-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-cdeabe1bc0 2022-10-05 01:03:41.175064 --------------------------------------------------------------------------------
Name : postgresql-jdbc Product : Fedora 35 Version : 42.2.26 Release : 1.fc35 URL : http://jdbc.postgresql.org/ Summary : JDBC driver for PostgreSQL Description : PostgreSQL is an advanced Object-Relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2022-31197. -------------------------------------------------------------------------------- ChangeLog:
* Mon Sep 26 2022 Zuzana Miklankova zmiklank@redhat.com - 42.2.26-1 - rebase to version 42.2.26 - includes fix for CVE-2022-31197 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2129428 - CVE-2022-31197 postgresql: SQL Injection in ResultSet.refreshRow() with malicious column names https://bugzilla.redhat.com/show_bug.cgi?id=2129428 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-cdeabe1bc0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------