exploitDog

RLSA-2021:2372

Опубликовано: 10 июн. 2021

Источник: rocky

Оценка: Important

Описание

Important: postgresql:12 security update

PostgreSQL is an advanced object-relational database management system (DBMS).

The following packages have been upgraded to a later upstream version: postgresql (12.7)

Security Fix(es):

postgresql: Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027)
postgresql: Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATE (CVE-2021-32028)
postgresql: Memory disclosure in partitioned-table UPDATE ... RETURNING (CVE-2021-32029)
postgresql: Partition constraint violation errors leak values of denied columns (CVE-2021-3393)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
postgres-decoderbufs	x86_64	2.module+el8.5.0+684+c3892ef9	postgres-decoderbufs-0.10.0-2.module+el8.5.0+684+c3892ef9.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=1924005
Red Hat - 1924005
https://bugzilla.redhat.com/show_bug.cgi?id=1956876
Red Hat - 1956876
https://bugzilla.redhat.com/show_bug.cgi?id=1956877
Red Hat - 1956877
https://bugzilla.redhat.com/show_bug.cgi?id=1956883
Red Hat - 1956883

Связанные уязвимости

SUSE-SU-2021:1783-1

suse-cvrf

около 4 лет назад

Security update for postgresql12

ELSA-2021-2372

oracle-oval

около 4 лет назад

ELSA-2021-2372: postgresql:12 security update (IMPORTANT)

openSUSE-SU-2021:1994-1

suse-cvrf

почти 4 года назад

Security update for postgresql12

openSUSE-SU-2021:1785-1

suse-cvrf

почти 4 года назад

Security update for postgresql13

SUSE-SU-2021:1994-1

suse-cvrf

около 4 лет назад

Security update for postgresql12