ALSA-2024:10787

[ALSA-2024:10787] Important: postgresql:15 security update

Type:

security

Severity:

important

Release date:

2024-12-05

Description:

PostgreSQL is an advanced object-relational database management system (DBMS).  

Security Fix(es):  

  * postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (CVE-2024-10978)
  * postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code (CVE-2024-10979)
  * postgresql: PostgreSQL row security below e.g. subqueries disregards user ID changes (CVE-2024-10976)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	postgresql-docs-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	21fca005adb513475b38077865431077937cbc4a7352c408aa6f3ff32e2d2a2b
aarch64	postgresql-private-devel-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	24229413848e8132c7ef352fd88dab36494c14e1637d2d1aa09c5ea080258a4d
aarch64	postgresql-pltcl-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	26779e2bfd26dd0d288cbc7bf38429737080c8a480e8403fe89df5449f2b80d9
aarch64	postgresql-plperl-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	2acc86ab41a8ac15691ae266c3c92f110471aed8a3a54d66b37e72a352b0e32e
aarch64	postgresql-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	487974edf0cf1cc9f6e92c3e12b3314daab50a3da639bfe71bb91e98b85bc251
aarch64	postgresql-plpython3-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	4dca953f32e0b294d51b19253d5b234e937c73ff8d89f2d9ecf2a0d30006d840
aarch64	postgresql-upgrade-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	5587564de1c3f56875408aaa191dcb5c698075541b54810d4120c260ddada0d2
aarch64	pg_repack-1.4.8-2.module_el9.5.0+120+4533eb20.aarch64.rpm	63248a7ccbf5fe500df28f01d1ff3cc8a047f81bc4e1cf2d473154601d59f4c5
aarch64	postgresql-static-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	65d4cdf35c48c4c908d56ae706c7e3d26e023346028a75ea08de1c24050c1145
aarch64	postgresql-upgrade-devel-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	68c5c54d865c065f64cd48145bb9a039303de3c33217af36a86328636e9a304d
aarch64	postgres-decoderbufs-1.9.7-1.Final.module_el9.3.0+52+21733919.aarch64.rpm	70c3cc4d5f24674cf5e9caf97e7c16b4898e6c3f6c976f6e2d4cc4f64967816e
aarch64	postgresql-private-libs-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	852bb6cb4db321aa945768caad3aacd5bee465765d9824a5891a9d424f4bf75b
aarch64	postgresql-contrib-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	96abe73cc5267a61953adb2da08479388540fa48294d0974e32d19bb0cf9e4c8
aarch64	postgresql-server-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	a95c7b2a904b69f94ba645cb2b9c0da673c2068c1a169c97e726b16aa93a1100
aarch64	postgresql-server-devel-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	c99b65d77f2f6c06efb11c7163207dab0d092dcf3e5d853b10ab843fa0777024
aarch64	postgresql-test-15.10-1.module_el9.5.0+126+03d48c9f.aarch64.rpm	d0c24078d6b76590eed899351d9e5e11954c5d967e58dda84ecbdaf6c48cf7d8
aarch64	pgaudit-1.7.0-1.module_el9.3.0+52+21733919.aarch64.rpm	e5cbbf39e62321f182fe209827434bddb26d3b29d3be7609370a3edfc17ad5a8
noarch	postgresql-test-rpm-macros-15.10-1.module_el9.5.0+126+03d48c9f.noarch.rpm	546dfc0f0293f8590de6b31ffdac573a7d08b8cc21fb464b18f7cdd638276326
ppc64le	pg_repack-1.4.8-2.module_el9.5.0+120+4533eb20.ppc64le.rpm	0990a604e12b5c05b30e5a5edf6606a5f7e11f890998cd5f97b066bfd24ad833
ppc64le	postgresql-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	0f82965b73a1c720415565d2ec7213038ca4929663df0dc1152418c322e8e311
ppc64le	postgresql-server-devel-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	2c833eba8c03e3e23df9a4ffe37b4107e774d7da2b054c74ff131aaf7a701230
ppc64le	postgresql-server-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	2fa0b96d55a9389991d85abaf3b442f0ac432d71958dc91e8ec2d75d987a060c
ppc64le	postgresql-static-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	464d75c46e75a0685d90a38f46f906921326b4132ff626b14f8b1eb4a599ba07
ppc64le	postgresql-test-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	54cb76e1530f025b418985a985601be790f161d1bc34672a2f76cb2f16eb9e86
ppc64le	postgresql-pltcl-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	60ffa9dc3924335c73591b35b61ffa663eeb9c5aade9751f8fa0d048b90bf251
ppc64le	postgresql-upgrade-devel-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	64fb39d3d4db0761803e03ee3e19497a4fced816faf0f2ef645c7ef01643bbaa
ppc64le	postgresql-plpython3-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	8b1fe1f854d45b536b4cc405fc6bd17e07eb587a7ff9c3e496ca01bb43bc5988
ppc64le	postgres-decoderbufs-1.9.7-1.Final.module_el9.3.0+52+21733919.ppc64le.rpm	8f4180654b363231c09fb0ba05b49fc47e2d138ab584ccf2c1b6b4c8effdd1c6
ppc64le	postgresql-contrib-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	901bfe4a616e8c06a95dcffefa7ceae9a1aed0862ce5cac6284048a4d864f53b
ppc64le	postgresql-private-libs-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	b3a31fa49132c26ae661a57c227a3909d1e7c145d9305dc3b5013f69e11af011
ppc64le	postgresql-upgrade-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	c517b976731547ffa389f7661788c1cd3fe592ae0c32b75590fdaef39ccc80fc
ppc64le	pgaudit-1.7.0-1.module_el9.3.0+52+21733919.ppc64le.rpm	c5aca9e9d5f3e300dff4c8dd29559054a0f9298a7d58b4b6c3d16f0a3013940f
ppc64le	postgresql-private-devel-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	d820bdad666b9d7827f4ddd77d32ee30e13930a965966707ef07d60e4e1b9e15
ppc64le	postgresql-plperl-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	d9f7077469d5ab3685243f5b978d854280d3519359884daa5530fefebf6bf533
ppc64le	postgresql-docs-15.10-1.module_el9.5.0+126+03d48c9f.ppc64le.rpm	da4c65b8f1ce394760087fdf1758ed88c4511f70d61ed02cfc6db7627d7db035
s390x	postgresql-contrib-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	01814bd318aab1460bc44344e2da7f770c98dd47d0fe37b2a12804379182b75a
s390x	postgresql-server-devel-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	039eb8033140650ad46bc7b10b542a0cede60569cce370cbf0ad2a0bb040eac0
s390x	postgresql-upgrade-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	10658b5f6c1421af4d8112e6d1fdf3daae30b77205c27aa86f535f4dea3f5bf6
s390x	pgaudit-1.7.0-1.module_el9.3.0+52+21733919.s390x.rpm	1343275a4269cc54eb35ffbbd2710b8a3db986516e38ed6661d709a84ab1da89
s390x	postgresql-pltcl-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	1ae24b6a0421fa00df6027e788bc9c58dfe2f053c8ecfaad97a604f8fb115310
s390x	postgresql-server-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	28e639a1a32ac4c30ba5e3efb66dab32ce7d8c3cd30d9061acf5577e63d88498
s390x	postgresql-static-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	2e958fd5e824bea3e0dfe0a6e274d09f24620101fd619c82612c2a1005089f04
s390x	postgresql-private-devel-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	2edee8239ed5889801fdb704ed5a039b5e179f613d1ae1695eaa33d3eacf37b3
s390x	postgresql-docs-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	35ae759621eb6016631f8c8c72497ffbfe58b4dba1d52798caf39bef94917bd3
s390x	postgres-decoderbufs-1.9.7-1.Final.module_el9.3.0+52+21733919.s390x.rpm	35fb71a2d998b883ee8e0970101b90bf9d464f7b5a3fdba59b4f76d6318dd445
s390x	postgresql-upgrade-devel-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	67d5a2b211b7dee63cce53b82aa9c96f20105df9c5fbabfd522ae71280af30d8
s390x	postgresql-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	895b4a89a1bb097f84b08791157b1e7b233ce0c085b7e279a9ebc3fddba9c32a
s390x	postgresql-plperl-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	d92c3f28adeec39119146238b35bb7a4c610c8adc94aba92c4b091d5777183e1
s390x	postgresql-test-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	dcfca4e597b9e26c29c3dbaeea0c3d2df288a27e5346445526980fd8a9454f58
s390x	pg_repack-1.4.8-2.module_el9.5.0+120+4533eb20.s390x.rpm	df1164222320af61b8334ca2db5460bf0aaee4337cfff3c51ce7ba90aa1e9b66
s390x	postgresql-plpython3-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	e62e945c74a57b1683cc419049f7b8a9ff2c24906fbc8af53330a85e7dad70f2
s390x	postgresql-private-libs-15.10-1.module_el9.5.0+126+03d48c9f.s390x.rpm	eea610b4b3e55dbd647e7e5b9691e5cb5d3020f40701120de8bb25a9c9b9f5d3
x86_64	postgresql-test-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	11252a43bf4e9d71cb7d9ec9d1c84023026b36736c97d5954da8ff4832288cb1
x86_64	postgresql-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	1156bfbddb5c7808ca1840c77b231d2966ff2c8785e41b4a82bc69a0b3ff0428
x86_64	pgaudit-1.7.0-1.module_el9.3.0+52+21733919.x86_64.rpm	1e7dcca31912928f8f81927e2ee52575148e6f737824c95c15b2f94d0d426bde
x86_64	postgresql-plperl-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	25eb0d2fcc55fe3d5bd85c70c880f89a0a99f2d0f220f488e72b17a3f8645c23
x86_64	postgresql-static-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	392a54faa7283cb4c6eda0928f22b7b8dcd64d024db6e8d724b24192c5ac8dfe
x86_64	postgres-decoderbufs-1.9.7-1.Final.module_el9.3.0+52+21733919.x86_64.rpm	444045e97d9babf7b4e33fb62d3d2c649646ff143597832c1d6548aa49dd24ba
x86_64	postgresql-server-devel-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	5d9b1eb924f5b89e70cdb187a278a6d1b2fde48ed7ab447f46b48de6d5b0a398
x86_64	postgresql-upgrade-devel-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	986841e27edad207d7ab1d25f2956f6f7f67647a7f100fcf690ce2685b373092
x86_64	postgresql-pltcl-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	a4936da69b910a3b1c33c235e8e5b7da97097d29dd2e8d7b6db66028f1561a61
x86_64	postgresql-private-devel-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	ac7136ab50fe55bce29d1ba69f818851db4ea4a01ec797cebbb0c478b0b994c3
x86_64	postgresql-docs-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	af54bd1d76f74d7927d14d1188714ae0aac578a847a7ba3b8eff20675ba469f7
x86_64	pg_repack-1.4.8-2.module_el9.5.0+120+4533eb20.x86_64.rpm	b72293f24944cc89bc4f31843d5ffa2d414bfa8d7bc0c8c8fb15ea5fe09cef36
x86_64	postgresql-plpython3-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	b8b8e2ccbeb3466ba060a5f4935ac34ce203bd34f7b861a8d14d577b50bc5487
x86_64	postgresql-contrib-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	c1032d53b7995ad11d7ee815a5857155c6166dd7254412eff0b42ac5d8ce49c4
x86_64	postgresql-server-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	c39d50903d7ff9410e1ac8d7c223d2e3ff4d269d87c9c431d77087591210dd0a
x86_64	postgresql-upgrade-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	eae91fe364f6601ad03a092119c7b7dca755013ca12b28a6fb2665f1b202e6c1
x86_64	postgresql-private-libs-15.10-1.module_el9.5.0+126+03d48c9f.x86_64.rpm	f4fc1eb28533e4bb9bebfd61237d88664b514a1f36d4a6bb93fb6019ef493b33

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.