Описание
ELSA-2022-4805: postgresql:10 security update (IMPORTANT)
[10.21-2]
- Resolves: CVE-2022-1552
- Release bump due to wrongly reported CVE of libpq Build after reverted changes in libpq package
[10.21-1]
- Resolves: CVE-2022-1552
- Update to 10.21
- Release notes: https://www.postgresql.org/docs/release/10.21/
[10.19-2]
- Add missing files into file section of server package postgresql-setup v8.6 newly provides postgresql-upgrade
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module postgresql:10 is enabled
postgresql
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-contrib
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-docs
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-plperl
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-plpython3
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-pltcl
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-server
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-server-devel
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-static
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-test
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-test-rpm-macros
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-upgrade
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-upgrade-devel
10.21-2.module+el8.6.0+20673+e7bc7ac8
Oracle Linux x86_64
Module postgresql:10 is enabled
postgresql
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-contrib
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-docs
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-plperl
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-plpython3
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-pltcl
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-server
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-server-devel
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-static
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-test
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-test-rpm-macros
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-upgrade
10.21-2.module+el8.6.0+20673+e7bc7ac8
postgresql-upgrade-devel
10.21-2.module+el8.6.0+20673+e7bc7ac8
Связанные CVE
Связанные уязвимости
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete effo ...