Oval Definition:oval:org.opensuse.security:def:69437
Revision Date:2020-12-01Version:1
Title:Security update for postgresql10 (Moderate)
Description:

This update for postgresql10 fixes the following issues:

Security issue fixed:

- CVE-2019-10164: Fixed buffer-overflow vulnerabilities in SCRAM verifier parsing (bsc#1138034). - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators (bsc#1134689).

Bug fixes:

- For a complete list of fixes check the release notes. * https://www.postgresql.org/docs/10/release-10-9.html * https://www.postgresql.org/docs/10/release-10-8.html * https://www.postgresql.org/docs/10/release-10-7.html
Family:unixClass:patch
Status:Reference(s):1134689
1138034
1173389
CVE-2019-10130
CVE-2019-10164
CVE-2020-11996
SUSE-SU-2019:2012-1
SUSE-SU-2020:1962-1
Platform(s):SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libecpg6-10.9-8.3 is installed
  • OR postgresql10-10.9-8.3 is installed
  • OR postgresql10-contrib-10.9-8.3 is installed
  • OR postgresql10-devel-10.9-8.3 is installed
  • OR postgresql10-docs-10.9-8.3 is installed
  • OR postgresql10-plperl-10.9-8.3 is installed
  • OR postgresql10-plpython-10.9-8.3 is installed
  • OR postgresql10-pltcl-10.9-8.3 is installed
  • OR postgresql10-server-10.9-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • tomcat-9.0.36-4.38 is installed
  • OR tomcat-admin-webapps-9.0.36-4.38 is installed
  • OR tomcat-el-3_0-api-9.0.36-4.38 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-4.38 is installed
  • OR tomcat-lib-9.0.36-4.38 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-4.38 is installed
  • OR tomcat-webapps-9.0.36-4.38 is installed
    • BACK