Lucene search

K
redhatRedHatRHSA-2022:4856
HistoryJun 01, 2022 - 1:45 p.m.

(RHSA-2022:4856) Important: postgresql:12 security update

2022-06-0113:45:17
access.redhat.com
53
postgresql
autovacuum
cve-2022-1552

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

69.6%

PostgreSQL is an advanced object-relational database management system (DBMS).

The following packages have been upgraded to a later upstream version: postgresql (12.11).

Security Fix(es):

  • postgresql: Autovacuum, REINDEX, and others omit “security restricted operation” sandbox (CVE-2022-1552)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanyx86_64postgresql-plperl-debuginfo< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-plperl-debuginfo-12.11-2.module+el8.4.0+15406+aeb4ae67.x86_64.rpm
RedHatanyx86_64postgresql-pltcl-debuginfo< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-pltcl-debuginfo-12.11-2.module+el8.4.0+15406+aeb4ae67.x86_64.rpm
RedHatanys390xpostgresql-pltcl-debuginfo< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-pltcl-debuginfo-12.11-2.module+el8.4.0+15406+aeb4ae67.s390x.rpm
RedHatanyppc64lepostgresql-test< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-test-12.11-2.module+el8.4.0+15406+aeb4ae67.ppc64le.rpm
RedHatanyaarch64postgresql-docs< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-docs-12.11-2.module+el8.4.0+15406+aeb4ae67.aarch64.rpm
RedHatanyx86_64postgresql-upgrade-devel< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-upgrade-devel-12.11-2.module+el8.4.0+15406+aeb4ae67.x86_64.rpm
RedHatanyppc64lepostgresql-pltcl< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-pltcl-12.11-2.module+el8.4.0+15406+aeb4ae67.ppc64le.rpm
RedHatanys390xpostgresql-upgrade-devel< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-upgrade-devel-12.11-2.module+el8.4.0+15406+aeb4ae67.s390x.rpm
RedHatanyppc64lepostgresql-plperl< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-plperl-12.11-2.module+el8.4.0+15406+aeb4ae67.ppc64le.rpm
RedHatanyx86_64postgresql-server-devel-debuginfo< 12.11-2.module+el8.4.0+15406+aeb4ae67postgresql-server-devel-debuginfo-12.11-2.module+el8.4.0+15406+aeb4ae67.x86_64.rpm
Rows per page:
1-10 of 1211

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

69.6%