Lucene search
AlmaLinuxALSA-2020:5401HistoryDec 14, 2020 - 12:34 p.m.
Important: libpq security update
2020-12-1412:34:53
errata.almalinux.org
20
0.004 Low
EPSS
Percentile
73.2%
The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.
The following packages have been upgraded to a later upstream version: libpq (12.5). (BZ#1898228, BZ#1901558)
Security Fix(es):
-
postgresql: Reconnection can downgrade connection security settings (CVE-2020-25694)
-
postgresql: psql’s \gset allows overwriting specially treated variables (CVE-2020-25696)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | libpq | < 12.5-1.el8_3 | libpq-12.5-1.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | libpq | < 12.5-1.el8_3 | libpq-12.5-1.el8_3.x86_64.rpm |
| almalinux | 8 | i686 | libpq-devel | < 12.5-1.el8_3 | libpq-devel-12.5-1.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | libpq-devel | < 12.5-1.el8_3 | libpq-devel-12.5-1.el8_3.x86_64.rpm |
Related
nessus
nessus
NewStart CGSL MAIN 6.02 : libpq Multiple Vulnerabilities (NS-SA-2021-0085)
2021-03-10 00:00:00
RHEL 8 : libpq (RHSA-2020:5638)
2020-12-27 00:00:00
RHEL 8 : libpq (RHSA-2021:0057)
2021-01-11 00:00:00
redhat
redhat
(RHSA-2020:5401) Important: libpq security update
2020-12-14 12:34:53
(RHSA-2021:0057) Important: libpq security update
2021-01-11 10:30:14
(RHSA-2020:5638) Important: libpq security update
2020-12-21 09:58:32
oraclelinux
oraclelinux
libpq security update
2020-12-15 00:00:00
postgresql:10 security update
2020-12-22 00:00:00
postgresql:12 security update
2020-12-23 00:00:00
suse
suse
Security update for postgresql12 (important)
2020-11-26 00:00:00
Security update for postgresql12 (important)
2020-11-26 00:00:00
Security update for postgresql, postgresql13 (moderate)
2021-02-24 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3463-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2020-2526)
2020-12-15 00:00:00
Ubuntu: Security Advisory (USN-4633-1)
2020-11-18 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package postgresql13 version 13.1-alt1
2020-11-16 00:00:00
Security fix for the ALT Linux 9 package postgresql12 version 12.5-alt1
2020-11-16 00:00:00
amazon
amazon
Important: postgresql95, postgresql96
2021-01-12 22:52:00
Important: postgresql92
2021-07-08 18:38:00
Important: postgresql
2021-06-16 20:37:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2020-12-07 00:00:00
archlinux
archlinux
[ASA-202011-14] postgresql: multiple issues
2020-11-17 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2020-11-17 00:00:00
kaspersky
kaspersky
KLA12005 Multiple vulnerabilities in PostgreSQL
2020-11-12 00:00:00
debian
debian
[SECURITY] [DLA 2478-1] postgresql-9.6 security update
2020-12-02 11:04:53
osv
osv
postgresql-10, postgresql-12, postgresql-9.5 vulnerabilities
2020-11-17 13:03:44
postgresql-9.6 - security update
2020-12-02 00:00:00
BIT-postgresql-2020-25696
2024-03-06 11:05:53
almalinux
almalinux
Important: postgresql:10 security update
2020-12-16 08:03:04
Important: postgresql:12 security update
2020-12-17 15:30:10
Important: postgresql:9.6 security update
2020-12-17 15:20:53
mageia
mageia
Updated postgresql packages fix security vulnerabilities
2020-11-21 15:21:00
f5
f5
K72430453 : PostgreSQL vulnerability CVE-2020-25696
2020-12-22 00:00:00
K53632470 : PostgreSQL vulnerabilities CVE-2020-25694, CVE-2020-25695
2021-01-06 00:00:00
ibm
ibm
ubuntucve
ubuntucve
CVE-2020-25696
2020-11-13 00:00:00
CVE-2020-25694
2020-11-13 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: postgresql-12.6-1.fc33
2021-02-26 01:10:06
veracode
veracode
Overwriting Variables
2020-11-20 09:48:27
Man-in-the-Middle
2020-11-20 09:38:29
debiancve
debiancve
CVE-2020-25696
2020-11-23 22:15:12
CVE-2020-25694
2020-11-16 01:15:12
alpinelinux
alpinelinux
CVE-2020-25696
2020-11-23 22:15:12
CVE-2020-25694
2020-11-16 01:15:12
cbl_mariner
cbl_mariner
CVE-2020-25696 affecting package postgresql 12.5-1
2021-06-20 03:47:42
CVE-2020-25694 affecting package postgresql 12.1-3
2021-06-20 03:47:42
cve
cve
CVE-2020-25696
2020-11-23 22:15:12
CVE-2020-25694
2020-11-16 01:15:12
cvelist
cvelist
CVE-2020-25696
2020-11-23 21:15:47
CVE-2020-25694
2020-11-16 00:38:53
nvd
nvd
CVE-2020-25696
2020-11-23 22:15:12
CVE-2020-25694
2020-11-16 01:15:12
prion
prion
Design/Logic Flaw
2020-11-23 22:15:00
Design/Logic Flaw
2020-11-16 01:15:00
postgresql
postgresql
Vulnerability in client (CVE-2020-25694)
2020-11-16 01:15:00
Vulnerability in client (CVE-2020-25696)
2020-11-23 22:15:00
redhatcve
redhatcve
CVE-2020-25694
2020-11-12 15:24:01
CVE-2020-25696
2020-11-12 15:24:04
cnvd
cnvd
PostgreSQL Arbitrary Code Execution Vulnerability (CNVD-2022-06539)
2020-11-24 00:00:00
rocky
rocky
postgresql:12 security update
2020-12-17 15:30:10
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0340
2020-11-25 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0298
2020-11-25 00:00:00
Important Photon OS Security Update - PHSA-2020-0340
2020-11-25 00:00:00
centos
centos
postgresql security update
2021-06-14 18:54:03
rosalinux
rosalinux
Advisory ROSA-SA-2021-1955
2021-07-02 17:59:52