ALSA-2023:7581

[ALSA-2023:7581] Important: postgresql:13 security update

Type:

security

Severity:

important

Release date:

2023-12-04

Description:

PostgreSQL is an advanced object-relational database management system (DBMS).

Security Fix(es):

* postgresql: Buffer overrun from integer overflow in array modification (CVE-2023-5869)
* postgresql: Memory disclosure in aggregate function calls (CVE-2023-5868)
* postgresql: extension script @substitutions@ within quoting allow SQL injection (CVE-2023-39417)
* postgresql: Role pg_signal_backend can signal certain superuser processes. (CVE-2023-5870)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.aarch64.rpm	0bc131332c26443ba517f370c75ff8455abd1e32f7762def0cb858065ae917ec
aarch64	postgresql-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	15ed7ee3111ef8cafb17e22353a4fb5177bd04f79160c5335885099568f6003b
aarch64	postgresql-pltcl-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	1c3b3cdccc7fd4a334a01feeddc0a6555b2a2cfba5fc2f02c91e2ec055499dc2
aarch64	postgresql-docs-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	43a29abde6926f226139f66f4d71d7f9c1ca2d6f0cae48c25a735333c183eb4f
aarch64	postgresql-static-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	46c2a6851267a2550bb3a0e6ec162b8e52e25254d90a5a2b88f5a8062b533b13
aarch64	postgresql-plpython3-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	4f337878a106159b97f86b221d848bebb25cdd050b0f818dc941dd2bd34574d0
aarch64	pgaudit-1.5.0-1.module_el8.6.0+2760+1746ec94.aarch64.rpm	5693432a162b3d47be77299991ed7dd77bc206427ce8f7442f27f6342a7502f3
aarch64	postgresql-server-devel-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	67871830ea4fb6e15e434132f08d88fb96ebda3c3ec268908d135e2c549e18fa
aarch64	postgresql-upgrade-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	68067d6b2f37e0ca622ded426a15b04cef387586528b00a2590e0f01f6b77f75
aarch64	postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.aarch64.rpm	6e3400183f8f17474e90addbd65385025002f6f67f655a5c09fccd1901a6bd45
aarch64	postgresql-upgrade-devel-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	6fcabc273859704bbcd71739f81d0b1c42391a09611aed63752448900bf03695
aarch64	postgresql-contrib-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	763c01c91be91ebfa319ecb31daef1d63982028985c37353cf9782d02fbca0ba
aarch64	postgresql-plperl-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	7ff87207f40160055761fa5754cf04afb2bab7dcb539ec3a3ffb273a7473bd36
aarch64	postgresql-server-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	84ddb35c9118cced5d0ccbeaa5b64d697bc6973dc4266152e3d7465703e73a27
aarch64	postgresql-test-13.13-1.module_el8.9.0+3692+8714f643.aarch64.rpm	d7ea99a70a487017eb121a4c6dd13730895a95db6c15a29197fae1a0e2bf5a98
noarch	postgresql-test-rpm-macros-13.13-1.module_el8.9.0+3692+8714f643.noarch.rpm	78f9d1409f26bf817945e5f2b8d1df172f198119fce206f5ec5bde931444d63f
ppc64le	postgresql-upgrade-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	0e8c1fcbc11f4c6c52c00cbf2c357cfe85f75e7efbb3ea04a32d691ac41db8c7
ppc64le	postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.ppc64le.rpm	13cd44b926f28289bb0a5b01f74460112ef2a7b442da8131cb2586d4227ef755
ppc64le	postgresql-test-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	237bfc06d49d8c6b3dab08d4bc6803ab797da382c9e62591abf5b6df35f924cf
ppc64le	postgresql-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	33f47a06ca85e8f85da8338f1615b53a69823763fb957dbeb53945042e6487bf
ppc64le	postgresql-server-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	37dc97007781114e7fdab0e3076e7b8d948a65a9dd7b4a1a1e2cdf102905cabc
ppc64le	postgresql-plperl-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	55e63a81b48820a213b95e6837e08b09421e0d8c6961057413a1965b0ce69dfa
ppc64le	pgaudit-1.5.0-1.module_el8.6.0+2760+1746ec94.ppc64le.rpm	69187c120a179f0153c3110e7c5dd4cd103e1c2bb0c9b4a0da8a16b85c3f3390
ppc64le	postgresql-contrib-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	891e6bd86c799f6dcc57529b3720bd26a69640f66c6e7f400c914d80565ebd8c
ppc64le	postgresql-server-devel-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	90eb31f01dd246e9066849c1c26dd05798e283710641750b371822feecdd80a3
ppc64le	postgresql-plpython3-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	987dfac72e0018fc112f749392e41523ecef60f7125fcb66120da64c5b0cb36b
ppc64le	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.ppc64le.rpm	9a907ca1b9082a2da428045283c26d15f54bd5ed2179c1de36a53ae6b52c08bb
ppc64le	postgresql-docs-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	a15b1509307dc0d1883d3e89397eb7b02be873cdb560cc19b365337af4b0b279
ppc64le	postgresql-upgrade-devel-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	b0547fd5dac851f62861da7727ed3010dfa15f89fbbe2299eccc87dbfd281c78
ppc64le	postgresql-pltcl-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	c133ceb1e926547b75f2d3e6345b5a058ce2f8dc0467ce094f8fdef42b69c252
ppc64le	postgresql-static-13.13-1.module_el8.9.0+3692+8714f643.ppc64le.rpm	c8acd49e91b6bba3d6a3fd4a25dcb9517ac378e4ad0941559d702e0266c9096e
s390x	postgresql-docs-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	083973e15d8db301535ffd8cbde77774aedd7ae892902a90556f34a718bedc86
s390x	postgresql-upgrade-devel-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	104ff4bf242bc5acb6b6e7434add7e78a70082224dbbe326a3e1fa4ebb8bf372
s390x	postgresql-server-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	13a55a3d8359dbf7a40ee13d74f2e68c9464df9d1462803884ec33adf1032f74
s390x	postgresql-static-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	34491d3e44dbf1d923f2639fa9db82c9760157d07d328541c8cf7fde18570dc3
s390x	postgresql-upgrade-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	344c005e8b27b7ab721f433f0bd31c669151ed72cb4a8aa33ec95d0cdde08a5a
s390x	postgresql-server-devel-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	573809ab47c5ac4c6b2374e5180bae60fd5699e190bef7eb171542261f458219
s390x	postgresql-plpython3-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	5a047304f837105b3943c5b9358933ed0b71a88be90d835d845d211d4bc98460
s390x	postgresql-test-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	64d3e6880c82227cfb4c8abeb7f729dfc00488a164e5f4e660fde3bd029dbae3
s390x	pgaudit-1.5.0-1.module_el8.6.0+3095+ee60d910.s390x.rpm	a29cba50326b3c78b1cff9ad076eff7837022e71f02d7ec9e918aed69a9c3f35
s390x	postgres-decoderbufs-0.10.0-2.module_el8.6.0+3095+ee60d910.s390x.rpm	b11226898b888f8213eefe941cece0f636a08ccce2ceaa8bee2a38e6058ed4f3
s390x	pg_repack-1.4.6-3.module_el8.6.0+3095+ee60d910.s390x.rpm	c1b386540b304a4de3ff8d840ec35dc9d67ecd1827aa06cd695f06060e8d2ea7
s390x	postgresql-contrib-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	cccc64c4f68500c5e9e1215324f54d5f602c54bfcb9a7c9b289161a878582899
s390x	postgresql-pltcl-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	cfb8dda224fbeed0535b87f63d0592024f6d5de4084a1dfd6d18a5e65fc1882c
s390x	postgresql-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	dd78cb8312e1b126253da2950f6e297301d77d5c654f4010677dea6427b09793
s390x	postgresql-plperl-13.13-1.module_el8.9.0+3692+8714f643.s390x.rpm	e43f4bd04e70b0b967e26ca5c1eda6843372c41021e3ffef0275d24d6a24e18b
x86_64	postgresql-server-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	2ca42be2d695c56ac9ec7e36f1768b9acbc43d9d6dde77d62eb91a6c00b1609a
x86_64	postgresql-docs-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	33cbb7fcedee6d00ff9d500d830a4abcf2c858e39070a4b5b9e9e961260c4f39
x86_64	postgresql-plpython3-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	41f298e9850ab9fa4fb1a33b3971b03695122f1f655a97e1d9f61f414bf5ea4a
x86_64	postgresql-static-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	4d729271dc4cf1f63efdca000330915188e2689e351cedb392c8907e370805fe
x86_64	postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.x86_64.rpm	77c2586f944e08d0a073c739b9eeeedc0d9ca7da51f43a0dcdc3a1c383a1b0fe
x86_64	postgresql-test-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	7db1e4fe094de269483bb3b8c20a95cfe556ba1580af400bda9b21e83106e830
x86_64	postgresql-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	7db7c3fc7630f1e30cd3e43a717c299ef239450e545f50bb61d2527ba661a15d
x86_64	postgresql-pltcl-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	8201d995ba7c21347513321b616005c86e62108f55de7a0f1e129498000ce787
x86_64	postgresql-contrib-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	837b46400d9229e97ad82ce3d1e2c83d15f9120dbe788be5f9a0573668bc17d8
x86_64	postgresql-server-devel-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	8e9f8d439f86f56f42f034200ef055ca9276750bfb1f155484b248995bbea3ee
x86_64	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.x86_64.rpm	92f387cdf31b3872470fb3402126bc72e2e6f6b342192bc2333465e896810c0b
x86_64	postgresql-upgrade-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	ac1922fc8464b8c6997879a8036efbcfc95075544d4ca2a72802b59e019802a4
x86_64	postgresql-plperl-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	ca85a58124b51d20303c201798209ae0221308c5da56369d9ad2feb6f7efd97a
x86_64	pgaudit-1.5.0-1.module_el8.6.0+2760+1746ec94.x86_64.rpm	d75cd67116ed5f4af36fdbe2c39536a2de4594a800698c0b041f36122b61843e
x86_64	postgresql-upgrade-devel-13.13-1.module_el8.9.0+3692+8714f643.x86_64.rpm	e6872f793bccc8171b4f6a6ec88d2f92c68be642f0b0357ff9dfc163379a4c01

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.