USN-4735-1: PostgreSQL vulnerability
15 February 2021
PostgreSQL could be made to expose sensitive information.
- postgresql-12 - Object-relational SQL database
Heikki Linnakangas discovered that PostgreSQL incorrectly leaked values of
denied columns when handling certain errors. A remote attacker could
possibly use this issue to obtain sensitive information.
The problem can be corrected by updating your system to the following package versions:
This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart PostgreSQL to
make all the necessary changes.