| Revision Date: | 2021-11-20 | Version: | 1 | | Title: | Security update for postgresql, postgresql13, postgresql14 (Important) | | Description: |
This update for postgresql, postgresql13 and postgresql14 fixes the following issues:
Security issues fixed:
- CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).
This update also ships postgresql14 to SUSE Linux Enterprise 12 SP5. (jsc#SLE-22673) On older service packs only libpq5 and libecpg6 are being replaced by the postgresql14 variants.
Feature changes in postgresql14:
- https://www.postgresql.org/about/news/postgresql-14-released-2318/ - https://www.postgresql.org/docs/14/release-14.html
| | Family: | unix | Class: | patch | | Status: | | Reference(s): | 1192516
CVE-2021-23214
CVE-2021-23222
| | Platform(s): | SUSE Linux Enterprise Server 12 SP2-LTSS-SAP
| Product(s): | |
|