Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

openSUSE: 2023:4421-1 Critical: Nginx Security Update Released

opensuse
Calendar Grey August 17, 2023
Dist Opensuse Esm H88
The latest patch for PostgreSQL 15 resolves the SQL injection vulnerability linked to CVE-2023-39417, enhancing the security measures for openSUSE users.
This update for postgresql15 fixes the following issues: Update to 13.12 CVE-2023-39417: Fixed potential SQL injection for trusted extensions.

Description

This update for postgresql15 fixes the following issues:

* Update to 13.12

* CVE-2023-39417: Fixed potential SQL injection for trusted extensions.

(bsc#1214059)

Topics%20covered

Topics Covered

security advisory software patch moderate severity SQL injection openSUSE postgresql update

Patch

## Patch Instructions:

To install this SUSE Moderate update use the SUSE recommended installation

methods like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4

zypper in -t patch openSUSE-SLE-15.4-2023-3344=1

* openSUSE Leap 15.5

zypper in -t patch openSUSE-SLE-15.5-2023-3344=1

* Legacy Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Legacy-15-SP4-2023-3344=1

* SUSE Manager Proxy 4.2

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-3344=1

* SUSE Manager Retail Branch Server 4.2

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-

Server-4.2-2023-3344=1

* SUSE Manager Server 4.2

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-3344=1

Package List

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)

* postgresql13-debugsource-13.12-150200.5.43.1

* postgresql13-llvmjit-devel-13.12-150200.5.43.1

* postgresql13-plperl-13.12-150200.5.43.1

* postgresql13-pltcl-13.12-150200.5.43.1

* postgresql13-debuginfo-13.12-150200.5.43.1

* postgresql13-llvmjit-debuginfo-13.12-150200.5.43.1

* postgresql13-server-devel-debuginfo-13.12-150200.5.43.1

* postgresql13-server-devel-13.12-150200.5.43.1

* postgresql13-13.12-150200.5.43.1

* postgresql13-llvmjit-13.12-150200.5.43.1

* postgresql13-contrib-debuginfo-13.12-150200.5.43.1

* postgresql13-test-13.12-150200.5.43.1

* postgresql13-devel-13.12-150200.5.43.1

* postgresql13-plpython-debuginfo-13.12-150200.5.43.1

* postgresql13-plpython-13.12-150200.5.43.1

* postgresql13-pltcl-debuginfo-13.12-150200.5.43.1

* postgresql13-server-13.12-150200.5.43.1

* postgresql13-plperl-debuginfo-13.12-150200.5.43.1

* postgresql13-server-debuginfo-13.12-150200.5.43.1

* postgresql13-contrib-13.12-150200.5.43.1

*...

Read the Full Advisory

References

* #1214059

## References:

* https://www.suse.com/security/cve/CVE-2023-39417.html

* https://bugzilla.suse.com/show_bug.cgi?id=1214059

Announcement ID: SUSE-SU-2023:3344-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory software patch moderate severity SQL injection openSUSE postgresql update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here