Advisories » MGASA-2023-0064

Updated postgresql packages fix security vulnerability

Publication date: 27 Feb 2023
Modification date: 27 Feb 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-41862

Description

Client memory disclosure when connecting, with Kerberos, to modified
server. (CVE-2022-41862)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=31531
• https://www.postgresql.org/about/news/postgresql-152-147-1310-1214-and-1119-released-2592/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41862

SRPMS

8/core

• postgresql11-11.19-1.mga8
• postgresql13-13.10-1.mga8