SUSE alert openSUSE-SU-2025:15580-1 (postgresql17)
| From: | meissner@suse.com | |
| To: | security-announce@lists.opensuse.org | |
| Subject: | openSUSE-SU-2025:15580-1: moderate: postgresql17-17.6-2.1 on GA media | |
| Date: | Sat, 27 Sep 2025 17:36:43 +0200 | |
| Message-ID: | <20250927153643.A90BEFBA1@maintenance.suse.de> | |
| Archive-link: | Article |
# postgresql17-17.6-2.1 on GA media Announcement ID: openSUSE-SU-2025:15580-1 Rating: moderate Cross-References: * CVE-2020-25694 * CVE-2020-25695 * CVE-2020-25696 * CVE-2021-20229 * CVE-2021-23214 * CVE-2021-23222 * CVE-2021-32027 * CVE-2021-32028 * CVE-2021-32029 * CVE-2021-3393 * CVE-2022-1552 * CVE-2022-41862 * CVE-2023-2454 * CVE-2023-2455 * CVE-2023-5868 * CVE-2023-5869 * CVE-2023-5870 * CVE-2024-0985 CVSS scores: * CVE-2020-25694 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2020-25695 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2020-25696 ( SUSE ): 8 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2021-20229 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-23214 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2021-23222 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2021-32027 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-32028 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-32029 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-3393 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-1552 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-41862 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2454 ( SUSE ): 6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N * CVE-2023-2455 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2023-5868 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-5869 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-5870 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0985 ( SUSE ): 8 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Tumbleweed An update that solves 18 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the postgresql17-17.6-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * postgresql17 17.6-2.1 * postgresql17-contrib 17.6-2.1 * postgresql17-devel 17.6-2.1 * postgresql17-docs 17.6-2.1 * postgresql17-llvmjit 17.6-2.1 * postgresql17-llvmjit-devel 17.6-2.1 * postgresql17-plperl 17.6-2.1 * postgresql17-plpython 17.6-2.1 * postgresql17-pltcl 17.6-2.1 * postgresql17-server 17.6-2.1 * postgresql17-server-devel 17.6-2.1 * postgresql17-test 17.6-2.1 ## References: * https://www.suse.com/security/cve/CVE-2020-25694.html * https://www.suse.com/security/cve/CVE-2020-25695.html * https://www.suse.com/security/cve/CVE-2020-25696.html * https://www.suse.com/security/cve/CVE-2021-20229.html * https://www.suse.com/security/cve/CVE-2021-23214.html * https://www.suse.com/security/cve/CVE-2021-23222.html * https://www.suse.com/security/cve/CVE-2021-32027.html * https://www.suse.com/security/cve/CVE-2021-32028.html * https://www.suse.com/security/cve/CVE-2021-32029.html * https://www.suse.com/security/cve/CVE-2021-3393.html * https://www.suse.com/security/cve/CVE-2022-1552.html * https://www.suse.com/security/cve/CVE-2022-41862.html * https://www.suse.com/security/cve/CVE-2023-2454.html * https://www.suse.com/security/cve/CVE-2023-2455.html * https://www.suse.com/security/cve/CVE-2023-5868.html * https://www.suse.com/security/cve/CVE-2023-5869.html * https://www.suse.com/security/cve/CVE-2023-5870.html * https://www.suse.com/security/cve/CVE-2024-0985.html