks to pg_config and ecpg. (bsc#1178961) - BuildRequire libpq5 and libecpg6 when not building them to avoid dangling symlinks in the devel package. (bsc#1179765) Upgrade to version 13.1: CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/13/release-13-1.html - Fix a DST problem in the test suite. Family: unix Class: patch Status: Reference(s): 1006984 1006989 1027282 1037811 1041090 1042670 1073269 1073748 1078326 1078485 1081750 1081925 1083624 1084650 1085449 1085469 1086001 1087102 1093311 1097560 1097824 1101689 1103809 1103810 1104076 1110949 1111331 1111622 1122668 1136446 1137597 1140747 1149792 1153108 1153830 1155094 1156321 1156331 1159035 1160968 1162224 1162367 1162825 1163019 1163026 1165894 1169511 1170411 1171352 1171561 1172277 1174543 1178666 1178667 1178668 1178961 1179765 945401 977043 CVE-2012-1152 CVE-2013-6393 CVE-2014-2525 CVE-2014-9130 CVE-2018-0739 CVE-2018-1058 CVE-2018-1063 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-1333 CVE-2018-1417 CVE-2018-17456 CVE-2018-18074 CVE-2018-20856 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2019-10220 CVE-2019-11091 CVE-2019-11477 CVE-2019-11478 CVE-2019-13272 CVE-2019-18348 CVE-2019-2949 CVE-2019-3846 CVE-2019-9674 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-5208 CVE-2020-8492 CVE-2020-8608 SUSE-SU-2018:0756-1 SUSE-SU-2018:0925-1 SUSE-SU-2018:0926-1 SUSE-SU-2018:2336-1 SUSE-SU-2020:0630-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:2171-1 SUSE-SU-2021:0217-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information alsa-1.1.5-lp150.4 is installed OR libasound2-1.1.5-lp150.4 is installed OR libasound2-32bit-1.1.5-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libqb-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-devel-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-devel-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-tests-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-tools-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb20-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb20-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND perl-YAML-LibYAML-0.38-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.252-27.45 is installed OR java-1_8_0-openjdk-demo-1.8.0.252-27.45 is installed OR java-1_8_0-openjdk-devel-1.8.0.252-27.45 is installed OR java-1_8_0-openjdk-headless-1.8.0.252-27.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libecpg6-13.1-3.3.1 is installed OR libpq5-13.1-3.3.1 is installed OR libpq5-32bit-13.1-3.3.1 is installed OR postgresql-13-4.7.1 is installed OR postgresql-contrib-13-4.7.1 is installed OR postgresql-docs-13-4.7.1 is installed OR postgresql-plperl-13-4.7.1 is installed OR postgresql-plpython-13-4.7.1 is installed OR postgresql-pltcl-13-4.7.1 is installed OR postgresql-server-13-4.7.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpython2_7-1_0-2.7.17-28.42 is installed OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed OR python-2.7.17-28.42 is installed OR python-32bit-2.7.17-28.42 is installed OR python-base-2.7.17-28.42 is installed OR python-base-32bit-2.7.17-28.42 is installed OR python-curses-2.7.17-28.42 is installed OR python-demo-2.7.17-28.42 is installed OR python-devel-2.7.17-28.42 is installed OR python-doc-2.7.17-28.42 is installed OR python-doc-pdf-2.7.17-28.42 is installed OR python-gdbm-2.7.17-28.42 is installed OR python-idle-2.7.17-28.42 is installed OR python-rpm-macros-20200207.5feb6c1-3.19 is installed OR python-tk-2.7.17-28.42 is installed OR python-xml-2.7.17-28.42 is installed OR shared-python-startup-0.1-1.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND squid-3.5.21-26.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information xen-4.9.4_10-3.71 is installed OR xen-doc-html-4.9.4_10-3.71 is installed OR xen-libs-4.9.4_10-3.71 is installed OR xen-libs-32bit-4.9.4_10-3.71 is installed OR xen-tools-4.9.4_10-3.71 is installed OR xen-tools-domU-4.9.4_10-3.71 is installed
BACK