Описание
Security update for postgresql12
This update for postgresql12 fixes the following issues:
-
Upgrade to 12.12:
-
CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368).
-
Upgrade to 12.11:
-
CVE-2022-1552: Confined additional operations within 'security restricted operation' sandboxes (bsc#1199475).
-
Upgrade to 12.10 (bsc#1195680)
-
Add constraints file with 12GB of memory for s390x as a workaround (boo#1190740)
-
Upgrade to version 12.9 (bsc#1192516):
-
CVE-2021-23214: Made the server reject extraneous data after an SSL or GSS encryption handshake
-
CVE-2021-23222: Made libpq reject extraneous data after an SSL or GSS encryption handshake
-
Upgrade to version 12.8:
-
CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748).
-
Upgrade to version 12.7:
-
CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924).
-
CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925).
-
CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING 'pg_psql_temporary_savepoint' does not exist (bsc#1185926).
-
Fixed build with llvm12 on s390x (bsc#1185952).
-
Re-enabled icu for PostgreSQL 10 (bsc#1179945).
-
Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751).
-
llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952).
-
Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168).
Список пакетов
SUSE Enterprise Storage 6
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
SUSE Linux Enterprise Server 15 SP1-BCL
SUSE Linux Enterprise Server 15 SP1-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Ссылки
- Link for SUSE-SU-2022:2958-1
- E-Mail link for SUSE-SU-2022:2958-1
- SUSE Security Ratings
- SUSE Bug 1179945
- SUSE Bug 1183168
- SUSE Bug 1185924
- SUSE Bug 1185925
- SUSE Bug 1185926
- SUSE Bug 1185952
- SUSE Bug 1187751
- SUSE Bug 1189748
- SUSE Bug 1190740
- SUSE Bug 1192516
- SUSE Bug 1195680
- SUSE Bug 1198166
- SUSE Bug 1199475
- SUSE Bug 1202368
- SUSE CVE CVE-2021-23214 page
- SUSE CVE CVE-2021-23222 page
- SUSE CVE CVE-2021-32027 page
Описание
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.
Затронутые продукты
Ссылки
- CVE-2021-23214
- SUSE Bug 1192516
Описание
A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.
Затронутые продукты
Ссылки
- CVE-2021-23222
- SUSE Bug 1192516
Описание
A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. While modifying certain SQL array values, missing bounds checks let authenticated database users write arbitrary bytes to a wide area of server memory. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Затронутые продукты
Ссылки
- CVE-2021-32027
- SUSE Bug 1185924
Описание
A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
Затронутые продукты
Ссылки
- CVE-2021-32028
- SUSE Bug 1185925
Описание
A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
Затронутые продукты
Ссылки
- CVE-2021-32029
- SUSE Bug 1185926
Описание
A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include max_worker_processes=0, the known versions of this attack are infeasible. However, undiscovered variants of the attack may be independent of that setting.
Затронутые продукты
Ссылки
- CVE-2021-3677
- SUSE Bug 1189748
Описание
A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck commands activated relevant protections too late or not at all during the process. This flaw allows an attacker with permission to create non-temporary objects in at least one schema to execute arbitrary SQL functions under a superuser identity.
Затронутые продукты
Ссылки
- CVE-2022-1552
- SUSE Bug 1199475
Описание
A vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, the ability to lure or wait for an administrator to create or update an affected extension in that schema, and the ability to lure or wait for a victim to use the object targeted in CREATE OR REPLACE or CREATE IF NOT EXISTS. Given all three prerequisites, this flaw allows an attacker to run arbitrary code as the victim role, which may be a superuser.
Затронутые продукты
Ссылки
- CVE-2022-2625
- SUSE Bug 1202368