Описание
ELSA-2022-4855: postgresql:13 security update (IMPORTANT)
postgresql [13.7-2]
- Resolves: CVE-2022-1552
- Release bump due to wrongly reported CVE of libpq Build after reverted changes in libpq package
[13.7-1]
- Resolves: CVE-2022-1552
- Update to 13.7
- Release notes: https://www.postgresql.org/docs/release/13.7/
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module postgresql:13 is enabled
pg_repack
1.4.6-3.module+el8.5.0+20353+e924f9ed
pgaudit
1.5.0-1.module+el8.4.0+20016+06fd4df3
postgres-decoderbufs
0.10.0-2.module+el8.4.0+20016+06fd4df3
postgresql
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-contrib
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-docs
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-plperl
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-plpython3
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-pltcl
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-server
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-server-devel
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-static
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-test
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-test-rpm-macros
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-upgrade
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-upgrade-devel
13.7-2.module+el8.6.0+20679+105cfe02
Oracle Linux x86_64
Module postgresql:13 is enabled
pg_repack
1.4.6-3.module+el8.5.0+20353+e924f9ed
pgaudit
1.5.0-1.module+el8.4.0+20016+06fd4df3
postgres-decoderbufs
0.10.0-2.module+el8.4.0+20016+06fd4df3
postgresql
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-contrib
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-docs
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-plperl
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-plpython3
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-pltcl
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-server
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-server-devel
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-static
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-test
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-test-rpm-macros
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-upgrade
13.7-2.module+el8.6.0+20679+105cfe02
postgresql-upgrade-devel
13.7-2.module+el8.6.0+20679+105cfe02
Связанные CVE
Связанные уязвимости
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
A flaw was found in PostgreSQL. There is an issue with incomplete effo ...