Описание
Security update for postgresql16
This update for postgresql16 fixes the following issues:
Upgrade to 16.9:
- CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation (bsc#1242931)
Changelog:
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise Server 15 SP4-LTSS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise Server 15 SP5-LTSS
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Manager Proxy 4.3
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
SUSE Manager Server 4.3
postgresql16-16.9-150200.5.29.1
postgresql16-contrib-16.9-150200.5.29.1
postgresql16-devel-16.9-150200.5.29.1
postgresql16-docs-16.9-150200.5.29.1
postgresql16-plperl-16.9-150200.5.29.1
postgresql16-plpython-16.9-150200.5.29.1
postgresql16-pltcl-16.9-150200.5.29.1
postgresql16-server-16.9-150200.5.29.1
postgresql16-server-devel-16.9-150200.5.29.1
Ссылки
- Link for SUSE-SU-2025:01782-1
- E-Mail link for SUSE-SU-2025:01782-1
- SUSE Security Ratings
- SUSE Bug 1242931
- SUSE CVE CVE-2025-4207 page
Описание
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 are affected.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:postgresql16-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:postgresql16-contrib-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:postgresql16-devel-16.9-150200.5.29.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:postgresql16-docs-16.9-150200.5.29.1
Ссылки
- CVE-2025-4207
- SUSE Bug 1242931