RHSA-2024:0992: Important: rh-postgresql10-postgresql security update
First published: Mon Feb 26 2024(Updated: )
Important: rh-postgresql10-postgresql security update
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/rh-postgresql10-postgresql | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-debuginfo | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-devel | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-docs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-libs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plperl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plpython | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-pltcl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-static | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-test | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-debuginfo | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-devel | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-docs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-libs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plperl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plpython | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-pltcl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-static | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-test | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-contrib-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-debuginfo | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-devel | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-docs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-libs | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plperl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-plpython | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-pltcl | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-server-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-static | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-syspaths | <10.23-3.el7 | 10.23-3.el7 |
| redhat/rh-postgresql10-postgresql-test | <10.23-3.el7 | 10.23-3.el7 |
| Red Hat Software Collection | ||
| Red Hat Software Collection | ||
| Red Hat Software Collections | ||
| Red Hat Software Collection |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of RHSA-2024:0992?
The severity of RHSA-2024:0992 is classified as important.
How do I fix RHSA-2024:0992?
You can fix RHSA-2024:0992 by updating the affected rh-postgresql10-postgresql package to version 10.23-3.el7 or later.
What vulnerabilities are addressed in RHSA-2024:0992?
RHSA-2024:0992 addresses the vulnerability CVE-2024-0985 related to non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executing arbitrary SQL.
Which software packages are affected by RHSA-2024:0992?
The affected packages in RHSA-2024:0992 include rh-postgresql10-postgresql, rh-postgresql10-postgresql-contrib, and other related packages up to version 10.23-3.el7.
What is CVE-2024-0985 in relation to RHSA-2024:0992?
CVE-2024-0985 is a vulnerability fixed in RHSA-2024:0992, which allows non-owners to execute arbitrary SQL using 'REFRESH MATERIALIZED VIEW CONCURRENTLY'.
- agent/severity
- agent/type
- agent/references
- agent/remedy
- agent/title
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2024:0992
- agent/software-canonical-lookup
- agent/source
- agent/softwarecombine
- agent/tags
- agent/event
- collector/redhat-errata-latest
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/red hat
- canonical/red hat software collection
- canonical/red hat software collections