SUSE-SU-2019:1511-1

Source
https://www.suse.com/support/update/announcement/2019/suse-su-20191511-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:1511-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2019:1511-1
Related
Published
2019-06-14T14:19:53Z
Modified
2019-06-14T14:19:53Z
Summary
Security update for postgresql10
Details

This update for postgresql10 fixes the following issues:

Security issue fixed:

  • CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators (bsc#1134689).

Bug fixes:

  • For a complete list of fixes check the release notes.
    • https://www.postgresql.org/docs/10/release-10-8.html
    • https://www.postgresql.org/docs/10/release-10-7.html
References

Affected packages

SUSE:Linux Enterprise Desktop 12 SP3 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "libecpg6": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP3 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "libecpg6": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP4 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "libecpg6": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP4 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "libecpg6": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP3 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-devel": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP4 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-devel": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP3 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP3 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP4 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP4 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP4 / postgresql10

Package

Name
postgresql10
Purl
purl:rpm/suse/postgresql10&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP4 / postgresql10-libs

Package

Name
postgresql10-libs
Purl
purl:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.8-1.9.1

Ecosystem specific

{
    "binaries": [
        {
            "postgresql10-docs": "10.8-1.9.1",
            "postgresql10-plperl": "10.8-1.9.1",
            "libecpg6": "10.8-1.9.1",
            "libpq5-32bit": "10.8-1.9.1",
            "postgresql10-pltcl": "10.8-1.9.1",
            "postgresql10-contrib": "10.8-1.9.1",
            "postgresql10-server": "10.8-1.9.1",
            "libpq5": "10.8-1.9.1",
            "postgresql10": "10.8-1.9.1",
            "postgresql10-plpython": "10.8-1.9.1"
        }
    ]
}