CVE-2022-2625

18.08.2022, 19:15

A vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, the ability to lure or wait for an administrator to create or update an affected extension in that schema, and the ability to lure or wait for a victim to use the object targeted in CREATE OR REPLACE or CREATE IF NOT EXISTS. Given all three prerequisites, this flaw allows an attacker to run arbitrary code as the victim role, which may be a superuser.

Prototype Pollution

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 77%

Affected Products (NVD)

Vendor	Product	Version
postgresql	postgresql	10.0 ≤ 𝑥 < 10.22
postgresql	postgresql	11.0 ≤ 𝑥 < 11.17
postgresql	postgresql	12.0 ≤ 𝑥 < 12.12
postgresql	postgresql	13.0 ≤ 𝑥 < 13.8
postgresql	postgresql	14.0 ≤ 𝑥 < 14.5
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux	9.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

postgresql-13

bullseye	13.16-0+deb11u1 fixed
bullseye (security)	13.16-0+deb11u1 fixed

Ubuntu Releases

Ubuntu Product

Codename

postgresql-10

bionic	Fixed 10.22-0ubuntu0.18.04.1 released
focal	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

postgresql-12

bionic	dne
focal	Fixed 12.12-0ubuntu0.20.04.1 released
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

postgresql-13

bionic	dne
focal	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

postgresql-14

bionic	dne
focal	dne
jammy	Fixed 14.5-0ubuntu0.22.04.1 released
kinetic	not-affected
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

postgresql-9.1

bionic	dne
focal	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

postgresql-9.3

bionic	dne
focal	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	deferred
xenial	dne

postgresql-9.5

bionic	dne
focal	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	ignored

openSUSE / SLES Releases

openSUSE Product

Release

libecpg6

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP2	14.5-3.14.9 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP4	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed

libecpg6-32bit

suse enterprise server 12 SP3

14.5-3.14.9

fixed

libpq5

suse enterprise desktop 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise desktop 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP2	14.5-3.14.9 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP4	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed

libpq5-32bit

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise server 12 SP2	14.5-3.14.9 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP4	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed

postgresql

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-contrib

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-contrib-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-devel

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-devel-14

suse enterprise server 12 SP3

4.17.2

fixed

postgresql-docs

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-docs-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-plperl

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-plperl-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-plpython

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-plpython-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-pltcl

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-pltcl-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-server

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-server-14

suse enterprise sap 12 SP5	4.17.2 fixed
suse enterprise server 12 SP2	4.17.2 fixed
suse enterprise server 12 SP3	4.17.2 fixed
suse enterprise server 12 SP4	4.17.2 fixed
suse enterprise server 12 SP5	4.17.2 fixed

postgresql-server-devel

suse enterprise server 15	12.0.1-150000.8.19.1 fixed
suse enterprise server 15 SP1	12.0.1-150000.8.19.1 fixed

postgresql-server-devel-14

suse enterprise server 12 SP3

4.17.2

fixed

postgresql10

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-contrib

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-devel

suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-docs

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed

postgresql10-plperl

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-plpython

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-pltcl

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql10-server

suse enterprise sap 12 SP5	10.22-4.31.1 fixed
suse enterprise sap 15 SP3	10.22-150100.8.50.1 fixed
suse enterprise server 12 SP2	10.22-4.31.1 fixed
suse enterprise server 12 SP3	10.22-4.31.1 fixed
suse enterprise server 12 SP4	10.22-4.31.1 fixed
suse enterprise server 12 SP5	10.22-4.31.1 fixed
suse enterprise server 15	10.22-150000.4.42.1 fixed
suse enterprise server 15 SP1	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP2	10.22-150100.8.50.1 fixed
suse enterprise server 15 SP3	10.22-150100.8.50.1 fixed

postgresql12

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-contrib

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-devel

suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-docs

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-llvmjit-devel

suse enterprise server 12 SP3

12.12-3.30.2

fixed

postgresql12-plperl

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-plpython

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-pltcl

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-server

suse enterprise sap 12 SP5	12.12-3.30.2 fixed
suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 12 SP5	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql12-server-devel

suse enterprise sap 15 SP3	12.12-150200.8.35.1 fixed
suse enterprise server 12 SP3	12.12-3.30.2 fixed
suse enterprise server 15 SP1	12.12-150100.3.33.1 fixed
suse enterprise server 15 SP2	12.12-150200.8.35.1 fixed
suse enterprise server 15 SP3	12.12-150200.8.35.1 fixed

postgresql13

suse enterprise desktop 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-contrib

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-devel

suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-docs

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-llvmjit

suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-llvmjit-devel

suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-plperl

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-plpython

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-pltcl

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-server

suse enterprise sap 12 SP5	13.8-3.24.1 fixed
suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 12 SP3	13.8-3.24.1 fixed
suse enterprise server 12 SP5	13.8-3.24.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql13-server-devel

suse enterprise sap 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise sap 15 SP4	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP2	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP3	13.8-150200.5.31.1 fixed
suse enterprise server 15 SP4	13.8-150200.5.31.1 fixed

postgresql14

suse enterprise desktop 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise desktop 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-contrib

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-devel

suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-docs

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-llvmjit

suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-llvmjit-devel

suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-plperl

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-plpython

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-pltcl

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-server

suse enterprise sap 12 SP5	14.5-3.14.9 fixed
suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 12 SP5	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

postgresql14-server-devel

suse enterprise sap 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise sap 15 SP5	14.5-150200.5.17.1 fixed
suse enterprise server 12 SP3	14.5-3.14.9 fixed
suse enterprise server 15 SP2	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP3	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP4	14.5-150200.5.17.1 fixed
suse enterprise server 15 SP5	14.5-150200.5.17.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

postgresql

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-contrib

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-docs

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-plperl

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-plpython3

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-pltcl

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-private-devel

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-private-libs

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-server

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-server-devel

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-static

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-test

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-upgrade

RHEL 9

0:13.10-1.el9_1

fixed

postgresql-upgrade-devel

RHEL 9

0:13.10-1.el9_1

fixed

Common Weakness Enumeration

References

https://bugzilla.redhat.com/show_bug.cgi?id=2113825

https://security.gentoo.org/glsa/202211-04

https://www.postgresql.org/about/news/postgresql-145-138-1212-1117-1022-and-15-beta-3-released-2496/

https://bugzilla.redhat.com/show_bug.cgi?id=2113825

https://security.gentoo.org/glsa/202211-04

https://www.postgresql.org/about/news/postgresql-145-138-1212-1117-1022-and-15-beta-3-released-2496/