Описание
Security update for postgresql14
This update for postgresql14 fixes the following issues:
-
CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).
-
CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).
-
Let rpmlint ignore shlib-policy-name-error (boo#1191782).
Список пакетов
Container suse/postgres:10
libpq5-14.1-5.6.1
Container suse/postgres:12
libpq5-14.1-5.6.1
Container suse/postgres:13
libpq5-14.1-5.6.1
Container suse/postgres:14
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Container suse/postgres:15
libpq5-14.1-5.6.1
Container suse/postgres:latest
libpq5-14.1-5.6.1
Container trento/trento-db:latest
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
libpq5-14.1-5.6.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
libpq5-14.1-5.6.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
libpq5-14.1-5.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
libpq5-14.1-5.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
libpq5-14.1-5.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
libpq5-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-server-14.1-5.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
libpq5-14.1-5.6.1
libpq5-32bit-14.1-5.6.1
postgresql14-14.1-5.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
libpq5-14.1-5.6.1
postgresql14-14.1-5.6.1
SUSE Linux Enterprise Module for Package Hub 15 SP2
postgresql14-llvmjit-14.1-5.6.1
postgresql14-test-14.1-5.6.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
postgresql14-llvmjit-14.1-5.6.1
postgresql14-test-14.1-5.6.1
SUSE Linux Enterprise Module for Server Applications 15 SP2
libecpg6-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-devel-14.1-5.6.1
postgresql14-docs-14.1-5.6.1
postgresql14-plperl-14.1-5.6.1
postgresql14-plpython-14.1-5.6.1
postgresql14-pltcl-14.1-5.6.1
postgresql14-server-14.1-5.6.1
postgresql14-server-devel-14.1-5.6.1
SUSE Linux Enterprise Module for Server Applications 15 SP3
libecpg6-14.1-5.6.1
postgresql14-contrib-14.1-5.6.1
postgresql14-devel-14.1-5.6.1
postgresql14-docs-14.1-5.6.1
postgresql14-plperl-14.1-5.6.1
postgresql14-plpython-14.1-5.6.1
postgresql14-pltcl-14.1-5.6.1
postgresql14-server-14.1-5.6.1
postgresql14-server-devel-14.1-5.6.1
Ссылки
- Link for SUSE-SU-2021:3759-1
- E-Mail link for SUSE-SU-2021:3759-1
- SUSE Security Ratings
- SUSE Bug 1191782
- SUSE Bug 1192516
- SUSE CVE CVE-2021-23214 page
- SUSE CVE CVE-2021-23222 page
Описание
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.
Затронутые продукты
Container suse/postgres:10:libpq5-14.1-5.6.1
Container suse/postgres:12:libpq5-14.1-5.6.1
Container suse/postgres:13:libpq5-14.1-5.6.1
Container suse/postgres:14:libpq5-14.1-5.6.1
Ссылки
- CVE-2021-23214
- SUSE Bug 1192516
Описание
A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.
Затронутые продукты
Container suse/postgres:10:libpq5-14.1-5.6.1
Container suse/postgres:12:libpq5-14.1-5.6.1
Container suse/postgres:13:libpq5-14.1-5.6.1
Container suse/postgres:14:libpq5-14.1-5.6.1
Ссылки
- CVE-2021-23222
- SUSE Bug 1192516