formed Corrective updates for all supported branches PostgreSQL: 14.3 , 13.7 , 12.11 , 11.16 and 10.22 . The 10.x branch is approaching the end of the time support (updates will be formed until November 2022). The release of updates for the 11.X branch will last until November 2023, 12.x – until November 2024, 13.x – until November 2025, 14.x – until November 2026.
more than 50 corrections were proposed in the new versions. And the vulnerability is eliminated cve-2022-1552 , associated with the possibility of bypassing the insulation of privileged operations Autovacuum, Reindex , Create Index, Refresh Materialized View, Cluster and Pg_amcheck. An attacker who has the authority of creating non-temporary objects in any storage scheme can achieve arbitrary SQL functions with the rights of a superpower while performing the aforementioned user of the above operations affecting the attacker. Including, the operation of vulnerability can occur when automatically cleaning the base when performing the processor autovacuum .
If it is impossible to update the problem of blocking the problem as a bypass, you can disable Autovacuum and not perform Reindex, Create Index, Refresh Materialized View and Cluster, and also not to launch the utility pg_amcheck and not restore the contents from the backup created by the PG_DUMP utility. The performance of Vacuum is recognized as safe, as well as the use of any command operations if the processed objects belong to users who deserve trust.
of other changes in new issues, you can note the update of the JIT code for working with LLVM 14, the resolution of using Database.Schema.Table templates in PSQL, PG_DUMP and PG_AMCHECK, Correction of the problems leading to damage to the GIST columns of LTREE, incorrect rounding values in the EPOCH format, extracted from data with the type of Internet, incorrect operation of the planner when using asynchronous remote queries, incorrect sorting of the line lines when using the Cluster expression over the expressions, loss of data during emergency completion immediately after constructing the sorted GIST index, mutual. blocking when removing the sectioned index, the state of the race between the Drop Tablespace operation and the CHECKPoint fixation.