SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3759

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3759

Security update for postgresql14

Type: security

Severity: important

Issued: 2021-11-22

Description:

This update for postgresql14 fixes the following issues:
          
- CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).
- CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).

- Let rpmlint ignore shlib-policy-name-error (boo#1191782).

References

CVE: CVE-2021-23222
CVE: CVE-2021-23214
Bugzilla: 1192516 VUL-0: postgresql12,postgresql13,postgresql14: 2 November 2021 security issues
Bugzilla: 1191782 [SLPP] postgresql14: E: shlib-policy-name-error

Packages

postgresql14-14.1-5.6.1