RLSA-2023:4535

Опубликовано: 06 окт. 2023

Источник: rocky

Оценка: Moderate

Описание

Moderate: postgresql:12 security update

PostgreSQL is an advanced object-relational database management system (DBMS).

Security Fix(es):

postgresql: schema_element defeats protective search_path changes (CVE-2023-2454)
postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455)
postgresql: Client memory disclosure when connecting with Kerberos to modified server (CVE-2022-41862)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
postgresql-test-rpm-macros	noarch	1.module+el8.8.0+1441+a10239d2	postgresql-test-rpm-macros-12.15-1.module+el8.8.0+1441+a10239d2.noarch.rpm
pgaudit	x86_64	5.module+el8.5.0+686+20453ecc	pgaudit-1.4.0-5.module+el8.5.0+686+20453ecc.x86_64.rpm
pg_repack	x86_64	3.module+el8.5.0+684+c3892ef9	pg_repack-1.4.6-3.module+el8.5.0+684+c3892ef9.x86_64.rpm
postgres-decoderbufs	x86_64	2.module+el8.5.0+684+c3892ef9	postgres-decoderbufs-0.10.0-2.module+el8.5.0+684+c3892ef9.x86_64.rpm
postgresql	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm
postgresql-contrib	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-contrib-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm
postgresql-docs	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-docs-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm
postgresql-plperl	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-plperl-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm
postgresql-plpython3	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-plpython3-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm
postgresql-pltcl	x86_64	1.module+el8.8.0+1441+a10239d2	postgresql-pltcl-12.15-1.module+el8.8.0+1441+a10239d2.x86_64.rpm