SUSE-CU-2024:2079-1: Security update of suse/postgres

[sle-container-updates at lists.suse.com]

SUSE Container Update Advisory: suse/postgres
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:2079-1
Container Tags        : suse/postgres:15 , suse/postgres:15-19.3 , suse/postgres:15.6 , suse/postgres:15.6-19.3
Container Release     : 19.3
Severity              : moderate
Type                  : security
References            : 1224038 1224051 CVE-2024-4317 
-----------------------------------------------------------------

The container suse/postgres was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:1652-1
Released:    Wed May 15 09:18:14 2024
Summary:     Security update for postgresql16
Type:        security
Severity:    moderate
References:  1224038,1224051,CVE-2024-4317
This update for postgresql16 fixes the following issues:

PostgreSQL upgrade to version 16.3 (bsc#1224051):

- CVE-2024-4317: Fixed visibility restriction of pg_stats_ext and pg_stats_ext_exprs entries to the table owner (bsc#1224038).

Bug fixes:

- Fix incompatibility with LLVM 18.
- Prepare for PostgreSQL 17.
- Make sure all compilation and doc generation happens in %build.
- Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work.
- Remove constraints file because improved memory usage for s390x
- Use %patch -P N instead of deprecated %patchN.

Release notes:

- https://www.postgresql.org/docs/release/16.3/


The following package changes have been done:

- libpq5-16.3-150200.5.13.1 updated
- container:sles15-image-15.0.0-36.11.32 updated