ALSA-2024:10785

[ALSA-2024:10785] Important: postgresql:12 security update

Type:

security

Severity:

important

Release date:

2024-12-05

Description:

PostgreSQL is an advanced object-relational database management system (DBMS).  

Security Fix(es):  

  * postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (CVE-2024-10978)
  * postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code (CVE-2024-10979)
  * postgresql: PostgreSQL row security below e.g. subqueries disregards user ID changes (CVE-2024-10976)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.aarch64.rpm	0bc131332c26443ba517f370c75ff8455abd1e32f7762def0cb858065ae917ec
aarch64	postgresql-server-devel-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	0bf5af6d876dacc5922b399b728dacaf6b0190d96915041d02ff53e2e3202d49
aarch64	postgresql-upgrade-devel-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	16c1cc935d71d6fad1357347384bb253836aceb311b67a20d85c670709aaa697
aarch64	postgresql-plperl-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	238e65bd236b66136ab3b331861b67050aa4ff8c56a4cadcd173c46fb9675c9d
aarch64	postgresql-upgrade-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	3cfae5a82ad7ebf2af8a665be68bf2e37dc5ee6f2c151ef6752f472592451cbc
aarch64	postgresql-server-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	521cd00d2177c3112053bcc31108b7f4223adbcefa04efe80c00b480ec37d18c
aarch64	postgresql-plpython3-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	5ecd34c42fb703959493aeb6e83a5e5e5cc41b59f7d1da363de9053c601b39c9
aarch64	postgresql-test-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	734999d3f98830048774f1dacee9e6a73125fcd35c72e3e1f329a632dd107ca1
aarch64	postgresql-static-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	80c0c20ed72523478d6f78ab00dcd6f278fcc7645f851c19edd8e388813e969e
aarch64	pgaudit-1.4.0-7.module_el8.10.0+3889+48cb11fb.alma.1.aarch64.rpm	8e29d61d3231b1e12894ddc5a5e2c015291450ca149ec9ddf4cf98a67be2c994
aarch64	postgresql-contrib-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	a533415478325a124ffff1b9c3e6c621b4542d213095d04358910b4e6953e4ba
aarch64	postgresql-docs-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	abebccd36e141785a4665b1d6382e1674cdca88fd82771ab8fa2441a6bd24201
aarch64	postgresql-pltcl-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	b86d99f636c2d8f4be742dbc29dd2b81729072a61209dc95d31ae1d12e6abbcd
aarch64	postgresql-12.22-1.module_el8.10.0+3927+7f0fab70.aarch64.rpm	ce8fee41844e22782fbb03390c2cdfa47aeb698a6dcd77e80cc39d2b85f4693a
aarch64	postgres-decoderbufs-0.10.0-2.module_el8.9.0+3704+f1f917ce.aarch64.rpm	eaa32eea438e859ac3104060c211187f53da746e219021535b66046809df054d
noarch	postgresql-test-rpm-macros-12.22-1.module_el8.10.0+3927+7f0fab70.noarch.rpm	6f8d449b55179f40e0058bd2a3a50baedd319e5e7e28573db0cdb896a5d5cc04
ppc64le	postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.ppc64le.rpm	13cd44b926f28289bb0a5b01f74460112ef2a7b442da8131cb2586d4227ef755
ppc64le	postgresql-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	13fa30071df3fc92501cf212dd8df55e5146b0be65bf1eb5dd0d4364c61780c0
ppc64le	postgresql-contrib-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	2eff4f13ece245d54d3f440bd402e8371701191b707093be902826b94cdbf968
ppc64le	postgresql-upgrade-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	48696f747d3c14e665646b88e0cfee2ed4568c03df8d112c96f83f8e2749cdd4
ppc64le	postgresql-docs-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	6614fa22ade741d2e055dd1a121fb52d25f86d21239399c00a044d5d6a20cda8
ppc64le	postgresql-server-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	6be7e1585c7c7a2a15ede65968a34c45f4375bc7150bb1f8f8ca851a080e30c5
ppc64le	postgresql-pltcl-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	76d0bbc8e9bfd93584dc8153cd75859dd6bb2621165f58dc92ee53d10c2af2a0
ppc64le	postgresql-static-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	773f9b645c18104b08735200a9923553145bb1a75d5d8aff000e5dfab0363427
ppc64le	postgresql-server-devel-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	7d0b69ff14b4bbb5015c13f067cf21e874e6d3383d19017efa92b6d65c80fdfc
ppc64le	postgresql-plperl-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	8991a14b6b449d274801a028f8dc18a57a37e38f136bca2301d833b1c9cd0f27
ppc64le	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.ppc64le.rpm	9a907ca1b9082a2da428045283c26d15f54bd5ed2179c1de36a53ae6b52c08bb
ppc64le	postgresql-test-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	c228d07341adc8b56b9336248df59b08df122fa892f9edf12fb9b81437b1f3b8
ppc64le	pgaudit-1.4.0-7.module_el8.9.0+3740+0e74851f.alma.1.ppc64le.rpm	d35f381e2b4743a54701b9286c07d3e6300bd8ec3e5acc66430ed9bbcab16e57
ppc64le	postgresql-upgrade-devel-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	d87491abfbceee517952dccb079022ac20b4e785c1c86223495de51057389762
ppc64le	postgresql-plpython3-12.22-1.module_el8.10.0+3927+7f0fab70.ppc64le.rpm	dd902f7098ba217eed2415377ff2636809c99c384c8bcb460fd03cf2f194a6e6
s390x	postgresql-upgrade-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	028821e9948653e54715f4df2da9e9fa5e853cea9f632f8f1219460f34505379
s390x	pgaudit-1.4.0-7.module_el8.9.0+3740+0e74851f.alma.1.s390x.rpm	05a6d09d675776fb9ab998aa9fb52890d6c4ecc40957331844fd2c42f555ebca
s390x	postgresql-plperl-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	08acbd16b7684b5794073d71949b57b78bafeb6fa36f49fad235dd43405d8c04
s390x	postgresql-docs-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	09fed636fcc229ab3da60e444d6229d58b994e92de065835e7850e3223107e2b
s390x	pg_repack-1.4.6-3.module_el8.9.0+3704+f1f917ce.s390x.rpm	14fdf29fe5dd7075aaf956b75aec2c5028f78ea8c06a19b461fa970284284047
s390x	postgresql-test-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	1536222f8282b1dc978a4b14a71d68bd23157675b869fac9d057548923cc33a5
s390x	postgresql-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	75ae96088049f98ef0509ee6f87a2681ed672df902c00d4fde5ce1888ae55c89
s390x	postgresql-server-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	871488e9362ecb679b826a329438f8332667bddce0f29f1174132c954f2eb53c
s390x	postgresql-contrib-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	8ff1d1b01d5b70d6eadb27a0d7b2afe5efd5228314d6649749de1f72d23287be
s390x	postgresql-static-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	91ba64c22b0df6025bd8fc3a17f718d32028d3b5d93fbaf83f6e0e30891dc217
s390x	postgresql-pltcl-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	9ad120661eee9ebf633693bde8dde06362ab784329bc8b856ee8675815a2c113
s390x	postgresql-plpython3-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	9b229e1ef6613f0cce127878bf3ec44ac221bc0e7ffbff1ee7757f671d85200e
s390x	postgres-decoderbufs-0.10.0-2.module_el8.6.0+3095+ee60d910.s390x.rpm	b11226898b888f8213eefe941cece0f636a08ccce2ceaa8bee2a38e6058ed4f3
s390x	postgresql-upgrade-devel-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	b3492d868d3996060a78f0fcc45455db6690a53653d7c4575dcf2787fd189746
s390x	postgresql-server-devel-12.22-1.module_el8.10.0+3927+7f0fab70.s390x.rpm	cccccf0948ca8d36842dcf792f0730a6ee35c20b76c0498f5cd053615a0a3301
x86_64	postgresql-plperl-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	18755a9f70194ba81be38b475f0baf7477ae0fdd6a05e50a3bb4b3ca566d2cc1
x86_64	postgresql-static-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	1b965bfd41ac18b3d0ed8dc0ea841c5270fbaa493ce62a9d4be68510d4ac4233
x86_64	postgresql-server-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	22c2674eb642447c21a68aff73a4ff12efd5e2fbf7c5e3918d4d1c1adcfcab06
x86_64	postgresql-plpython3-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	3a99f9d3f94dea8888e564de5384c0f4c7f5094b29028a0219924b87cc6dbae1
x86_64	postgresql-upgrade-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	687549ad3a3ce51d9ee245dbb0ed25525c252d97dc5ca2df61c4d624ce3b1bc6
x86_64	postgres-decoderbufs-0.10.0-2.module_el8.6.0+2760+1746ec94.x86_64.rpm	77c2586f944e08d0a073c739b9eeeedc0d9ca7da51f43a0dcdc3a1c383a1b0fe
x86_64	postgresql-upgrade-devel-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	7b7a06c8adf1785426e5be3294d41c680b9e27b7240a0a11b33adfc1d251bba2
x86_64	pgaudit-1.4.0-7.module_el8.9.0+3740+0e74851f.alma.1.x86_64.rpm	8f534204ea88bb39072a7507f415dd11517e83a3ddfd46cab1ce9d1027efe3ea
x86_64	pg_repack-1.4.6-3.module_el8.6.0+2760+1746ec94.x86_64.rpm	92f387cdf31b3872470fb3402126bc72e2e6f6b342192bc2333465e896810c0b
x86_64	postgresql-docs-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	a6da3a17fb9d34df232ae130ced1f06f33a8e52220612db352cd20026abda19a
x86_64	postgresql-test-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	ab6d863864beef789636c5ba620c2f59578bb4a5540cd26cec2b291119fd59e5
x86_64	postgresql-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	ad9f7d4fd8f63c478af49acedf06d471c7ab8e7fe05de8744e8a504706e65a65
x86_64	postgresql-server-devel-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	dc4c4d1301b73b9ad0c75296006ee3dbaa49935c49473b4f8acba0af8b19d8a5
x86_64	postgresql-contrib-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	ed5f2b3ac2ee5e7434dabc2958c88b2c123e10b735326934e9817a984f4cd55c
x86_64	postgresql-pltcl-12.22-1.module_el8.10.0+3927+7f0fab70.x86_64.rpm	f07670f29d972296383c2f3845a0f8d7098b197e31d3573a36064923d722c354

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.