ALSA-2024:10831

[ALSA-2024:10831] Important: postgresql:16 security update

Type:

security

Severity:

important

Release date:

2024-12-10

Description:

PostgreSQL is an advanced object-relational database management system (DBMS).  

Security Fix(es):  

  * postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (CVE-2024-10978)
  * postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code (CVE-2024-10979)
  * postgresql: PostgreSQL row security below e.g. subqueries disregards user ID changes (CVE-2024-10976)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	postgresql-private-devel-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	42e839424a08f3e3aecc5bf652d8488888747e2531e47cb99ca62846de846798
aarch64	postgres-decoderbufs-2.4.0-1.Final.module_el8.10.0+3798+606ebb9f.aarch64.rpm	6f4853faa487b4bdf999e4233e7c50ddad0d2a5925223d555635b89fc917dff8
aarch64	postgresql-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	70a53e9d6fd3ce14d01baa330c7de1bb626e8acddc0322f5c69babe531006305
aarch64	postgresql-pltcl-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	7263e41389b804ffd6438a7f29e586b923936c56e70edd67ca1e69d4958ee6ed
aarch64	postgresql-server-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	73e319b7b78c5fb9bb0f6f60a6ba778ec2b6a3d09611e92a16bbfc8dabd27f0d
aarch64	postgresql-plpython3-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	85768124e0a1d8e338059deb73305bc6927dfdfc3abb9e133a555d87be2d0344
aarch64	postgresql-docs-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	9747cf82e62c820bccb85e84c34900461312c0a81fcfbf979d70d206b1a77553
aarch64	postgresql-upgrade-devel-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	9bf1448721d88ee07e9f27734cbf88ee1e7cd86f6d7043436e48b7cecb7fe808
aarch64	postgresql-contrib-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	ae97767ac0451f9c192e43d514f6f9248777a17f6a94a61ec45c34d5d2f68418
aarch64	pg_repack-1.5.1-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	b424749179d11a40d010ebd1944ffe90c3feb14d8cbcb1e46053ee9c3995c640
aarch64	postgresql-private-libs-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	be24825d49a749510f02f76f6c82f3639a351042461a46f0c762886a3fbd4d88
aarch64	pgaudit-16.0-1.module_el8.10.0+3798+606ebb9f.aarch64.rpm	cda70498ebc7717adc2a3c5a2e380d495e13de64a75c6212b5e7d13875e02354
aarch64	postgresql-upgrade-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	d955c09b851bb4bd86b9e423c598b0772c36e54161a57670e6c18e253f3112e3
aarch64	postgresql-plperl-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	dc70f601be6c2608b81ae1bf490ce654f92b6689d113209100c3270b259a3c53
aarch64	postgresql-server-devel-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	e661f9df1a88958e17b46127d304221282f384a91eb4851f13211a7011796aff
aarch64	postgresql-test-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	ee5bbf89ab9c1ea051a23f1da3886cd205386045f3a2589cc32650cb17a6299b
aarch64	postgresql-static-16.6-1.module_el8.10.0+3930+ecf33554.aarch64.rpm	fd111f85824c9e3695f1487b5e6a66dd335d6e534b268197f7a292a6beb4f9f4
noarch	postgresql-test-rpm-macros-16.6-1.module_el8.10.0+3930+ecf33554.noarch.rpm	b4b1fda4325035b858866f6d2cc9d55424db10a4fd206c59322788bdb0eb0508
ppc64le	postgresql-docs-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	305c4ba435618817649838c99bc856df97f7cf159ee77ccd1286e5c132a9f697
ppc64le	postgres-decoderbufs-2.4.0-1.Final.module_el8.10.0+3798+606ebb9f.ppc64le.rpm	3e6878f0b782f73fca85a647168df8eee7f52a6d92b72e88661fbf1ca6a3df8b
ppc64le	postgresql-upgrade-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	554f56b80f17d036c149a8ad81ddd4c5ef5f63839201d78dfd0df0a8d2e22f76
ppc64le	postgresql-test-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	6224f86787f93379ddc68d026b3f63bd8ffe137053a00f278d7a58aef08a368c
ppc64le	pg_repack-1.5.1-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	6b34e8835b78a21510cc0895efe3fd4a89c04c69c7dc93cefa5b0a4e28c10bdf
ppc64le	postgresql-private-libs-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	7a4f6e8b40bc0485c5893aa0335dcb22e3cf632997719760a3dcee254302d666
ppc64le	postgresql-plpython3-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	7d2483754912bc9fc7ee4ec32854572425e89729903e9b4d20ec2171657ae57d
ppc64le	postgresql-server-devel-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	85955b5d1a4360a70ab3d381b91cf32e57be2f4c6cc5ecc62d2bd90d487e5950
ppc64le	postgresql-contrib-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	97e1df2ae081fcf4d568aee3d9f055cc2fe6ab02aa34d270221e0718b374d15a
ppc64le	postgresql-plperl-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	a47131fde8809bdef559a52bd8b71eb494eb31a0f5113f9148136d65ea4901d4
ppc64le	postgresql-upgrade-devel-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	b47aee5838d35e5cfbafe9ffb967700751a49d73847abcf2258a478f8967ae4a
ppc64le	postgresql-private-devel-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	bf1d2ccc16eccda617b129da6739a75b4ddd479ae4c81f47cf5274ed537a02e4
ppc64le	postgresql-static-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	e0705dfbab7ea0bb170605aa227e766098e207accbf8ff2f5f41bf0bc25e13d4
ppc64le	postgresql-pltcl-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	ec542536f2e9497536e3051179f60108722f3876b3be8397f8f7b02d388952ef
ppc64le	pgaudit-16.0-1.module_el8.10.0+3798+606ebb9f.ppc64le.rpm	ed97f9c208b111c7d8dd7fa730574b5fe02f80a886cea7fab804be15f8eab2e9
ppc64le	postgresql-server-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	efd14af5b19c6c80746f4c14a5ea6ba70d4fa6e822d83113f2d9ee96a49de8bc
ppc64le	postgresql-16.6-1.module_el8.10.0+3930+ecf33554.ppc64le.rpm	f75194ee45d576f87b18e9a2d58b5f059dc127855e80468aafdf47c74b0630d8
s390x	postgresql-docs-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	03ae90c4660415e5926f6c4553ec51a558201182aa9ffc02f88fb48373739dfd
s390x	postgresql-server-devel-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	0b240fe02f937bbad29eb8a7e6eccd7ba99e24a00317406b47ad25c43757fc3b
s390x	postgresql-plperl-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	238aa29214f0543635e3544e920bf9ae583b3fcceeaa581fcea6a5f5d9e0b7c1
s390x	postgresql-private-libs-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	4c11fcf01303854ec8b85604dfea1e77f4ec1de658e9959bd12bda13a2f86767
s390x	postgresql-plpython3-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	592b1be7f89e88280c61d43a78bd6f7a37f6bb649cc6b12436e92e74915f0595
s390x	postgresql-server-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	66573b0ff832778bd6dd11e2b30915e447b9c34ecca966095a6071a54a0d3051
s390x	postgresql-pltcl-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	687954fa9ddc571fd510bde51c28db49d6d99a71c3addeb8bb0d52cad4d4809e
s390x	postgresql-upgrade-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	74b74e909f63a52d0095055cf1b3a82c411e11256886fbfb5aa1a9ce645dd127
s390x	postgresql-static-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	8bd9251a9d7158ca2ccc3c4087fe5c64c5517fa232e27f39215f0367808cdab5
s390x	postgresql-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	981a1e4ddd753d0c6c8ab48ecba37d7c79de4b20138f67b50503b9e2c81e4d61
s390x	pg_repack-1.5.1-1.module_el8.10.0+3930+ecf33554.s390x.rpm	9b13f1d5444f6cf8500fa428e1512f73c0cf1f4ddddd6964d429433ae4e5f724
s390x	postgresql-private-devel-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	ab02271d0490b5c76addaab01af5d136db2771a4f02c8dcf47d1751822f97dff
s390x	postgresql-contrib-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	ae0d5782bb71fe8e831beb314ffa6c0a6f299e708205e4494b90bdd24c17f599
s390x	postgres-decoderbufs-2.4.0-1.Final.module_el8.10.0+3798+606ebb9f.s390x.rpm	b4ab4ce80d621ce9e80cef82edec35ef1ab32c9448d690e668db0bb17bd1a90a
s390x	postgresql-test-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	bed3711fc6831f967c1592493df5745c25620003a82d8310a2ba07518633aa9e
s390x	pgaudit-16.0-1.module_el8.10.0+3798+606ebb9f.s390x.rpm	e1395e420ef0b455c809e9fbbc50b5a27410be72d91603805a4907b86ca95cce
s390x	postgresql-upgrade-devel-16.6-1.module_el8.10.0+3930+ecf33554.s390x.rpm	eb919c9813fb7f4ccbd12045f49f98ff3a29d702d03e93285a0c698c124b4b14
x86_64	postgresql-upgrade-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	02e26aa93400787811445c934c1eff78a65a69c8f9e917c0eb7e148221445872
x86_64	pg_repack-1.5.1-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	0cd5a509c7d97e7f1ab2cae91861caee5060272c800ddf39b465f8b8e49b2013
x86_64	postgresql-plpython3-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	18cae81ab8f7c0a39358a4d5044a4b78082d71f237950aaeb7e287ef6cdbbb8a
x86_64	postgresql-private-devel-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	3f194945a52ea7a6ddd570ec921e792ab1df85ef855bb859c4d14bb107059b4d
x86_64	postgresql-server-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	52389b8a378b37d3b48c749ed8dfc6181b869872e1d12a108a0a0d2d37a48bb1
x86_64	postgresql-server-devel-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	65688355244dbd0a60587b90bcd68ddb5e04db02779d7a5bbb59dadadb0d735e
x86_64	postgresql-test-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	6fe2bd85632150f27d2cae75e5ee6eef3d1659593bb25eef5ecab7e75159e072
x86_64	postgresql-plperl-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	75d68c0deabea2e7815234c86c4192e19096ef2e5cfb46ee4d29be32a1b4e128
x86_64	postgresql-contrib-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	a5ca44be8efafddf188b965375a5f694fabd97c8aaf85e53ff6aec4cf9ce406c
x86_64	postgresql-upgrade-devel-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	ad9d817f8a4582bbe2956dd8a2ec79273ee69b98c260d7ef5bc1e992b207e8a9
x86_64	postgres-decoderbufs-2.4.0-1.Final.module_el8.10.0+3798+606ebb9f.x86_64.rpm	afea2164acae98dd71ab3e7d4e8ff54811589f47dcd1271214cffc5f8a5597c9
x86_64	pgaudit-16.0-1.module_el8.10.0+3798+606ebb9f.x86_64.rpm	b29297e920364cc944d575fc07a1190ca867983dc63f2146524eff79e5dbeed6
x86_64	postgresql-static-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	bd7f78872b048f0fd6ef700684a08ebc59299ece85b12e2476c25b7221508931
x86_64	postgresql-docs-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	c58647ddd9ba6c34bba6095e0ec9d69256961ecbc40a7e438c3c3f92c15bb76b
x86_64	postgresql-private-libs-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	c8ece04f3f34c005ed3116415d302d3b8b60311f81472995d184cd802276a4d3
x86_64	postgresql-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	caa9cd9f80ed0b57f1260c50040e4278b71ecdaee9e99d8eb5d2f31909602524
x86_64	postgresql-pltcl-16.6-1.module_el8.10.0+3930+ecf33554.x86_64.rpm	d87372cdd2dbb2d9816113857944a5c423f264d75b01a4eef60023fde23fb62f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.