Oval Definition:oval:org.opensuse.security:def:66101
Revision Date:2020-12-01Version:1
Title:Security update for postgresql10 (Moderate)
Description:

This update for postgresql10 fixes the following issues:

Security issue fixed:

- CVE-2019-10164: Fixed buffer-overflow vulnerabilities in SCRAM verifier parsing (bsc#1138034). - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators (bsc#1134689).

Bug fixes:

- For a complete list of fixes check the release notes. * https://www.postgresql.org/docs/10/release-10-9.html * https://www.postgresql.org/docs/10/release-10-8.html * https://www.postgresql.org/docs/10/release-10-7.html
Family:unixClass:patch
Status:Reference(s):1134689
1138034
1146657
CVE-2019-10086
CVE-2019-10130
CVE-2019-10164
SUSE-SU-2019:2012-1
SUSE-SU-2019:2245-1
Platform(s):SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libecpg6-10.9-8.3 is installed
  • OR postgresql10-10.9-8.3 is installed
  • OR postgresql10-contrib-10.9-8.3 is installed
  • OR postgresql10-devel-10.9-8.3 is installed
  • OR postgresql10-docs-10.9-8.3 is installed
  • OR postgresql10-plperl-10.9-8.3 is installed
  • OR postgresql10-plpython-10.9-8.3 is installed
  • OR postgresql10-pltcl-10.9-8.3 is installed
  • OR postgresql10-server-10.9-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND apache-commons-beanutils-1.9.2-4.3 is installed
    • BACK