SUSE-SU-2017:2356-1 -- SLES postgresql96, libecpg6, libpq5ID: oval:org.secpod.oval:def:89044850 | Date: (C)2021-07-20 (M)2023-05-24 |
Class: PATCH | Family: unix |
This update for postgresql96 fixes the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. * CVE-2017-7548: lo_put function ignores ACLs. The changelog for this release is here: https://www.postgresql.org/docs/9.6/static/release-9-6-4.html
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
postgresql96 |
libecpg6 |
libpq5 |