SUSE 2023:3823-1 Important: Postgres Security Update Advisory
suse
November 22, 2023
The container suse/postgres was updated
Summary
Advisory ID: SUSE-SU-2023:4495-1 Released: Tue Nov 21 08:39:58 2023 Summary: Security update for postgresql, postgresql15, postgresql16 Type: security Severity: important
Topics Covered
References
References : 1122892 1179231 1206796 1209208 1216022 1216734 1216960 1216961
1216962 CVE-2023-5868 CVE-2023-5869 CVE-2023-5870
1122892,1179231,1206796,1209208,1216022,1216734,1216960,1216961,1216962,CVE-2023-5868,CVE-2023-5869,CVE-2023-5870
This update for postgresql, postgresql15, postgresql16 fixes the following issues:
This update ships postgresql 16.
Security issues fixed:
* CVE-2023-5868: Fix handling of unknown-type
arguments in DISTINCT 'any' aggregate functions. This error led
to a text-type value being interpreted as an unknown-type value
(that is, a zero-terminated string) at runtime. This could
result in disclosure of server memory following the text value. (bsc#1216962)
* CVE-2023-5869: Detect integer overflow while
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2023:3823-1
Container Tags : suse/postgres:15 , suse/postgres:15-12.17 , suse/postgres:15.5 , suse/postgres:15.5-12.17 , suse/postgres:latest
Container Release : 12.17
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!