Scientific Linux alert SLSA-2022:5162-1 (postgresql)


From:
               Farhan Ahmed <fahmed@fnal.gov>
To:
               scientific-linux-errata@listserv.fnal.gov
Subject:
               Security ERRATA Important: postgresql on SL7.x x86_64
Date:
               Wed, 22 Jun 2022 14:40:18 -0000
Message-ID:
               <20220622144018.3391.91880@0acbe050e934>
Synopsis:          Important: postgresql security update
Advisory ID:       SLSA-2022:5162-1
Issue Date:        2022-06-22
CVE Numbers:       CVE-2022-1552
--

Security Fix(es):

* postgresql: Autovacuum, REINDEX, and others omit "security restricted
operation" sandbox (CVE-2022-1552)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
--

SL7
  x86_64
    postgresql-debuginfo-9.2.24-8.el7_9.i686.rpm
    postgresql-debuginfo-9.2.24-8.el7_9.x86_64.rpm
    postgresql-libs-9.2.24-8.el7_9.i686.rpm
    postgresql-libs-9.2.24-8.el7_9.x86_64.rpm
    postgresql-9.2.24-8.el7_9.i686.rpm
    postgresql-9.2.24-8.el7_9.x86_64.rpm
    postgresql-contrib-9.2.24-8.el7_9.x86_64.rpm
    postgresql-devel-9.2.24-8.el7_9.i686.rpm
    postgresql-devel-9.2.24-8.el7_9.x86_64.rpm
    postgresql-docs-9.2.24-8.el7_9.x86_64.rpm
    postgresql-plperl-9.2.24-8.el7_9.x86_64.rpm
    postgresql-plpython-9.2.24-8.el7_9.x86_64.rpm
    postgresql-pltcl-9.2.24-8.el7_9.x86_64.rpm
    postgresql-server-9.2.24-8.el7_9.x86_64.rpm
    postgresql-static-9.2.24-8.el7_9.i686.rpm
    postgresql-static-9.2.24-8.el7_9.x86_64.rpm
    postgresql-test-9.2.24-8.el7_9.x86_64.rpm
    postgresql-upgrade-9.2.24-8.el7_9.x86_64.rpm

- Scientific Linux Development Team

From:		Farhan Ahmed <fahmed@fnal.gov>
To:		scientific-linux-errata@listserv.fnal.gov
Subject:		Security ERRATA Important: postgresql on SL7.x x86_64
Date:		Wed, 22 Jun 2022 14:40:18 -0000
Message-ID:		<20220622144018.3391.91880@0acbe050e934>