安全公告详情

NS-SA-2021-0116

2021-09-24 00:30:31

简介

important: postgresql/xorg-x11-server security update

严重级别

important

主题

An update for postgresql/xorg-x11-server is now available for NewStart CGSL MAIN 5.04/CGSL CORE 5.04.
NewStart Security has rated this update as having a security impact of important. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

详细描述

postgresql: This package provides debug information for package postgresql. Debug information is useful when developing applications that use this package or when debugging this package.
xorg-x11-server: Xserver source code needed to build VNC server (Xvnc)


Security Fix(es):
postgresql: A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let authenticated database users write arbitrary bytes to a wide area of server memory. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.(CVE-2021-32027)
postgresql: bugfix
xorg-x11-server: A flaw was found in xorg-x11-server. An interger underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.(CVE-2021-3472)
xorg-x11-server: bugfix


Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 5.04.F34B4.

影响组件

  • postgresql
  • xorg-x11-server

影响产品

  • CGSL MAIN 5.04
  • CGSL CORE 5.04

更新包

{"fix":[{"product":"CGSL MAIN 5.04","pkgs":[{"binary":["postgresql-upgrade-9.2.24-7.el7_9.x86_64.rpm","postgresql-plpython-9.2.24-7.el7_9.x86_64.rpm","postgresql-debuginfo-9.2.24-7.el7_9.x86_64.rpm","postgresql-test-9.2.24-7.el7_9.x86_64.rpm","postgresql-libs-9.2.24-7.el7_9.x86_64.rpm","postgresql-docs-9.2.24-7.el7_9.x86_64.rpm","postgresql-plperl-9.2.24-7.el7_9.x86_64.rpm","postgresql-server-9.2.24-7.el7_9.x86_64.rpm","postgresql-contrib-9.2.24-7.el7_9.x86_64.rpm","postgresql-devel-9.2.24-7.el7_9.x86_64.rpm","postgresql-9.2.24-7.el7_9.x86_64.rpm","postgresql-pltcl-9.2.24-7.el7_9.x86_64.rpm","postgresql-static-9.2.24-7.el7_9.x86_64.rpm"],"source":"postgresql-9.2.24-7.el7_9.src.rpm"},{"binary":["xorg-x11-server-source-1.20.4-16.el7_9.noarch.rpm","xorg-x11-server-Xvfb-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xdmx-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-devel-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-common-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xorg-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xwayland-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-debuginfo-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xnest-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xephyr-1.20.4-16.el7_9.x86_64.rpm"],"source":"xorg-x11-server-1.20.4-16.el7_9.src.rpm"}]},{"product":"CGSL CORE 5.04","pkgs":[{"binary":["postgresql-upgrade-9.2.24-7.el7_9.x86_64.rpm","postgresql-plpython-9.2.24-7.el7_9.x86_64.rpm","postgresql-debuginfo-9.2.24-7.el7_9.x86_64.rpm","postgresql-test-9.2.24-7.el7_9.x86_64.rpm","postgresql-libs-9.2.24-7.el7_9.x86_64.rpm","postgresql-docs-9.2.24-7.el7_9.x86_64.rpm","postgresql-plperl-9.2.24-7.el7_9.x86_64.rpm","postgresql-server-9.2.24-7.el7_9.x86_64.rpm","postgresql-contrib-9.2.24-7.el7_9.x86_64.rpm","postgresql-devel-9.2.24-7.el7_9.x86_64.rpm","postgresql-9.2.24-7.el7_9.x86_64.rpm","postgresql-pltcl-9.2.24-7.el7_9.x86_64.rpm","postgresql-static-9.2.24-7.el7_9.x86_64.rpm"],"source":"postgresql-9.2.24-7.el7_9.src.rpm"},{"binary":["xorg-x11-server-source-1.20.4-16.el7_9.noarch.rpm","xorg-x11-server-Xvfb-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xdmx-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-devel-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-common-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xorg-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xwayland-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-debuginfo-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xnest-1.20.4-16.el7_9.x86_64.rpm","xorg-x11-server-Xephyr-1.20.4-16.el7_9.x86_64.rpm"],"source":"xorg-x11-server-1.20.4-16.el7_9.src.rpm"}]}]}

CVE

参考