RHSA-2021:1512: Red Hat Security Advisory: postgresql security update

An update for postgresql is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es):

• postgresql: Reconnection can downgrade connection security settings (CVE-2020-25694)
• postgresql: Multiple features escape “security restricted operation” sandbox (CVE-2020-25695)
• postgresql: TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution (CVE-2019-10208) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Related CVEs:
• CVE-2019-10208: postgresql: TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution
• CVE-2020-25694: postgresql: Reconnection can downgrade connection security settings
• CVE-2020-25695: postgresql: Multiple features escape “security restricted operation” sandbox