postgresql:12 security update

エラータID: AXSA:2022-2992:01

Release date: 
Thursday, January 20, 2022 - 07:09
Subject: 
postgresql:12 security update
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

PostgreSQL is an advanced object-relational database management system (DBMS).

The following packages have been upgraded to a later upstream version: postgresql (12.9).

Security Fix(es):

* postgresql: memory disclosure in certain queries (CVE-2021-3677)
* postgresql: server processes unencrypted bytes from man-in-the-middle (CVE-2021-23214)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-23214
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE-2021-3677
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Modularity name: postgresql
Stream name: 12

Solution: 

Update packages.

CVEs: 
CVE-2021-23214
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE-2021-3677
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Additional Info: 

N/A

Download: 

SRPMS
  1. pgaudit-1.4.0-5.module+el8+1371+0e3ba7ca.src.rpm
    MD5: eb492413faf3ef44255c22225a5c67d8
    SHA-256: 178642691004e176473fc130c4ee15d7a6b050d4caf8b4f0337220e9523e665b
    Size: 42.10 kB
  2. pg_repack-1.4.6-3.module+el8+1371+0e3ba7ca.src.rpm
    MD5: c0f881ed71179e39f02c150b92ed2d91
    SHA-256: c0e1eec5ab9c6d85b61e33ac3bbc10571a0a3461994e75dbd5be4f430bd4efae
    Size: 101.01 kB
  3. postgres-decoderbufs-0.10.0-2.module+el8+1371+0e3ba7ca.src.rpm
    MD5: 1ecbbab5f45066215cf47fd25b55daa1
    SHA-256: b28a3565652fb4b6630ddfca3627c36fc7ba9990756a2e9218044f2da429f86b
    Size: 21.15 kB
  4. postgresql-12.9-1.module+el8+1371+0e3ba7ca.src.rpm
    MD5: ab77b7beef3b4242ef1f39aaad61963d
    SHA-256: 34202186f8b2621cd2e319149f712dc17f513c07e37c0780af9afdc317832dd7
    Size: 45.79 MB

Asianux Server 8 for x86_64
  1. pgaudit-debugsource-1.4.0-5.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 8633c74cfe11de2415ecc247c9b13fd0
    SHA-256: 1a9c2b621e4948704f835856eb5e00f3debeca50b1e4023094df7bf8310f03eb
    Size: 22.82 kB
  2. pgaudit-1.4.0-5.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: f692bb42d0384fd23900aa0d40769177
    SHA-256: 7e7b0bef0a34c347ac9590566153b7735be4089c5a7cea69626b99c3cbe5527c
    Size: 26.88 kB
  3. pg_repack-1.4.6-3.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 8dca968522879db7ae2d1775204ef7db
    SHA-256: d83679bb260d9eced21260071d7f10140f2fd8cc77f6abd5fb49ffadf191cd81
    Size: 89.16 kB
  4. pg_repack-debugsource-1.4.6-3.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 27920ea89a17a4bccef6bddfba82b404
    SHA-256: e45b08385dc8725b42c7a5ab1e41561d7997940b6c0929508b88ad9caa677a31
    Size: 49.70 kB
  5. postgres-decoderbufs-0.10.0-2.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: b9fbed49235caeeafe54535843609caa
    SHA-256: cfc3952eef8382bd578cee669c6be598e5ea5c586c7ce0e9fca198914c17dc00
    Size: 21.83 kB
  6. postgres-decoderbufs-debugsource-0.10.0-2.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 3a6877bb2d0ac23a8361ae33324d4501
    SHA-256: a58b66cebe56677b0c3c3b4f2311a963c4192a81cf658daca11692641170d57b
    Size: 16.82 kB
  7. postgresql-server-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 2d51bbd87518aed7a1884a830d7c2352
    SHA-256: 1c318a5a75acfe59f0ed90e90a1fe01fede499f56f31ecc0c1be32c965c5a8f4
    Size: 5.56 MB
  8. postgresql-docs-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 7aba346ea9be3cd1e3e8b6fe224cdf34
    SHA-256: 6184b42df70740263b729d61d1d03f54a8aede3496dd880d935a1edfad9138a6
    Size: 9.57 MB
  9. postgresql-upgrade-devel-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 296c9aa3f1c1c4798a1b6497d21e1f9f
    SHA-256: 428bcadb2e93e0834cb84b8005c6b2c8ec3d0cb908e745b9638a9ff428e2653c
    Size: 1.06 MB
  10. postgresql-pltcl-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 029b585a09f6c2bdc0f9ee84db5cf1b0
    SHA-256: b480f3eb6e167ea61cf1e61fcfc8f6d836d3f03007f9590d449cf003e8cff4eb
    Size: 83.99 kB
  11. postgresql-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: c24e346732a4336fb26b94bbe50752b9
    SHA-256: f00d9e15e9befd93f6193b076e007c7d282851673b6da1beb4251247cec2e025
    Size: 1.50 MB
  12. postgresql-test-rpm-macros-12.9-1.module+el8+1371+0e3ba7ca.noarch.rpm
    MD5: 6b9ae26703db45e7d80d1d3d3d6f33a8
    SHA-256: 27b724c1678319dc4720ba5ed1e3acd59880d7da3b322fe1caaf767ccebd6dad
    Size: 51.87 kB
  13. postgresql-static-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 7dfcf428b052034c45a405819deafa5d
    SHA-256: 24e85d542818c7a8dda33e2520e2f4fbe572b69178b78fbc8e53f095c6ab1b97
    Size: 165.56 kB
  14. postgresql-test-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: bb3681983acbdd47298564872489e582
    SHA-256: fd51e88badc5783c815a7872b0d443ae12eb94d53d198a38317961cb6bb87c3a
    Size: 1.92 MB
  15. postgresql-debugsource-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: d82eca06a92ea914b109d2f7308950ef
    SHA-256: 89e06f9030646a23e06da5b21d2ad1e2d7d960f91047d913a40d4fb05e2db339
    Size: 16.69 MB
  16. postgresql-plperl-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: bbcf60eb6a966f93e4839cfddff67d22
    SHA-256: de4709687ac708c9ed64a695718f900b795eaa4581e1d7321d9cce69e324c7ef
    Size: 108.44 kB
  17. postgresql-contrib-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 35cf7b5aaa816efbd62ece780260b34a
    SHA-256: 653ab9b20672b197e4ae5cb7aae72fc6fdc093daf6e739654efe696a89bc60dd
    Size: 867.54 kB
  18. postgresql-plpython3-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 86c0ce56b79d7ad10635b7e2c45031fe
    SHA-256: 3a5e25d3edba57d16e4561e6a9785312e35f7f520954f80bebd3eb4acc3e8e7d
    Size: 127.86 kB
  19. postgresql-server-devel-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: f81a3369262c7910627bc2ecc52ae49d
    SHA-256: f27422906e4e4687213696eec099169ab319174071157bd08710aea3518b7455
    Size: 1.15 MB
  20. postgresql-upgrade-12.9-1.module+el8+1371+0e3ba7ca.x86_64.rpm
    MD5: 12b67df61b2874c49820ded84b566be7
    SHA-256: a1633f7ac0a4978c079d22bc083c3d98d5089d17bddfd02ca5dc406f961feaf7
    Size: 4.06 MB