Lucene search
SuseOPENSUSE-SU-2020:1243-1HistoryAug 22, 2020 - 12:00 a.m.
Security update for postgresql12 (important)
2020-08-2200:00:00
lists.opensuse.org
41
0.002 Low
EPSS
Percentile
61.4%
An update that fixes two vulnerabilities is now available.
Description:
This update for postgresql12 fixes the following issues:
- update to 12.4:
- CVE-2020-14349, bsc#1175193: Set a secure search_path in logical
replication walsenders and apply workers - CVE-2020-14350, bsc#1175194: Make contrib modules’ installation
scripts more secure. - https://www.postgresql.org/docs/12/release-12-4.html
- CVE-2020-14349, bsc#1175193: Set a secure search_path in logical
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2020-1243=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.1 | x86_64 | < - openSUSE Leap 15.1 (x86_64): | - openSUSE Leap 15.1 (x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.1 | noarch | < - openSUSE Leap 15.1 (noarch): | - openSUSE Leap 15.1 (noarch):.noarch.rpm |
Related
nessus
nessus
openSUSE Security Update : postgresql12 (openSUSE-2020-1244)
2020-08-24 00:00:00
openSUSE Security Update : postgresql10 (openSUSE-2020-1326)
2020-09-08 00:00:00
Photon OS 1.0: Postgresql PHSA-2020-1.0-0321
2020-10-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package postgresql15 version 12.4-alt1
2020-08-12 00:00:00
Security fix for the ALT Linux 9 package postgresql12-1C version 11.9-alt1
2020-08-12 00:00:00
openvas
openvas
openSUSE: Security Advisory for postgresql12 (openSUSE-SU-2020:1244-1)
2020-08-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2271-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for postgresql, (openSUSE-SU-2020:1228-1)
2020-08-18 00:00:00
suse
suse
Security update for postgresql, postgresql96, postgresql10, postgresql12 (moderate)
2020-08-17 00:00:00
Security update for postgresql10 (important)
2020-09-01 00:00:00
Security update for postgresql10 (important)
2020-09-03 00:00:00
ibm
ibm
Security Bulletin: Search path vulnerability in PostgreSQL Server bundled in IBM Robotic Process Automation with Automation Anywhere (CVE-2020-14349, CVE-2020-14350)
2021-05-07 20:28:45
redhat
redhat
(RHSA-2020:5110) Moderate: rh-postgresql10-postgresql security update
2020-11-16 08:47:34
(RHSA-2021:0988) Moderate: rhvm-appliance security, bug fix, and enhancement update
2021-03-25 11:24:15
(RHSA-2020:5112) Moderate: rh-postgresql12-postgresql security update
2020-11-16 11:44:42
ubuntu
ubuntu
PostgreSQL vulnerabilities
2020-08-25 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0137
2020-09-10 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0137
2020-09-07 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2020-08-26 00:00:00
mageia
mageia
Updated postgresql packages fix security vulnerabilities
2020-09-06 23:33:09
fedora
fedora
[SECURITY] Fedora 33 Update: postgresql-12.6-1.fc33
2021-02-26 01:10:06
osv
osv
Untrusted Search Path in PostgreSQL
2022-02-15 01:57:18
postgresql-9.6 - security update
2020-08-17 00:00:00
CVE-2020-14350
2020-08-24 13:15:10
cbl_mariner
cbl_mariner
CVE-2020-14349 affecting package postgresql 12.1-3
2021-06-20 03:47:42
CVE-2020-14350 affecting package postgresql 12.1-3
2021-06-20 03:47:42
postgresql
postgresql
Vulnerability in core server (CVE-2020-14349)
2020-08-24 13:15:00
Vulnerability in core server (CVE-2020-14350)
2020-08-24 13:15:00
veracode
veracode
Remote Code Execution (RCE)
2020-09-07 02:40:48
SQL Injection
2020-09-07 02:40:01
nvd
nvd
CVE-2020-14350
2020-08-24 13:15:10
CVE-2020-14349
2020-08-24 13:15:10
alpinelinux
alpinelinux
CVE-2020-14350
2020-08-24 13:15:10
CVE-2020-14349
2020-08-24 13:15:10
kaspersky
kaspersky
KLA11937 Security vulnerability in PostgreSQL
2020-08-13 00:00:00
KLA11938 Security vulnerability in PostgreSQL
2020-08-13 00:00:00
debiancve
debiancve
CVE-2020-14350
2020-08-24 13:15:10
CVE-2020-14349
2020-08-24 13:15:10
debian
debian
[SECURITY] [DLA 2331-1] posgresql-9.6 security update
2020-08-17 08:24:00
prion
prion
Code injection
2020-08-24 13:15:00
Sql injection
2020-08-24 13:15:00
cvelist
cvelist
CVE-2020-14350
2020-08-24 12:42:45
CVE-2020-14349
2020-08-24 12:32:13
cve
cve
CVE-2020-14350
2020-08-24 13:15:10
CVE-2020-14349
2020-08-24 13:15:10
redhatcve
redhatcve
CVE-2020-14350
2020-08-13 12:43:36
CVE-2020-14349
2020-08-13 12:43:35
ubuntucve
ubuntucve
CVE-2020-14350
2020-08-17 00:00:00
CVE-2020-14349
2020-08-17 00:00:00
oraclelinux
oraclelinux
postgresql:12 security update
2020-12-23 00:00:00
postgresql:10 security and bug fix update
2020-09-09 00:00:00
rh-postgresql10-postgresql security update
2021-06-11 00:00:00
rocky
rocky
postgresql:12 security update
2020-12-17 15:30:10
almalinux
almalinux
Important: postgresql:12 security update
2020-12-17 15:30:10
Important: postgresql:9.6 security update
2020-12-17 15:20:53
amazon
amazon
Medium: postgresql95
2020-10-26 18:27:00
Medium: postgresql96
2020-10-26 18:29:00