Oval Definition:oval:org.opensuse.security:def:85771
Revision Date:2021-11-20Version:1
Title:Security update for postgresql, postgresql13, postgresql14 (Important)
Description:

This update for postgresql, postgresql13 and postgresql14 fixes the following issues:

Security issues fixed:

- CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).

This update also ships postgresql14 to SUSE Linux Enterprise 12 SP5. (jsc#SLE-22673) On older service packs only libpq5 and libecpg6 are being replaced by the postgresql14 variants.

Feature changes in postgresql14:

- https://www.postgresql.org/about/news/postgresql-14-released-2318/ - https://www.postgresql.org/docs/14/release-14.html

Family:unixClass:patch
Status:Reference(s):1192516
CVE-2021-23214
CVE-2021-23222
SUSE-SU-2021:3755-1
Platform(s):SUSE Linux Enterprise Server 12 SP3-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libecpg6-14.1-3.3.1 is installed
  • OR libpq5-14.1-3.3.1 is installed
  • OR libpq5-32bit-14.1-3.3.1 is installed
  • OR postgresql-14-4.10.1 is installed
  • OR postgresql-contrib-14-4.10.1 is installed
  • OR postgresql-docs-14-4.10.1 is installed
  • OR postgresql-plperl-14-4.10.1 is installed
  • OR postgresql-plpython-14-4.10.1 is installed
  • OR postgresql-pltcl-14-4.10.1 is installed
  • OR postgresql-server-14-4.10.1 is installed
  • BACK