Security update for postgresql, postgresql13 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:0175-1 Final 1 1 2021-01-20T08:24:08Z current 2021-01-20T08:24:08Z 2021-01-20T08:24:08Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for postgresql, postgresql13 This update for postgresql, postgresql13 fixes the following issues: This update ships postgresql13. Upgrade to version 13.1: * CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. * CVE-2020-25694, bsc#1178667: a) Fix usage of complex connection-string parameters in pg_dump, pg_restore, clusterdb, reindexdb, and vacuumdb. b) When psql's \connect command re-uses connection parameters, ensure that all non-overridden parameters from a previous connection string are re-used. * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from modifying specially-treated variables. * Fix recently-added timetz test case so it works when the USA is not observing daylight savings time. (obsoletes postgresql-timetz.patch) * https://www.postgresql.org/about/news/2111/ * https://www.postgresql.org/docs/13/release-13-1.html Initial packaging of PostgreSQL 13: * https://www.postgresql.org/about/news/2077/ * https://www.postgresql.org/docs/13/release-13.html - bsc#1178961: %ghost the symlinks to pg_config and ecpg. Changes in postgresql wrapper package: - Bump major version to 13. - We also transfer PostgreSQL 9.4.26 to the new package layout in SLE12-SP2 and newer. Reflect this in the conflict with postgresql94. - Also conflict with PostgreSQL versions before 9. - Conflicting with older versions is not limited to SLE. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/postgres:10-2021-175,Container suse/postgres:12-2021-175,Container suse/postgres:13-2021-175,Container suse/postgres:14-2021-175,Container suse/postgres:15-2021-175,Container suse/postgres:latest-2021-175,Container trento/trento-db:latest-2021-175,Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure-2021-175,Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM-2021-175,Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE-2021-175,Image SLES15-SP4-Manager-Server-4-3-2021-175,Image SLES15-SP4-Manager-Server-4-3-Azure-llc-2021-175,Image SLES15-SP4-Manager-Server-4-3-Azure-ltd-2021-175,Image SLES15-SP4-Manager-Server-4-3-BYOS-2021-175,Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure-2021-175,Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2-2021-175,Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE-2021-175,Image SLES15-SP4-Manager-Server-4-3-EC2-llc-2021-175,Image SLES15-SP4-Manager-Server-4-3-EC2-ltd-2021-175,SUSE-2021-175,SUSE-SLE-Module-Basesystem-15-SP2-2021-175,SUSE-SLE-Module-Packagehub-Subpackages-15-SP2-2021-175,SUSE-SLE-Module-Server-Applications-15-SP2-2021-175 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20210175-1/ Link for SUSE-SU-2021:0175-1 https://lists.suse.com/pipermail/sle-security-updates/2021-January/008229.html E-Mail link for SUSE-SU-2021:0175-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1178666 SUSE Bug 1178666 https://bugzilla.suse.com/1178667 SUSE Bug 1178667 https://bugzilla.suse.com/1178668 SUSE Bug 1178668 https://bugzilla.suse.com/1178961 SUSE Bug 1178961 https://www.suse.com/security/cve/CVE-2020-25694/ SUSE CVE CVE-2020-25694 page https://www.suse.com/security/cve/CVE-2020-25695/ SUSE CVE CVE-2020-25695 page https://www.suse.com/security/cve/CVE-2020-25696/ SUSE CVE CVE-2020-25696 page Container suse/postgres:10 Container suse/postgres:12 Container suse/postgres:13 Container suse/postgres:14 Container suse/postgres:15 Container suse/postgres:latest Container trento/trento-db:latest Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3 Image SLES15-SP4-Manager-Server-4-3-Azure-llc Image SLES15-SP4-Manager-Server-4-3-Azure-ltd Image SLES15-SP4-Manager-Server-4-3-BYOS Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3-EC2-llc Image SLES15-SP4-Manager-Server-4-3-EC2-ltd SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Package Hub 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP2 libpq5-13.1-5.3.15 postgresql13-13.1-5.3.15 postgresql13-server-13.1-5.3.15 postgresql13-contrib-13.1-5.3.15 libecpg6-13.1-5.3.15 libecpg6-32bit-13.1-5.3.15 libecpg6-64bit-13.1-5.3.15 libpq5-32bit-13.1-5.3.15 libpq5-64bit-13.1-5.3.15 postgresql-13-4.6.7 postgresql-contrib-13-4.6.7 postgresql-devel-13-4.6.7 postgresql-docs-13-4.6.7 postgresql-plperl-13-4.6.7 postgresql-plpython-13-4.6.7 postgresql-pltcl-13-4.6.7 postgresql-server-13-4.6.7 postgresql-server-devel-13-4.6.7 postgresql-test-13-4.6.7 postgresql13-devel-13.1-5.3.15 postgresql13-devel-mini-13.1-5.3.10 postgresql13-docs-13.1-5.3.15 postgresql13-plperl-13.1-5.3.15 postgresql13-plpython-13.1-5.3.15 postgresql13-pltcl-13.1-5.3.15 postgresql13-server-devel-13.1-5.3.15 postgresql13-test-13.1-5.3.15 libpq5-13.1-5.3.15 as a component of Container suse/postgres:10 libpq5-13.1-5.3.15 as a component of Container suse/postgres:12 libpq5-13.1-5.3.15 as a component of Container suse/postgres:13 postgresql13-13.1-5.3.15 as a component of Container suse/postgres:13 postgresql13-server-13.1-5.3.15 as a component of Container suse/postgres:13 libpq5-13.1-5.3.15 as a component of Container suse/postgres:14 libpq5-13.1-5.3.15 as a component of Container suse/postgres:15 libpq5-13.1-5.3.15 as a component of Container suse/postgres:latest libpq5-13.1-5.3.15 as a component of Container trento/trento-db:latest libpq5-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure postgresql13-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure postgresql13-contrib-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure postgresql13-server-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure libpq5-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM postgresql13-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM postgresql13-contrib-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM postgresql13-server-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM libpq5-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE postgresql13-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE postgresql13-contrib-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE postgresql13-server-13.1-5.3.15 as a component of Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3 libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-Azure-llc libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-Azure-ltd libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-BYOS libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-EC2-llc libpq5-13.1-5.3.15 as a component of Image SLES15-SP4-Manager-Server-4-3-EC2-ltd libpq5-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP2 libpq5-32bit-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP2 postgresql-13-4.6.7 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP2 postgresql13-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP2 postgresql-test-13-4.6.7 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP2 postgresql13-test-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP2 libecpg6-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-contrib-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-devel-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-docs-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-plperl-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-plpython-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-pltcl-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-server-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql-server-devel-13-4.6.7 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-contrib-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-devel-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-docs-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-plperl-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-plpython-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-pltcl-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-server-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 postgresql13-server-devel-13.1-5.3.15 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP2 A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. If a client application that creates additional database connections only reuses the basic connection parameters while dropping security-relevant parameters, an opportunity for a man-in-the-middle attack, or the ability to observe clear-text transmissions, could exist. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2020-25694 Container suse/postgres:10:libpq5-13.1-5.3.15 Container suse/postgres:12:libpq5-13.1-5.3.15 Container suse/postgres:13:libpq5-13.1-5.3.15 Container suse/postgres:13:postgresql13-13.1-5.3.15 Container suse/postgres:13:postgresql13-server-13.1-5.3.15 Container suse/postgres:14:libpq5-13.1-5.3.15 Container suse/postgres:15:libpq5-13.1-5.3.15 Container suse/postgres:latest:libpq5-13.1-5.3.15 Container trento/trento-db:latest:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-server-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-32bit-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql-13-4.6.7 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql13-13.1-5.3.15 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql-test-13-4.6.7 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql13-test-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:libecpg6-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-contrib-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-docs-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plperl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plpython-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-pltcl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-contrib-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-devel-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-docs-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plperl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plpython-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-pltcl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-devel-13.1-5.3.15 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20210175-1/ https://www.suse.com/security/cve/CVE-2020-25694.html CVE-2020-25694 https://bugzilla.suse.com/1178667 SUSE Bug 1178667 https://bugzilla.suse.com/1179870 SUSE Bug 1179870 A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2020-25695 Container suse/postgres:10:libpq5-13.1-5.3.15 Container suse/postgres:12:libpq5-13.1-5.3.15 Container suse/postgres:13:libpq5-13.1-5.3.15 Container suse/postgres:13:postgresql13-13.1-5.3.15 Container suse/postgres:13:postgresql13-server-13.1-5.3.15 Container suse/postgres:14:libpq5-13.1-5.3.15 Container suse/postgres:15:libpq5-13.1-5.3.15 Container suse/postgres:latest:libpq5-13.1-5.3.15 Container trento/trento-db:latest:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-server-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-32bit-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql-13-4.6.7 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql13-13.1-5.3.15 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql-test-13-4.6.7 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql13-test-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:libecpg6-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-contrib-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-docs-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plperl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plpython-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-pltcl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-contrib-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-devel-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-docs-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plperl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plpython-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-pltcl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-devel-13.1-5.3.15 important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20210175-1/ https://www.suse.com/security/cve/CVE-2020-25695.html CVE-2020-25695 https://bugzilla.suse.com/1178666 SUSE Bug 1178666 A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. If an interactive psql session uses \gset when querying a compromised server, the attacker can execute arbitrary code as the operating system account running psql. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2020-25696 Container suse/postgres:10:libpq5-13.1-5.3.15 Container suse/postgres:12:libpq5-13.1-5.3.15 Container suse/postgres:13:libpq5-13.1-5.3.15 Container suse/postgres:13:postgresql13-13.1-5.3.15 Container suse/postgres:13:postgresql13-server-13.1-5.3.15 Container suse/postgres:14:libpq5-13.1-5.3.15 Container suse/postgres:15:libpq5-13.1-5.3.15 Container suse/postgres:latest:libpq5-13.1-5.3.15 Container trento/trento-db:latest:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM:postgresql13-server-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-contrib-13.1-5.3.15 Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE:postgresql13-server-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-Azure-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-BYOS:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-llc:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3-EC2-ltd:libpq5-13.1-5.3.15 Image SLES15-SP4-Manager-Server-4-3:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:libpq5-32bit-13.1-5.3.15 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql-13-4.6.7 SUSE Linux Enterprise Module for Basesystem 15 SP2:postgresql13-13.1-5.3.15 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql-test-13-4.6.7 SUSE Linux Enterprise Module for Package Hub 15 SP2:postgresql13-test-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:libecpg6-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-contrib-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-docs-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plperl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-plpython-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-pltcl-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql-server-devel-13-4.6.7 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-contrib-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-devel-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-docs-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plperl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-plpython-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-pltcl-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-13.1-5.3.15 SUSE Linux Enterprise Module for Server Applications 15 SP2:postgresql13-server-devel-13.1-5.3.15 important 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20210175-1/ https://www.suse.com/security/cve/CVE-2020-25696.html CVE-2020-25696 https://bugzilla.suse.com/1178668 SUSE Bug 1178668 https://bugzilla.suse.com/1179870 SUSE Bug 1179870