ALSA-2024:10788

[ALSA-2024:10788] Important: postgresql:16 security update

Type:

security

Severity:

important

Release date:

2024-12-05

Description:

PostgreSQL is an advanced object-relational database management system (DBMS).  

Security Fix(es):  

  * postgresql: PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (CVE-2024-10978)
  * postgresql: PostgreSQL PL/Perl environment variable changes execute arbitrary code (CVE-2024-10979)
  * postgresql: PostgreSQL row security below e.g. subqueries disregards user ID changes (CVE-2024-10976)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	postgresql-plperl-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	024864b9cd671e85a659c87f2ac529a0c6a961fab3d69dec16a4b601efc60db9
aarch64	pgaudit-16.0-1.module_el9.4.0+66+eb9878bc.aarch64.rpm	16376ea924b9a51d373ce99c4ba8e8a55a4ee83ba1a241b8459c1b635dbd1466
aarch64	postgres-decoderbufs-2.4.0-1.Final.module_el9.4.0+66+eb9878bc.aarch64.rpm	182885e56ea13dad4275de2dfe2b333c4846ef506fd1510d9d900ed71da43985
aarch64	postgresql-static-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	2e3dc27404d7abfbd2f87715eeb8fd52bdced7fbbea2d141248f1624c8b76031
aarch64	postgresql-test-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	36234a083b63097b77f4d63452b2bd6d583a0304c33d7608cde94b5e9615509c
aarch64	postgresql-upgrade-devel-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	3dfaeb5e5a172f03f64ffec3ea8c6a5e9b781f78b97abec69e771f3b24f74ef8
aarch64	postgresql-private-libs-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	472dce9e75ba1055492279546bbf7df3e81a603b94544df9f7b0da1d88fc1828
aarch64	postgresql-upgrade-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	5b2563e75a0ffcb317b74519c0ff2034ae93d8dbb82a940d21b5971db38ab5b3
aarch64	postgresql-private-devel-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	65fe2dcd4d10aaf470224b3b0c5dfc10b2a894c6abf813da86d7342ca59227fa
aarch64	postgresql-server-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	80c3ec1c2c836db4693bb0506dff05735e899bda16e8ca26f3bdd9aecd267d50
aarch64	postgresql-plpython3-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	811f48c501842eafd37dbc56035da788741d6a6533fae14a4b38046e23bac346
aarch64	postgresql-docs-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	81aff8c629032be5a0d53e3d65dd473ac009db64dcc9d0e99f3bcc922bc48143
aarch64	postgresql-server-devel-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	8da290d5a04482565b81b8054a702543e005b2c77018cce2f0f40221d972d202
aarch64	postgresql-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	94772f69e299d410d3689bf9b488955efad9e324853ba3eb35c8c757af0d5654
aarch64	pg_repack-1.5.1-1.module_el9.5.0+128+1095dce2.aarch64.rpm	b0d920b1adca7f6b32c63d285de06ea451bc5cabe3cbee8caa99281f6e568956
aarch64	postgresql-pltcl-16.6-1.module_el9.5.0+128+1095dce2.aarch64.rpm	b25f329177aa92396ef1c30993a149c1e5423df09c173d04c8ec46d3b0fb67db
aarch64	pgvector-0.6.2-1.module_el9.5.0+120+4533eb20.aarch64.rpm	ca17d9de008ce2a62296e9b03e28597da0a9eb549c1f5adca63b8698de968d2f
aarch64	postgresql-contrib-16.6-1.module_el9.5.0+127+50ff03a9.aarch64.rpm	f1fbe822f7e31ebdeddf2a705897eefae58387770ddec49dedf019d5f621caa5
noarch	postgresql-test-rpm-macros-16.6-1.module_el9.5.0+127+50ff03a9.noarch.rpm	7187c10a9d4422053b4301be6a2ec5d52b4ffac6d2739b224c0f759e1e2118ae
ppc64le	postgres-decoderbufs-2.4.0-1.Final.module_el9.4.0+66+eb9878bc.ppc64le.rpm	03ceefeb6c273a95c8ec179a387210f1a9c7808522d4871789925b81691e196f
ppc64le	postgresql-server-devel-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	0e3dbf8c3e04f5be87c97f9a77c7eba4d13b4a23e9ce3e6d5dfd88cd49b8be3c
ppc64le	postgresql-pltcl-16.6-1.module_el9.5.0+128+1095dce2.ppc64le.rpm	15be7213c639837cc129878bae6491bd2275b0a50c6e82a2dc886e586f96a7ac
ppc64le	postgresql-docs-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	1a52602c2dfed3415104edd3ffc9bb61829bfc1386b464094707385295fefb07
ppc64le	postgresql-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	287052b392553b2d2942f053692012487aa6a47903b58f15d5c57b2821cb48d6
ppc64le	postgresql-private-libs-16.6-1.module_el9.5.0+128+1095dce2.ppc64le.rpm	54b07c84edb4916d58b3431810c3aeff54e8c6fcece21c20651f697f71f8b2c7
ppc64le	postgresql-plpython3-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	6beb448a9ec8feae35621cce402a6ff31a25b26746394ed1901fd808049048b5
ppc64le	postgresql-private-devel-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	819192cc31d2e90d7be08abecc3b7bb0097b8fa1813f2744ecc4ba1de5a9e697
ppc64le	pgaudit-16.0-1.module_el9.4.0+66+eb9878bc.ppc64le.rpm	8588205024e2617ab6cc93c3e6c3c1ea87350cd54ca5dcdd14e19f88d47d7b6b
ppc64le	postgresql-plperl-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	8d3ab40dc6e9c387f2589fc0ec689323f8658ef9eeeebb6e0fc659b9fa8e3abc
ppc64le	postgresql-test-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	9c0b15572d08d726397ea292a48ac72190d52ae69228da0a8353281d878700f5
ppc64le	pg_repack-1.5.1-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	ac4443bc06feaed279e9f11a1a80b3e95bddc40943552235b222571e571d2b49
ppc64le	postgresql-upgrade-16.6-1.module_el9.5.0+128+1095dce2.ppc64le.rpm	cdc1b5bb56b705e1f85833310cb64450d1404f75ead21fceae209befba76c990
ppc64le	postgresql-contrib-16.6-1.module_el9.5.0+128+1095dce2.ppc64le.rpm	d013a42ef4c4b88328c0d806eb1812ef791c5fee2a172c2bec5ada275e7627c8
ppc64le	postgresql-upgrade-devel-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	d95c62dbda729f4cc62efee0393ef09597904b24d2a5a2d7bc2c4c818a8c0015
ppc64le	postgresql-static-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	dfabf196bb98b904664aa041d5de0f20990f734c42bc112c89624ef3e7ff8449
ppc64le	pgvector-0.6.2-1.module_el9.5.0+120+4533eb20.ppc64le.rpm	dfffb6acbbc8230d9e590c39b28afd94775a3c9db08277c323fa045e200a2f4e
ppc64le	postgresql-server-16.6-1.module_el9.5.0+127+50ff03a9.ppc64le.rpm	fd42cd72679b045c732430f3ad02b45efb1bca5bfac7c130e529b72869a2824c
s390x	postgresql-server-devel-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	1ea7b3d264e188c4272c95b0100757fa8fb2c77435906dd6df5b934708ba92c9
s390x	postgresql-pltcl-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	2498444fe4cafead2fafedc8f92a1db3c047526e4cceef1bc515c0ea690f55a3
s390x	postgresql-plperl-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	2f20ff207b51530881c948abba8841440d02eaedf1abfdc1d97a6de7da3b479c
s390x	postgresql-upgrade-devel-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	3220cdd2d828d40744607affb3649d5c031858e554daef6a76430a6d26f15aa0
s390x	postgresql-docs-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	525c4efe693cc93d1e72ef29ceac37fc99afbf464390134e7efd9448cf103efc
s390x	postgresql-upgrade-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	53930b0919ac5eba8af6486ef8ed2f352962fc3d71ced7ed6676ac0d0548b0c0
s390x	postgresql-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	713809a592166cc6ffc17d0bed78b532b1e23a6553f948d6d9806a09206a4a9b
s390x	postgresql-server-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	748688b2e18b84e4bab679f76ad77c7496a69b0a2635f942d59ae4ce10863b73
s390x	pg_repack-1.5.1-1.module_el9.5.0+128+1095dce2.s390x.rpm	7f6298567f4c4c449fb6821c1b7f708373496b47a39e64274a57c0e48396e0fa
s390x	postgresql-private-libs-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	8bec36f4516ebd0d21e3e9a87ecddc8114cba02238ebc95e9763ee2dc5fc4706
s390x	postgresql-private-devel-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	994bdfa5e990569c3ce9346f37a589218df63e1bd651ac8a6369d2e0e804220e
s390x	postgresql-test-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	af9ba9c40059c1285089285a5213b1ed084a1f5a8fce964d27f08071956248f7
s390x	postgres-decoderbufs-2.4.0-1.Final.module_el9.4.0+66+eb9878bc.s390x.rpm	b8b86855167ad691eae0fb64fade5d312ea4017529a0b1b15f26b2676799555c
s390x	postgresql-static-16.6-1.module_el9.5.0+128+1095dce2.s390x.rpm	c8d394c936f2d1f9f0bd2e84d08d87c24cfd4b4b8b1a08d79736d3c06c2be76a
s390x	pgvector-0.6.2-1.module_el9.5.0+120+4533eb20.s390x.rpm	d9e5362a606cfeea735372eaed74bfcdf4f197951f254b8087bf4055677527ad
s390x	pgaudit-16.0-1.module_el9.4.0+66+eb9878bc.s390x.rpm	dbe62c1869957547d55c68a69aec82df664b3d0cc0ef2b9fc75ca1ac5ab6a739
s390x	postgresql-contrib-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	dea5976fb35f472fe19be235519e47b6154eb6aa52d53e790f628118be0be7c8
s390x	postgresql-plpython3-16.6-1.module_el9.5.0+127+50ff03a9.s390x.rpm	fda64d751a6ee6baab851abde4ac3e859e8327d4ea06bf3cdf6cfafb90031206
x86_64	pg_repack-1.5.1-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	10b053cee26062124a070468e8468a7848fd60065455d3c3c409089dd4d738bd
x86_64	postgresql-server-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	284ef1293507ef8a7fbaba7cf9c7af61d50285dd44a7574ef3a8c69abecd3bed
x86_64	postgres-decoderbufs-2.4.0-1.Final.module_el9.4.0+66+eb9878bc.x86_64.rpm	342da2164f0a3e2c2dffe52a64e59d545e1508f3e2ccd4c73699a228f249e3c1
x86_64	pgaudit-16.0-1.module_el9.4.0+66+eb9878bc.x86_64.rpm	444b13be987bef254b1b10bd96c8d8f8da88547b24b2b5bb51663769436e0442
x86_64	postgresql-private-libs-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	47af2dfa567b320a2e5be32a0f6942945723b236ebe85b3d72a9a0f531e139d9
x86_64	postgresql-server-devel-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	64a418a13f72645530bd2a6bf23dee5244b8122870ac26f62e2bb53e0d90ae64
x86_64	postgresql-plperl-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	7e2b402e5f6e6a4cfdfed807a6b3dab5a300e021a3d7a56da62170f0c5824c0e
x86_64	postgresql-pltcl-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	7f0638c15424ef426345fc1ed81b91e9d3564f1129bb9a67abbaf258501ff22c
x86_64	postgresql-test-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	94b28f6100596dca78030c8f21095601849ba78f8ff1bd479cd1d8dace7d18e6
x86_64	pgvector-0.6.2-1.module_el9.5.0+120+4533eb20.x86_64.rpm	ab3b151390d63d4362748ec347fd96a8fd8ed45b097d158f01b8b5cdc421603e
x86_64	postgresql-contrib-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	acc1d78ba6fd1cc8f33d76e2c988e7d35cc5aecca4211d93c52b061776339621
x86_64	postgresql-docs-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	b3bd89f9a70811318960bffb6c4e8fed8e76dd286c4446b0431221a323bf165b
x86_64	postgresql-plpython3-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	d90abfe5a3fb7a05b27c5ee821f1a48596e049d047bb0b72d2514b5d7c875baa
x86_64	postgresql-private-devel-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	e038cfcda55ea5b4ef892508e2bb4a563d9182cda8a628ad2cd8bd09812f85db
x86_64	postgresql-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	e312b7bf6b31bb3bf912fb6e9cf22ad6bad62a35395f44120af5358fa3eceb15
x86_64	postgresql-upgrade-devel-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	e68ae6b3d19178aa20966c0ef29909ad37156a0908a71ce34f4051cb00398e28
x86_64	postgresql-static-16.6-1.module_el9.5.0+128+1095dce2.x86_64.rpm	f5d4eaccd82eb67bd68ba06ef084f45ac2d3f2f8ce8af2fad9f1647750909692
x86_64	postgresql-upgrade-16.6-1.module_el9.5.0+127+50ff03a9.x86_64.rpm	fbf7ae1b008af0691950554df1d83ac221ce7f419596877cbebe8c864b153ed9

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.