Oval Definition:	oval:org.opensuse.security:def:60266
Revision Date: 2021-05-27 Version: 1 Title: Security update for postgresql12 (Moderate) Description: This update for postgresql12 fixes the following issues: - Upgrade to version 12.7: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING 'pg_psql_temporary_savepoint' does not exist (bsc#1185926). - CVE-2021-3393: Fixed information leakage in constraint-violation error messages (bsc#1182040). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). Family: unix Class: patch Status: Reference(s): 1054429 1076958 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1106853 1108627 1108637 1110358 1132160 1156275 1170643 1170771 1172405 1173027 1174157 1175259 1179945 1182040 1183118 1183168 1185924 1185925 1185926 CVE-2009-2473 CVE-2009-2474 CVE-2010-2761 CVE-2010-3170 CVE-2010-4410 CVE-2010-4411 CVE-2010-4777 CVE-2011-3389 CVE-2011-3640 CVE-2012-1571 CVE-2013-0743 CVE-2013-0791 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-5605 CVE-2014-1492 CVE-2014-1568 CVE-2014-1569 CVE-2014-3710 CVE-2014-5044 CVE-2014-8116 CVE-2014-8117 CVE-2014-8962 CVE-2014-9028 CVE-2015-4000 CVE-2015-5276 CVE-2015-7181 CVE-2015-7182 CVE-2015-7575 CVE-2015-8853 CVE-2016-1238 CVE-2016-1938 CVE-2016-1950 CVE-2016-1978 CVE-2016-1979 CVE-2016-2381 CVE-2016-2834 CVE-2016-5285 CVE-2016-6185 CVE-2016-8635 CVE-2016-9074 CVE-2016-9574 CVE-2017-11613 CVE-2017-15107 CVE-2017-9935 CVE-2018-16335 CVE-2018-17100 CVE-2018-17101 CVE-2018-17795 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2019-11068 CVE-2019-14869 CVE-2019-17639 CVE-2020-12243 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-3899 CVE-2020-8022 CVE-2020-8177 CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 CVE-2021-3393 SUSE-SU-2018:1692-1 SUSE-SU-2018:3289-1 SUSE-SU-2019:1232-1 SUSE-SU-2019:1721-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:1193-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:1732-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:2482-1 SUSE-SU-2021:1783-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information java-11-openjdk-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-accessibility-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-demo-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-devel-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-headless-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-javadoc-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-jmods-11.0.2.0-lp150.2.12 is installed OR java-11-openjdk-src-11.0.2.0-lp150.2.12 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND rdesktop-1.8.6-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR gcc48-locale-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information tomcat-8.0.53-29.32 is installed OR tomcat-admin-webapps-8.0.53-29.32 is installed OR tomcat-docs-webapp-8.0.53-29.32 is installed OR tomcat-el-3_0-api-8.0.53-29.32 is installed OR tomcat-javadoc-8.0.53-29.32 is installed OR tomcat-jsp-2_3-api-8.0.53-29.32 is installed OR tomcat-lib-8.0.53-29.32 is installed OR tomcat-servlet-3_1-api-8.0.53-29.32 is installed OR tomcat-webapps-8.0.53-29.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND mailman-2.1.17-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-arm64-efi-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND postgresql12-12.7-3.15.3 is installed OR postgresql12-contrib-12.7-3.15.3 is installed OR postgresql12-docs-12.7-3.15.3 is installed OR postgresql12-plperl-12.7-3.15.3 is installed OR postgresql12-plpython-12.7-3.15.3 is installed OR postgresql12-pltcl-12.7-3.15.3 is installed OR postgresql12-server-12.7-3.15.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND postgresql12-12.7-3.15.3 is installed OR postgresql12-contrib-12.7-3.15.3 is installed OR postgresql12-docs-12.7-3.15.3 is installed OR postgresql12-plperl-12.7-3.15.3 is installed OR postgresql12-plpython-12.7-3.15.3 is installed OR postgresql12-pltcl-12.7-3.15.3 is installed OR postgresql12-server-12.7-3.15.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.70-38.56 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.70-38.56 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.70-38.56 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.70-38.56 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.70-38.56 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information apache2-2.4.23-29.63 is installed OR apache2-doc-2.4.23-29.63 is installed OR apache2-example-pages-2.4.23-29.63 is installed OR apache2-prefork-2.4.23-29.63 is installed OR apache2-utils-2.4.23-29.63 is installed OR apache2-worker-2.4.23-29.63 is installed
BACK