AWS Security ChangesHomeSearch

AWS AmazonRDS high security documentation change

Service: AmazonRDS · 2025-04-11 · Security-related high

File: AmazonRDS/latest/PostgreSQLReleaseNotes/postgresql-versions.md

Summary

Added documentation for multiple PostgreSQL versions (17.2-R2, 16.6-R2, 16.4-R3, 15.10-R2, 15.8-R3, 14.15-R2, 14.13-R3, 13.18-R2, 13.16-R3, 12.22-R2, 12.20-R3) with security fixes addressing CVE-2022-4174 and RUSTSEC-2024-042 vulnerabilities

Security assessment

Explicit references to CVE-2022-4174 (PLV8 vulnerability) and RUSTSEC-2024-042 (Rust security advisory) indicate these changes document patches for specific security vulnerabilities across multiple PostgreSQL versions.

Diff

diff --git a/AmazonRDS/latest/PostgreSQLReleaseNotes/postgresql-versions.md b/AmazonRDS/latest/PostgreSQLReleaseNotes/postgresql-versions.md
index f3231fdba..fd19af5af 100644
--- a//AmazonRDS/latest/PostgreSQLReleaseNotes/postgresql-versions.md
+++ b//AmazonRDS/latest/PostgreSQLReleaseNotes/postgresql-versions.md
@@ -52,0 +53,2 @@ To learn more about versioning policy for RDS for PostgreSQL, see [Amazon RDS FA
+  * PostgreSQL version 17.2-R2 on Amazon RDS
+
@@ -115,0 +118,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 17.2-R2 on Amazon RDS
+
+PostgreSQL version 17.2-R2 is now available on Amazon RDS. This release contains fix for PLV8 [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 17.2](https://www.postgresql.org/docs/release/17.2/).
+
@@ -422,0 +429,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 16.6-R2 on Amazon RDS
+
@@ -426,0 +435,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 16.4-R3 on Amazon RDS
+
@@ -501,0 +512,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 16.6-R2 on Amazon RDS
+
+PostgreSQL version 16.6-R2 is now available on Amazon RDS. This release contains fix for PLV8 [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 16.6](https://www.postgresql.org/docs/release/16.6/).
+
@@ -549,0 +564,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 16.4-R3 on Amazon RDS
+
+PostgreSQL version 16.4-R3 is now available on Amazon RDS. This release contains fixes for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 16.4](https://www.postgresql.org/docs/release/16.4/).
+
@@ -997,0 +1016,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 15.10-R2 on Amazon RDS
+
@@ -1001,0 +1022,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 15.8-R3 on Amazon RDS
+
@@ -1080,0 +1103,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 15.10-R2 on Amazon RDS
+
+PostgreSQL version 15.10-R2 is now available on Amazon RDS. This release fix for PLV8 [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 15.10](https://www.postgresql.org/docs/release/15.10/).
+
@@ -1128,0 +1155,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 15.8-R3 on Amazon RDS
+
+PostgreSQL version 15.8-R3 is now available on Amazon RDS. This release contains fix for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 15.8](https://www.postgresql.org/docs/release/15.8/).
+
@@ -1619,0 +1650,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 14.15-R2 on Amazon RDS
+
@@ -1623,0 +1656,2 @@ For version information on all extensions, see [Extensions supported for RDS for
+  * PostgreSQL version 14.13-R3 on Amazon RDS
+
@@ -1712,0 +1747,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 14.15-R2 on Amazon RDS
+
+PostgreSQL version 14.15-R2 is now available on Amazon RDS. This release contains fix for PLV8 [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 14.15](https://www.postgresql.org/docs/release/14.15/).
+
@@ -1762,0 +1801,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 14.13-R3 on Amazon RDS
+
+PostgreSQL version 14.13-R3 is now available on Amazon RDS. This release contains fixes for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 14.13](https://www.postgresql.org/docs/release/14.13/).
+
@@ -2351,0 +2394,2 @@ For information on all extensions, see [Extensions supported for RDS for Postgre
+  * PostgreSQL version 13.18-R2 on Amazon RDS
+
@@ -2355,0 +2400,2 @@ For information on all extensions, see [Extensions supported for RDS for Postgre
+  * PostgreSQL version 13.16-R3 on Amazon RDS
+
@@ -2446,0 +2493,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 13.18-R2 on Amazon RDS
+
+PostgreSQL version 13.18-R2 is now available on Amazon RDS. This release contains fix for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 13.18](https://www.postgresql.org/docs/release/13.18/).
+
@@ -2494,0 +2545,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 13.16-R3 on Amazon RDS
+
+PostgreSQL version 13.16-R3 is now available on Amazon RDS. This release contains fixes for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 13.16](https://www.postgresql.org/docs/release/13.16/).
+
@@ -3085,0 +3140,2 @@ For information on all extensions, see [Extensions supported for RDS for Postgre
+  * PostgreSQL version 12.22-R2 on Amazon RDS
+
@@ -3089,0 +3146,2 @@ For information on all extensions, see [Extensions supported for RDS for Postgre
+  * PostgreSQL version 12.20-R3 on Amazon RDS
+
@@ -3146,0 +3205,4 @@ For information on all extensions, see [Extensions supported for RDS for Postgre
+### PostgreSQL version 12.22-R2 on Amazon RDS
+
+PostgreSQL version 12.22-R2 is now available on Amazon RDS. This release contains several fix for PLV8 [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) for PostgreSQL announced in [PostgreSQL 12.22](https://www.postgresql.org/docs/release/12.22/).
+
@@ -3190,0 +3253,4 @@ For version information on all extensions, see [Extensions supported for RDS for
+### PostgreSQL version 12.20-R3 on Amazon RDS
+
+PostgreSQL version 12.20-R3 is now available on Amazon RDS. This release contains fixes for [CVE-2022-4174](https://nvd.nist.gov/vuln/detail/cve-2022-4174) and Rust [CVE RUSTSEC-2024-042](https://rustsec.org/advisories/RUSTSEC-2024-0421.html) for PostgreSQL announced in [PostgreSQL 12.20](https://www.postgresql.org/docs/release/12.20/).
+