Lucene search

K
redhatRedHatRHSA-2021:2394
HistoryJun 14, 2021 - 7:23 a.m.

(RHSA-2021:2394) Important: rh-postgresql12-postgresql security update

2021-06-1407:23:03
access.redhat.com
35

0.007 Low

EPSS

Percentile

80.4%

PostgreSQL is an advanced object-relational database management system (DBMS).

The following packages have been upgraded to a later upstream version: rh-postgresql12-postgresql (12.7).

Security Fix(es):

  • postgresql: Buffer overrun from integer overflow in array subscripting calculations (CVE-2021-32027)

  • postgresql: Memory disclosure in INSERT … ON CONFLICT … DO UPDATE (CVE-2021-32028)

  • postgresql: Memory disclosure in partitioned-table UPDATE … RETURNING (CVE-2021-32029)

  • postgresql: Partition constraint violation errors leak values of denied columns (CVE-2021-3393)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.