Security update for postgresql

SUSE Security Update: Security update for postgresql
Announcement ID: SUSE-SU-2019:3212-1
Rating: moderate
References: #1100397 #1123886
Affected Products:
  • SUSE Linux Enterprise Module for Server Applications 15-SP1
  • SUSE Linux Enterprise Module for Server Applications 15
  • SUSE Linux Enterprise Module for Packagehub Subpackages 15
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
  • SUSE Linux Enterprise Module for Basesystem 15-SP1
  • SUSE Linux Enterprise Module for Basesystem 15

An update that contains security fixes can now be installed.

Description:

This update for postgresql fixes the following issues:

  • Changed permissions, so that the directory can only be used by users in the postgres group (bsc#1123886).
  • Moved bash profile out of /var/lib to allow transactional updates (bsc#1100397).

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE Linux Enterprise Module for Server Applications 15-SP1:
    zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP1-2019-3212=1
  • SUSE Linux Enterprise Module for Server Applications 15:
    zypper in -t patch SUSE-SLE-Module-Server-Applications-15-2019-3212=1
  • SUSE Linux Enterprise Module for Packagehub Subpackages 15:
    zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-2019-3212=1
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:
    zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-3212=1
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15:
    zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2019-3212=1
  • SUSE Linux Enterprise Module for Basesystem 15-SP1:
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2019-3212=1
  • SUSE Linux Enterprise Module for Basesystem 15:
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-2019-3212=1

Package List:

  • SUSE Linux Enterprise Module for Server Applications 15-SP1 (noarch):
    • postgresql-contrib-10-8.3.1
    • postgresql-devel-10-8.3.1
    • postgresql-docs-10-8.3.1
    • postgresql-plperl-10-8.3.1
    • postgresql-plpython-10-8.3.1
    • postgresql-pltcl-10-8.3.1
    • postgresql-server-10-8.3.1
  • SUSE Linux Enterprise Module for Server Applications 15 (noarch):
    • postgresql-contrib-10-8.3.1
    • postgresql-devel-10-8.3.1
    • postgresql-docs-10-8.3.1
    • postgresql-plperl-10-8.3.1
    • postgresql-plpython-10-8.3.1
    • postgresql-pltcl-10-8.3.1
    • postgresql-server-10-8.3.1
  • SUSE Linux Enterprise Module for Packagehub Subpackages 15 (noarch):
    • postgresql-test-10-8.3.1
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (noarch):
    • postgresql-test-10-8.3.1
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (noarch):
    • postgresql-test-10-8.3.1
  • SUSE Linux Enterprise Module for Basesystem 15-SP1 (noarch):
    • postgresql-10-8.3.1
  • SUSE Linux Enterprise Module for Basesystem 15 (noarch):
    • postgresql-10-8.3.1

References: