Navigation:
Browse pkgsrc
(this page) 2024-05-10 09:45:47 by Adam Ciarcinski | Files touched by this commit (18) |  |
Log message: postgresql: updated to 16.3, 15.7, 14.12, 13.15, 12.19 PostgreSQL 16.3, 15.7, 14.12, 13.15, and 12.19 The PostgreSQL Global Development Group has released an update to all supported \ versions of PostgreSQL, including 16.3, 15.7, 14.12, 13.15, and 12.19. This \ release fixes one security vulnerability and over 55 bugs reported over the last \ several months. A security vulnerability was found in the system views pg_stats_ext and \ pg_stats_ext_exprs, potentially allowing authenticated database users to see \ data they don't have sufficient privileges to view. The fix for this \ vulnerability only fixes fresh PostgreSQL installations, namely those that are \ created with the initdb utility after this fix is applied. If you have a current \ PostgreSQL installation and are concerned about this issue, please follow the \ instructions in the "Updating" section for remediation steps. For the full list of changes, please review the release notes. |
| 2024-03-17 00:42:39 by Nia Alarie | Files touched by this commit (2) |
Log message: postgresql16: icu should be optional, for it is both heavy & unstable. |
| 2024-02-09 09:33:16 by Adam Ciarcinski | Files touched by this commit (34) | |
Log message: postgresql1*: updated to 16.2, 15.6, 14.11, 13.14, 12.18 Security Issues CVE-2024-0985: PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY \ executes arbitrary SQL Bug Fixes and Improvements This update fixes over 65 bugs that were reported in the last several months. \ The issues listed below affect PostgreSQL 16. Some of these issues may also \ affect other supported versions of PostgreSQL. Fix memory leak when performing JIT inlining that could lead to out-of-memory \ conditions. Several query planner fixes. Align MERGE behavior with UPDATE when updating a partition key column and skip \ firing AFTER UPDATE ROW trigger and other post-update actions. Fix problems with duplicate token names in ALTER TEXT SEARCH CONFIGURATION ... \ MAPPING commands. Fix DROP ROLE with duplicate role names. Properly lock the associated table during DROP STATISTICS to prevent errors if \ ANALYZE is running concurrently. Fix function volatility checking for GENERATED and DEFAULT expressions. Ensure collation matches when matching an existing index to a new partitioned index. Avoid failure if a child index is dropped concurrently with REINDEX INDEX on a \ partitioned index. Fix for locking during cleanup of GIN indexes. For this case, if multiple \ processes tried to clean the same GIN index page, there was a chance of index \ corruption. If you believe you were affected by this issue, reindex your GIN \ indexes after installing this update. Avoid failure with partitioned SP-GiST indexes. Several ownership fixes for large objects. In EXPLAIN (BUFFERS), change name of I/O timing data "shared/local" to \ "shared". Ensure durability of the CREATE DATABASE command if a system crash occurred \ during or shortly after execution. Add more logging messages when starting and ending recovery from a backup. Revert a change that made the walreceiver process unresponsive to SIGTERM while \ waiting for a replication connection to be established. Several fixes for logical replication. Fix incompatibility with OpenSSL 3.2. Fix PL/pgSQL to allow CREATE FUNCTION/CREATE PROCEDURE SQL commands that use \ SQL-standard function bodies. Fix for error handling in libpq pipeline mode. Ensure initdb always uncomments postgresql.conf entries for the lc_ family of \ parameters. In pg_dump, don't dump RLS policies or security labels for extension member objects. |
| 2023-12-20 19:38:39 by Niclas Rosenvik | Files touched by this commit (2) |
Log message: postgresql16-docs: fix installation on solaris |
| 2023-11-30 11:35:45 by Jonathan Perkin | Files touched by this commit (2) |
Log message: postgresql16: Requires mit-krb5 1.11 for gss_store_cred_into. |
| 2023-11-13 21:22:09 by Adam Ciarcinski | Files touched by this commit (70) | |
Log message: postgresql: updated to 16.1, 15.5, 14.10, 13.13, 12.17, and 11.22 Security Issues CVE-2023-5868: Memory disclosure in aggregate function calls CVE-2023-5869: Buffer overrun from integer overflow in array modification CVE-2023-5870: Role pg_signal_backend can signal certain superuser processes Bug Fixes and Improvements This update fixes over 55 bugs that were reported in the last several months. \ The issues listed below affect PostgreSQL 16. Some of these issues may also \ affect other supported versions of PostgreSQL. Fix issue where GiST indexes had an incorrect behavior during a "page \ split" operation that could lead to incorrect results in subsequent index \ searches. Please reindex GiST indexes after installing this update. Fix issue where B-tree indexes would incorrectly de-duplicate interval columns. \ Please reindex any B-tree index that includes an interval column after \ installing this update. Provide more efficient indexing of date, timestamptz, and timestamp values in \ BRIN indexes when using a minmax_multi opsclass. While not required, we \ recommend reindexing BRIN indexes that include these data types after installing \ this update. Fix for bulk table insertion into partitioned tables. Fix for hash-partitioned tables with multiple partition keys during step \ generation and runtime pruning that could lead to crashes in some cases. Throw the correct error if pgrowlocks() is applied to a partitioned table Fix inconsistent rechecking of concurrently-updated rows during MERGE when using \ READ COMMITTED mode. Correctly identify the target table in an inherited UPDATE/DELETE/MERGE even \ when the parent table is excluded by constraints. Fix over-allocation of a constructed tsvector. Fix ALTER SUBSCRIPTION to apply changes in the run_as_owner option. Several fixes for COPY FROM, Several fixes for handling torn reads with pg_control. Fix "could not find pathkey item to sort" errors occurring while \ planning aggregate functions with ORDER BY or DISTINCT options. When track_io_timing is enabled, include the time taken by relation extension \ operations as write time. Track the dependencies of cached CALL statements, and re-plan them when needed. Treat out-of-memory failures as FATAL while reading WAL. Fix pg_dump to dump the new run_as_owner option of subscriptions. Fix pg_restore so that selective restores will include both table-level and \ column-level ACLs for selected tables. Add logic to pg_upgrade to check for use of obsolete data types abstime, \ reltime, and tinterval. Fix vacuumdb to have multiple -N switches actually exclude tables in multiple \ schemas. amcheck will no longer report interrupted page deletion as corruption. Fix btree_gin indexes on interval columns to properly return data when using the \ < and <= operators. |
| 2023-11-08 14:21:43 by Thomas Klausner | Files touched by this commit (2377) |
Log message: *: recursive bump for icu 74.1 |
| 2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298) |
Log message: *: bump for openssl 3 |
| 2023-09-25 09:35:18 by Adam Ciarcinski | Files touched by this commit (1) |
Log message: postgresql16: use mit-krb5 for gssapi |
| 2023-09-20 13:39:40 by Adam Ciarcinski | Files touched by this commit (2) |
Log message: postgresql16: require ICU |
New packages: