Overview

File _patchinfo of Package patchinfo.21768

<patchinfo incident="21768">
  <issue tracker="bnc" id="1192516">VUL-0: postgresql12,postgresql13,postgresql14: 2 November 2021 security issues</issue>
  <issue tracker="cve" id="2021-23222"/>
  <issue tracker="cve" id="2021-23214"/>
  <issue tracker="jsc" id="SLE-22673"/>
  <packager>rmax</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for postgresql, postgresql13, postgresql14 </summary>
  <description>This update for postgresql, postgresql13 and postgresql14 fixes the following issues:

Security issues fixed:

- CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).
- CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516).

This update also ships postgresql14 to SUSE Linux Enterprise 12 SP5. (jsc#SLE-22673)
On older service packs only libpq5 and libecpg6 are being replaced by the postgresql14 variants.

Feature changes in postgresql14:

- https://www.postgresql.org/about/news/postgresql-14-released-2318/
- https://www.postgresql.org/docs/14/release-14.html

</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places