[ALSA-2021:5235] Moderate: postgresql:12 security update
Type:
security
Severity:
moderate
Release date:
2021-12-22
Description:
PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a later upstream version: postgresql (12.9). Security Fix(es): * postgresql: memory disclosure in certain queries (CVE-2021-3677) * postgresql: server processes unencrypted bytes from man-in-the-middle (CVE-2021-23214) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 pg_repack-1.4.6-3.module_el8.6.0+2758+4f4474df.aarch64.rpm 171b64e80f9cd7045800367f93bc0e088d4f5f3feb14e89f96e0a1fd9d94956c
aarch64 pgaudit-1.4.0-5.module_el8.6.0+2758+4f4474df.aarch64.rpm b8a2214eccceea67d1a042934be5d2b1aee6e74e576e1122d9aa50475bfb9f7e
aarch64 postgres-decoderbufs-0.10.0-2.module_el8.6.0+2758+4f4474df.aarch64.rpm bf811155cf3657988a3d16afe45a7c73de068ad1a9b8a34d8f78d145ee445bee
noarch postgresql-test-rpm-macros-12.9-1.module_el8.5.0+2606+4554acc4.noarch.rpm 371111f8048442e6429f83af33685d6bc352ba5be548aca63ce726c1b79509a4
ppc64le postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.ppc64le.rpm 13cd44b926f28289bb0a5b01f74460112ef2a7b442da8131cb2586d4227ef755
ppc64le pgaudit-1.4.0-5.module_el8.6.0+2758+4f4474df.ppc64le.rpm 3237e7a54b6740b8751b1a8300d65aa3108e7cbc5503224d334ca3cd5a427892
ppc64le pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.ppc64le.rpm 9a907ca1b9082a2da428045283c26d15f54bd5ed2179c1de36a53ae6b52c08bb
x86_64 pg_repack-1.4.6-3.module_el8.5.0+2606+4554acc4.x86_64.rpm 05d2cb631302f94105b39afe0f1fa456f0d6820d588b6966721368f68dcac6b1
x86_64 postgresql-docs-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm 3dba0603c69e81f5910f5d5a141a398fb813c73ea62d47ed5d1a9f7eee1da6a7
x86_64 postgresql-plpython3-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm 4038800243e70e488902c7d8696839e4e68ed102903fdf2c18874f59d12f5420
x86_64 postgres-decoderbufs-0.10.0-2.module_el8.5.0+2606+4554acc4.x86_64.rpm 54fa53416bb7958e7a306c94ce9f9c8dab13d92a87b30e16e361622b035b2f90
x86_64 postgresql-test-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm 69f3693e92a49a49a04f2c069a0adc4dae8691d04dcd572378c2550aa12a53b4
x86_64 postgresql-server-devel-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm 6f13e602117875e75f1b25ef22a669d67871ff40c972fffffd708fa8edfdfc9a
x86_64 postgresql-upgrade-devel-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm 9250286c0471a3bf8587509664303be0e4c50abdbee43679f9f857ccf1c8fb36
x86_64 postgresql-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm a02e521634cab4bf22b04c3a4a930262cc8da3e650c642aa697811442b5f37d3
x86_64 postgresql-server-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm a4c91e9fb9439a1a70f28454c536318e2e25c0ade4548187ba65291661616f8e
x86_64 postgresql-plperl-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm ac1de771e43a25f60a3e293a0f078c440c3359a4bde7f937e4313a9f4fdd8ada
x86_64 pgaudit-1.4.0-5.module_el8.5.0+2606+4554acc4.x86_64.rpm c706b427ee656f5b56024659fcce48f68f945b707732de94b6a59f7e41d8e3fd
x86_64 postgresql-pltcl-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm dfdb4b4144186d44798a71a1322b2b7d1b41c2cabb31f33e1b81c910ba68209d
x86_64 postgresql-contrib-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm ee097350e1fdfa577ceb463e1490eb3eac60fc5e9c240fffd66f8fcd64ed7a20
x86_64 postgresql-static-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm f6ac2346bee5d040098f214a389ba1e4d405ae67080a26e15f5c9b2a92ead0b7
x86_64 postgresql-upgrade-12.9-1.module_el8.5.0+2606+4554acc4.x86_64.rpm fc3c0ec10c2738aeeec23afab949b3f91ac2891f4222e96374fef76bb02a5baf
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.