exploitDog

SUSE-SU-2021:0599-1

Опубликовано: 25 фев. 2021

Источник: suse-cvrf

Описание

Security update for postgresql-jdbc

This update for postgresql-jdbc fixes the following issues:

CVE-2020-13692: Fixed a XML External Entity vulnerability (bsc#1172746) .

Список пакетов

SUSE Linux Enterprise Server 12 SP5

postgresql-jdbc-9.4-3.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

postgresql-jdbc-9.4-3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2021/suse-su-20210599-1/
Link for SUSE-SU-2021:0599-1
https://lists.suse.com/pipermail/sle-security-updates/2021-February/008368.html
E-Mail link for SUSE-SU-2021:0599-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1172746
SUSE Bug 1172746
https://www.suse.com/security/cve/CVE-2020-13692/
SUSE CVE CVE-2020-13692 page

Описание

PostgreSQL JDBC Driver (aka PgJDBC) before 42.2.13 allows XXE.

Затронутые продукты

SUSE Linux Enterprise Server 12 SP5:postgresql-jdbc-9.4-3.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5:postgresql-jdbc-9.4-3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-13692.html
CVE-2020-13692
https://bugzilla.suse.com/1172746
SUSE Bug 1172746