SUSE: 2023:3808-1 Critical: Postgres Security Update for Important Issues
suse
November 22, 2023
The container suse/postgres was updated
Summary
Advisory ID: SUSE-SU-2023:4479-1 Released: Mon Nov 20 10:09:03 2023 Summary: Security update for postgresql14 Type: security Severity: important Advisory ID: SUSE-SU-2023:4495-1 Released: Tue Nov 21 08:39:58 2023 Summary: Security update for postgresql, postgresql15, postgresql16 Type: security Severity: important Advisory ID: SUSE-SU-2023:4524-1 Released: Tue Nov 21 17:51:28 2023
Topics Covered
References
References : 1122892 1179231 1206796 1209208 1216022 1216022 1216734 1216734
1216922 1216960 1216960 1216961 1216961 1216962 1216962 CVE-2023-5678
CVE-2023-5868 CVE-2023-5868 CVE-2023-5869 CVE-2023-5869 CVE-2023-5870
CVE-2023-5870
1216022,1216734,1216960,1216961,1216962,CVE-2023-5868,CVE-2023-5869,CVE-2023-5870
This update for postgresql14 fixes the following issues:
Security issues fixed:
* CVE-2023-5868: Fix handling of unknown-type
arguments in DISTINCT 'any' aggregate functions. This error led
to a text-type value being interpreted as an unknown-type value
(that is, a zero-terminated string) at runtime. This could
result in disclosure of server memory following the text value. (bsc#1216962)
* CVE-2023-5869: Detect integer overflow while
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2023:3807-1
Container Tags : suse/postgres:14 , suse/postgres:14-24.14 , suse/postgres:14.10 , suse/postgres:14.10-24.14
Container Release : 24.14
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!