Mageia 2021-0221: postgresql security update

Advisories

What Are You Looking For?

Popular Tags

Contribute

Advisories This Week: 254

MGASA-2021-0221 - Updated postgresql packages fix security vulnerabilities

Publication date: 23 May 2021
URL: https://advisories.mageia.org/MGASA-2021-0221.html
Type: security
Affected Mageia releases: 7, 8
CVE: CVE-2021-32027,
     CVE-2021-32029,
     CVE-2021-32029

Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027).

Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATE. (CVE-2021-32028).

Memory disclosure in partitioned-table UPDATE ... RETURNING. (CVE-2021-32029).

References:
- https://bugs.mageia.org/show_bug.cgi?id=28929
- https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029

SRPMS:
- 8/core/postgresql11-11.12-1.mga8
- 8/core/postgresql13-13.3-1.mga8
- 7/core/postgresql9.6-9.6.22-1.mga7
- 7/core/postgresql11-11.12-1.mga7

Mageia 2021-0221: postgresql security update

Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027)

Summary

Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027).
Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATE. (CVE-2021-32028).
Memory disclosure in partitioned-table UPDATE ... RETURNING. (CVE-2021-32029).

References

- https://bugs.mageia.org/show_bug.cgi?id=28929

- https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029

Resolution

MGASA-2021-0221 - Updated postgresql packages fix security vulnerabilities

SRPMS

- 8/core/postgresql11-11.12-1.mga8

- 8/core/postgresql13-13.3-1.mga8

- 7/core/postgresql9.6-9.6.22-1.mga7

- 7/core/postgresql11-11.12-1.mga7

Severity
Publication date: 23 May 2021
URL: https://advisories.mageia.org/MGASA-2021-0221.html
Type: security
CVE: CVE-2021-32027, CVE-2021-32029, CVE-2021-32029

News

Advisories

HOWTOs

Features

Benefits & Drawbacks of Using a VPN on Linux
How a WAF Could Improve the Security of Your Linux Web Applications
Installing SurfShark VPN On Kali Linux: The Authoritative Guide
Best Practices for PHP Security
9 Wise Linux Cybersecurity Tips for Businesses

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy