diff options
| author | Palle Girgensohn <girgen@FreeBSD.org> | 2016-02-13 22:42:04 +0000 |
|---|---|---|
| committer | Palle Girgensohn <girgen@FreeBSD.org> | 2016-02-13 22:42:04 +0000 |
| commit | 70a06c4f2e2e669f6795dcec5165c0ea83f94e3b (patch) | |
| tree | 00d65e3218fc6fda830c36cef21e94dd1668bfc9 /databases/postgresql92-server/files | |
| parent | 5e11290bff4f6edb290419dc3328ffce36ed3acf (diff) | |
Update PostgreSQL to latest versions.
Security Fixes for Regular Expressions, PL/Java
This release closes security hole CVE-2016-0773, an issue with regular
expression (regex) parsing. Prior code allowed users to pass in expressions
which included out-of-range Unicode characters, triggering a backend crash.
This issue is critical for PostgreSQL systems with untrusted users or which
generate regexes based on user input.
The update also fixes CVE-2016-0766, a privilege escalation issue for users of
PL/Java. Certain custom configuration settings (GUCS) for PL/Java will now be
modifiable only by the database superuser
URL: http://www.postgresql.org/about/news/1644/
Security: CVE-2016-0773, CVE-2016-0766
Notes
Notes:
svn path=/head/; revision=408835
Diffstat (limited to 'databases/postgresql92-server/files')
| -rw-r--r-- | databases/postgresql92-server/files/502.pgsql.in | 21 |
1 files changed, 11 insertions, 10 deletions
diff --git a/databases/postgresql92-server/files/502.pgsql.in b/databases/postgresql92-server/files/502.pgsql.in index e92f01f992cd..2246de33f70d 100644 --- a/databases/postgresql92-server/files/502.pgsql.in +++ b/databases/postgresql92-server/files/502.pgsql.in @@ -1,6 +1,6 @@ #!/bin/sh # -# $FreeBSD: /tmp/pcvs/ports/databases/postgresql92-server/files/502.pgsql.in,v 1.4 2011-10-18 09:03:32 girgen Exp $ +# $FreeBSD$ # # Maintenance shell script to vacuum and backup database # Put this in /usr/local/etc/periodic/daily, and it will be run @@ -19,14 +19,6 @@ # daily_pgsql_backup_enable="foo bar db1 db2" # only do backup of a limited selection of databases # daily_pgsql_vacuum_enable="YES" # do vacuum -daily_pgsql_user=%%PG_USER%% -daily_pgsql_vacuum_args="-U ${daily_pgsql_user} -qaz" -daily_pgsql_pgdump_args="-U ${daily_pgsql_user} -bF c" -daily_pgsql_pgdumpall_globals_args="-U ${daily_pgsql_user}" -# backupdir is relative to ~pgsql home directory unless it begins with a slash: -daily_pgsql_backupdir="~${daily_pgsql_user}/backups" -daily_pgsql_savedays="7" - # If there is a global system configuration file, suck it in. # if [ -r /etc/defaults/periodic.conf ] @@ -35,6 +27,15 @@ then source_periodic_confs fi +: ${daily_pgsql_user:="%%PG_USER%%"} +: ${daily_pgsql_port:=5432} +: ${daily_pgsql_vacuum_args:="-U ${daily_pgsql_user} -p ${daily_pgsql_port} -qaz"} +: ${daily_pgsql_pgdump_args:="-U ${daily_pgsql_user} -p ${daily_pgsql_port} -bF c"} +: ${daily_pgsql_pgdumpall_globals_args:="-U ${daily_pgsql_user} -p ${daily_pgsql_port}"} +# backupdir is relative to ~pgsql home directory unless it begins with a slash: +: ${daily_pgsql_backupdir:="~${daily_pgsql_user}/backups"} +: ${daily_pgsql_savedays:="7"} + # allow '~´ in dir name eval backupdir=${daily_pgsql_backupdir} @@ -82,7 +83,7 @@ pgsql_backup() { case "$daily_pgsql_backup_enable" in [Yy][Ee][Ss]) - dbnames=`su -l %%PG_USER%% -c "umask 077; psql -q -t -A -d template1 -U %%PG_USER%% -c SELECT\ datname\ FROM\ pg_database\ WHERE\ datname!=\'template0\'"` + dbnames=`su -l ${daily_pgsql_user} -c "umask 077; psql -U ${daily_pgsql_user} -p ${daily_pgsql_port} -q -t -A -d template1 -c SELECT\ datname\ FROM\ pg_database\ WHERE\ datname!=\'template0\'"` pgsql_backup $dbnames ;; |