[Apollo] Advisories Statistics light light Login

RLSA-2024:5929

Security Mirrored from RHSA-2024:5929
Issued at: 2024-09-17
Updated at: 2025-10-17

Synopsis

Important: postgresql:16 security update



Description

PostgreSQL is an advanced object-relational database management system (DBMS).

Security Fix(es):

* postgresql: PostgreSQL pg_stats_ext and pg_stats_ext_exprs lack authorization checks (CVE-2024-4317)

* postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL (CVE-2024-7348)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9.6 aarch64 Rocky Linux 9.6 ppc64le Rocky Linux 9.6 s390x Rocky Linux 9.6 x86_64

Fixes

2279935 2303682

CVEs

CVE-2024-4317 CVE-2024-7348

Affected packages

Rocky Linux 9.6 aarch64 - AppStream

pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.aarch64.rpm pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.src.rpm pgaudit-debuginfo-0:16.0-1.module+el9.6.0+32421+7c015469.aarch64.rpm pgaudit-debugsource-0:16.0-1.module+el9.6.0+32421+7c015469.aarch64.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.aarch64.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.src.rpm postgres-decoderbufs-debuginfo-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.aarch64.rpm postgres-decoderbufs-debugsource-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.aarch64.rpm

Rocky Linux 9.6 ppc64le - AppStream

pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.ppc64le.rpm pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.src.rpm pgaudit-debuginfo-0:16.0-1.module+el9.6.0+32421+7c015469.ppc64le.rpm pgaudit-debugsource-0:16.0-1.module+el9.6.0+32421+7c015469.ppc64le.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.ppc64le.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.src.rpm postgres-decoderbufs-debuginfo-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.ppc64le.rpm postgres-decoderbufs-debugsource-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.ppc64le.rpm

Rocky Linux 9.6 s390x - AppStream

pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.s390x.rpm pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.src.rpm pgaudit-debuginfo-0:16.0-1.module+el9.6.0+32421+7c015469.s390x.rpm pgaudit-debugsource-0:16.0-1.module+el9.6.0+32421+7c015469.s390x.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.s390x.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.src.rpm postgres-decoderbufs-debuginfo-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.s390x.rpm postgres-decoderbufs-debugsource-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.s390x.rpm

Rocky Linux 9.6 x86_64 - AppStream

pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.src.rpm pgaudit-0:16.0-1.module+el9.6.0+32421+7c015469.x86_64.rpm pgaudit-debuginfo-0:16.0-1.module+el9.6.0+32421+7c015469.x86_64.rpm pgaudit-debugsource-0:16.0-1.module+el9.6.0+32421+7c015469.x86_64.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.src.rpm postgres-decoderbufs-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.x86_64.rpm postgres-decoderbufs-debuginfo-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.x86_64.rpm postgres-decoderbufs-debugsource-0:2.4.0-1.Final.module+el9.6.0+32421+7c015469.x86_64.rpm