Issued at: 2024-03-12
Updated at: 2025-07-29
Synopsis
Important: postgresql:15 security update
Description
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL (CVE-2024-0985)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected products
Rocky Linux 9 aarch64
Rocky Linux 9 s390x
Fixes
2263384
CVEs
CVE-2024-0985
Affected packages
Rocky Linux 9 aarch64 - AppStream
pgaudit-0:1.7.0-1.module+el9.5.0+30637+4391fcca.aarch64.rpm
pgaudit-0:1.7.0-1.module+el9.5.0+30637+4391fcca.src.rpm
pgaudit-debuginfo-0:1.7.0-1.module+el9.5.0+30637+4391fcca.aarch64.rpm
pgaudit-debugsource-0:1.7.0-1.module+el9.5.0+30637+4391fcca.aarch64.rpm
postgres-decoderbufs-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.aarch64.rpm
postgres-decoderbufs-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.src.rpm
postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.aarch64.rpm
postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.aarch64.rpm
Rocky Linux 9 s390x - AppStream
pgaudit-0:1.7.0-1.module+el9.5.0+30637+4391fcca.s390x.rpm
pgaudit-0:1.7.0-1.module+el9.5.0+30637+4391fcca.src.rpm
pgaudit-debuginfo-0:1.7.0-1.module+el9.5.0+30637+4391fcca.s390x.rpm
pgaudit-debugsource-0:1.7.0-1.module+el9.5.0+30637+4391fcca.s390x.rpm
postgres-decoderbufs-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.s390x.rpm
postgres-decoderbufs-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.src.rpm
postgres-decoderbufs-debuginfo-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.s390x.rpm
postgres-decoderbufs-debugsource-0:1.9.7-1.Final.module+el9.5.0+30637+4391fcca.s390x.rpm