| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PostgreSQL 16.3, 15.7, 14.12, 13.15, and 12.19 Released!
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 16.3, 15.7, 14.12, 13.15,
and 12.19. This release fixes one security vulnerability and over 55
bugs reported over the last several months.
Please note that the fix in this release for CVE-2024-4317 only fixes
fresh PostgreSQL installations, namely those that are created with the
initdb utility after this fix is applied. If you have a current
PostgreSQL installation and are concerned about this issue, please
follow the additional updating instructions provided in the
CVE-2024-4317 description or the release notes for the remediation. [1]
The script is installed as /usr/local/share/postgresql/fix-CVE-2024-4317.sql
PostgreSQL 12 will stop receiving fixes on November 14, 2024. If you are
running PostgreSQL 12 in a production environment, we suggest that you
make plans to upgrade to a newer, supported version of PostgreSQL.
Please see our versioning policy for more information.
[1]: https://www.postgresql.org/support/security/CVE-2024-4317/
Security: d53c30c1-0d7b-11ef-ba02-6cc21735f730
PR: 277428 (remove unneded patch)
PR: 260494 (remove deprecated INTDATE option)
PR: 265860 (correct path for contrib README file in pkg-message)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 16.2, 15.6, 14.11, 13.14,
and 12.18. This release fixes one security vulnerability and over 65
bugs reported over the last several months.
If you use GIN indexes, you may need to reindex after updating to this
release. Please see the release notes for more information.
URL: https://www.postgresql.org/about/news/postgresql-162-156-1411-1314-and-1218-released-2807/
Release notes: https://www.postgresql.org/docs/release/
Security: 19e6dd1b-c6a5-11ee-9cd0-6cc21735f730
|
| |
|
|
| |
Approved by: portmgr (blanket)
|
| |
|
|
| |
Submitted by: John W. O'Brien
|
| |
|
|
|
|
|
|
| |
If postgresql_login_class is not set, honour the setting in /etc/passwd.
The previous commit ignored the passwd setting and set the login class
to "default" if it was left unset.
PR: 275851
|
| |
|
|
| |
PR: 275851 (submitted by takeda at takeda.tk)
|
| |
|
|
|
|
|
|
| |
Changes: https://github.com/unicode-org/icu/releases/tag/release-74-1
Reported by: GitHub (watch releases)
PR: 274317
Exp-run by: antoine (incomplete)
Approved by: fluffy
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PostgreSQL 16.1, 15.5, 14.10, 13.13, 12.17, and 11.22 Released!
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 16.1, 15.5, 14.10, 13.13,
12.17, and 11.22 This release fixes three security vulnerabilities and
over 55 bugs reported over the last several months.
Release notes: https://www.postgresql.org/about/news/postgresql-161-155-1410-1313-1217-and-1122-released-2749/
Security: CVE-2023-5868, CVE-2023-5869, CVE-2023-5870
Security: 31f45d06-7f0e-11ee-94b4-6cc21735f730
Security: 0f445859-7f0e-11ee-94b4-6cc21735f730
Security: bbb18fcb-7f0d-11ee-94b4-6cc21735f730
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PostgreSQL 15.4, 14.9, 13.12, 12.16, 11.21, and PostgreSQL 16 Beta 3
Released.
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 15.4, 14.9, 13.12, 12.16,
and 11.21, as well as the third beta release of PostgreSQL 16. This
release fixes two security vulnerabilities and over 40 bugs reported
over the last several months.
If you use BRIN indexes to look up NULL values, you will need to reindex
them after upgrading to this release. On PostgreSQL 12 and above, you
can use REINDEX CONCURRENTLY to avoid blocking writes to the affected
index and table, for example:
REINDEX INDEX CONCURRENTLY your_index_name;
Also, remove the patch for postgresql.conf.sample suggesting to turn off
update_process_title [1], since it is no longer a problem.
Release notes: https://www.postgresql.org/about/news/postgresql-154-149-1312-1216-1121-and-postgresql-16-beta-3-released-2689/
[1]: https://commitfest.postgresql.org/19/1715/
|
| |
|
|
|
| |
URL: https://www.postgresql.org/about/news/postgresql-16-beta-1-released-2643/
Release notes: https://www.postgresql.org/docs/16/release-16.html
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 15.3, 14.8, 13.11, 12.15,
and 11.20. This release fixes two security vulnerabilities over 80 bugs
reported over the last several months.
CVE-2023-2454: CREATE SCHEMA ... schema_element defeats protective search_path changes.
This enabled an attacker having database-level CREATE privilege to
execute arbitrary code as the bootstrap superuser. Database owners have
that right by default, and explicit grants may extend it to other users.
CVE-2023-2455: Row security policies disregard user ID changes after inlining.
While CVE-2016-2193 fixed most interaction between row security and user
ID changes, it missed a scenario involving function inlining. This leads
to potentially incorrect policies being applied in cases where
role-specific policies are used and a given query is planned under one
role and then executed under other roles. This scenario can happen under
security definer functions or when a common user and query is planned
initially and then re-used across multiple SET ROLEs. Applying an
incorrect policy may permit a user to complete otherwise-forbidden reads
and modifications. This affects only databases that have used CREATE
POLICY to define a row security policy.
Security: fbb5a260-f00f-11ed-bbae-6cc21735f730
Security: 4b636f50-f011-11ed-bbae-6cc21735f730
Release-notes: https://www.postgresql.org/docs/release/
|
| |
|
|
|
|
|
|
|
| |
- Temporarily switch to GitHub auto archive (release artifacts are N/A atm)
Changes: https://github.com/unicode-org/icu/releases/tag/release-73-1
Reported by: GitHub (watch releases)
PR: 270422
Exp-run by: antoine
|
| |
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 15.2, 14.7, 13.10, 12.14,
and 11.19. This release closes one security vulnerability and fixes over
60 bugs reported over the last several months.
Release notes: https://www.postgresql.org/docs/release/
Security: CVE-2022-41862: Client memory disclosure when
connecting, with Kerberos, to modified server.
|
| |
|
|
|
|
|
|
|
|
|
| |
PostgreSQL server may use late-mounted filesystems, so require these
in rc.d scripts. Real life example is when /tmp is late-mounted tmpfs
atop of ZFS, and if posgresql-server starts before mountlate, its
socket which resides on /tmp is hidden under tmpfs which is mounted
afterwards.
PR: 267500
Approved by: maintainer timeout (pgsql, 2 weeks)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PostgreSQL 15.1, 14.6, 13.9, 12.13, 11.18, and 10.23 Released!
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 15.1, 14.6, 13.9, 12.13,
11.18, and 10.23. This release fixes 25 bugs reported over the last
several months.
This is the final release of PostgreSQL 10. PostgreSQL 10 will no longer
receive security and bug fixes. If you are running PostgreSQL 10 in a
production environment, we suggest that you make plans to upgrade.
Release notes: https://www.postgresql.org/docs/release/
|
| |
|
|
|
|
|
| |
Changes: https://github.com/unicode-org/icu/releases/tag/release-72-1
Reported by: GitHub (watch releases)
PR: 266582
Exp-run by: antoine
|
| |
|
|
|
|
| |
Previous fix was incomplete and plain wrong. Fix properly.
Noted by: sunpoet@
|
| |
|
|
| |
Noted by: sunpoet@
|
| |
|
|
|
|
|
| |
Convert to ASCII and trim EOL whitespace. The scripts are now identical
across all PostgreSQL server versions we have in the ports.
Verified by: cksum(1)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Many of the WWW are overwritten later which means the wrong value
is used. This did not happen before where the children were either
a) just using the pkg-descr from the parents
b) or had their own separate pkg-descr with custom WWW
Use WWW?= in parents when the child's WWW is different.
Children that use the same WWW as the parent can just inherit it,
i.e., the child WWW can be removed.
Approved by: portmgr (implicit)
|
| |
|
|
|
|
|
|
|
|
| |
Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.
This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.
Approved by: portmgr (tcberner)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
This commit implements such a proposal and moves one of the WWW: entries
of each pkg-descr file into the respective port's Makefile. A heuristic
attempts to identify the most relevant URL in case there is more than
one WWW: entry in some pkg-descr file. URLs that are not moved into the
Makefile are prefixed with "See also:" instead of "WWW:" in the pkg-descr
files in order to preserve them.
There are 1256 ports that had no WWW: entries in pkg-descr files. These
ports will not be touched in this commit.
The portlint port has been adjusted to expect a WWW entry in each port
Makefile, and to flag any remaining "WWW:" lines in pkg-descr files as
deprecated.
Approved by: portmgr (tcberner)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 14.5, 13.8, 12.12, 11.17,
and 10.22, as well as the third beta release of PostgreSQL 15. This
release closes one security vulnerability and fixes over 40 bugs
reported over the last three months.
PostgreSQL 10 will stop receiving fixes on November 10, 2022. If you are
running PostgreSQL 10 in a production environment, we strongly advise
that you make plans to upgrade to a newer, supported version of
PostgreSQL so you can continue to receive bug and security fixes.
Security: CVE-2022-2625
Release notes: https://www.postgresql.org/about/news/postgresql-145-138-1212-1117-1022-and-15-beta-3-released-2496/
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A big Thank You to the original contributors of these ports:
* "Choe, Cheng-Dae" whitekid
* "Mahdi Mokhtari <mokhi64@gmail.com>"
* "Meikel Brandmeyer" <ocaml-sqlite3-port@kotka.de>
* <hvo.pm@xs4all.nl>
* <jsmith@resonatingmedia.com>
* <ports@c0decafe.net>
* Aaron Dalton <aaron@FreeBSD.org>
* Adam Weinberger <adamw@FreeBSD.org>
* Ade Lovett <ade@FreeBSD.org>
* Akinori MUSHA aka knu <knu@idaemons.org>
* Alan Snelson <Alan@Wave2.org>
* Aldis Berjoza <graudeejs@gmail.com>
* Alessando Sagratini <ale_sagra@hotmail.com>
* Alex Dupre <ale@FreeBSD.org>
* Alex Samorukov <samm@freebsd.org>
* Alexander Logvinov <ports@logvinov,com>
* Alexander Logvinov <ports@logvinov.com>
* Alexander Nedotsukov <bland@FreeBSD.org>
* Alexander Novitsky
* Alexander Zhuravlev <zaa@zaa.pp.ru>
* Alexey Degtyarev <alexey@renatasystems.org>
* Alexey Dokuchaev <danfe@FreeBSD.org>
* Anders Nordby <anders@fix.no>
* Andrei Antoukh <niwi@niwi.be>
* Andrew McNaughton <andrew@scoop.co.nz>
* Andrew Pantyukhin <infofarmer@FreeBSD.org>
* Andrey Kostenko <andrey@kostenko.name>
* Andrey Simonenko
* Andrey Zakhvatov
* Anes Mukhametov <anes@anes.su>
* Anton Berezin <tobez@FreeBSD.org>
* Anton Berezin <tobez@tobez.org>
* Antonio Carlos Venancio Junior (<antonio@inf.ufsc.br>)
* Antonio Carlos Venancio Junior (<antonio@php.net>)
* Autrijus Tang <autrijus@autrijus.org>
* Babak Farrokhi <farrokhi@FreeBSD.org>
* Bartek Rutkowski <r@robakdesign.com>
* Bernard Spil <brnrd@FreeBSD.org>
* Brent J. Nordquist <bjn@visi.com>
* Cezary Morga <cm@therek.net>
* Cheng-Lung Sung <clsung@FreeBSD.org>
* Choe, Cheng-Dae
* Chris D. Faulhaber <jedgar@FreeBSD.org>
* Chris Larsen <darth@vader.dk>
* Damian Gerow <dgerow@afflictions.org>
* Daniel O'Connor
* Daniel Wijnands <daniel@itxl.nl>
* Dave Green <dg@fastmail.co.uk>
* David Thiel <lx@FreeBSD.org>
* Davíð Steinn Geirsson <david@isnic.is>
* Denis Generalov <gd.workbox@gmail.com>
* Denis Generalov <gd@rambler-co.ru>
* Denis Shaposhnikov <dsh@bamus.cz>
* Dermot Tynan <dtynan@kalopa.com>
* Dmitry Liakh <dliakh@ukr.net>
* Dmitry Sivachenko <demon@FreeBSD.org>
* Dmitry Sivachenko <dima@Chg.RU>
* Dmitry Sivachenko <mitya@yandex-team.ru>
* Domas Mituzas <midom@dammit.lt>
* Dominic Mitchell
* Don Owens <don@regexguy.com>
* Dryice Dong Liu <dryice@dryice.name>
* Edwin Groothuis (edwin@mavetju.org)
* Eric Freeman <freebsdports@chillibear.com>
* Espen Tagestad <espen@tagestad.no>
* Espen Volden aka voldern <voldern@hoeggen.net>
* Evan Sarmiento <bsdports@wayfair.com>
* Fernan Aguero <fernan@iib.unsam.edu.ar>
* Frank Wall <fw@moov.de>
* Ganbold Tsagaankhuu <ganbold@FreeBSD.org>
* Gary Palmer <gpalmer@FreeBSD.org>
* Gea-Suan Lin <gslin@gslin.org>
* Geraud CONTINSOUZAS <geraud@gcu.info>
* Gerrit Beine <tux@pinguru.net>
* Greg Larkin <glarkin@FreeBSD.org>
* Grzegorz Blach <gblach@FreeBSD.org>
* Hansjoerg Pehofer <hansjoerg.pehofer@uibk.ac.at>
* Henk van Oers <hvo.pm@xs4all.nl>
* Henrik Hodne <henrik@hodne.io>
* Hiroyuki Hanai <hanai@FreeBSD.org>
* Horia Racoviceanu <horia@racoviceanu.com>
* Hye-Shik Chang
* Hye-Shik Chang <perky@python.or.kr>
* Ilia Chipitsine <ilia@jane.cgu.chel.su>
* Ivan Voras <ivoras@FreeBSD.org>
* J.F. Dockes
* Jaap Boender <jaapb@kerguelen.org>
* Jake Smith <jake@xz.cx>
* James FitzGibbon <jfitz@FreeBSD.org>
* Janos Mohacsi <janos.mohacsi@bsd.hu>
* Janos.Mohacsi@bsd.hu
* Jason Helfman <jgh@FreeBSD.org>
* Jens Rehsack <rehsack@liwing.de>
* Jeremy Chadwick <koitsu@FreeBSD.org>
* Jev Björsell <ports@ecadlabs.com>
* Jim Ohlstein <jim@ohlste.in>
* Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw>
* Joe Horn <joehorn@gmail.com>
* Joe Marcus Clarke <marcus@FreeBSD.org>
* Johannes Meixner <johannes@perceivon.net>
* John Chen <johnpupu@gmail.com>
* John Marino <marino@FreeBSD.org>
* John Merryweather Cooper
* John Merryweather Cooper et al
* Jon Nistor <nistor@snickers.org>
* Jonathan Weiss (<jw@innerewut.de>)
* Jose Jachuf <jjachuf@gmail.com>
* Joshua D. Abraham <jabra@ccs.neu.edu>
* Jov <amutu@amutu.com>
* Jov amutu@amutu.com
* Jui-Nan Lin <jnlin@freebsd.cs.nctu.edu.tw>
* Julien Laffaye <kimelto@gmail.com>
* Jyun-Yan You <jyyou@cs.nctu.edu.tw>
* Keith Gaughan <k@sterechro.me>
* Kevin Bowling <kbowling@freebsd.org>
* Kimo <kimor79@yahoo.com>
* Kimura Fuyuki <fuyuki@nigredo.org>
* Koop Mast <kwm@FreeBSD.org>
* Lars Balker Rasmussen <lbr@FreeBSD.org
* Lars Balker Rasmussen <lbr@FreeBSD.org>
* Lars Eggert <larse@isi.edu>
* Lars Thegler <lars@thegler.dk>
* Lars Thegler <lth@FreeBSD.org>
* Li-Wen Hsu <lwhsu@FreeBSD.org>
* Loïc BARTOLETTI
* Loïc BARTOLETTI <lbartoletti@FreeBSD.org>
* Lubomir Marinov <lubomir_m@abv.bg>
* Mahdi Mokhtari <mokhi64@gmail.com>
* Mahlon E. Smith <mahlon@martini.nu>
* Marc G. Fournier <scrappy@FreeBSD.org>
* Mark Felder <feld@FreeBSD.org>
* Markus Brueffer <markus@FreeBSD.org>
* Martin Matuska <martin@matuska.org>
* Martin Matuska <mm@FreeBSD.org>
* Martin Wilke <miwi@FreeBSD.org>
* Mathieu Arnold <m@absolight.net>
* Matthew Seaman
* Matthias Andree <mandree@FreeBSD.org>
* Matthias Fechner <mfechner@FreeBSD.org>
* Matthias Petermann <matthias@petermann-it.de>
* Max Khon
* Max Khon <fjoe@FreeBSD.org>
* Michael Johnson <ahze@FreeBSD.org>
* Michael Johnson <ahze@ahze.net>
* Michael Winking <mwfp@foldl.net>
* Mikael URANKAR and Loïc BARTOLETTI
* Mike Carlson (carlson39@llnl.gov)
* Mikhail T. <michael@fun-box.ru>
* Mikhail Teterin
* Mikhail Teterin <mi@aldan.algebra.com>
* Mikolaj Golub <trociny@FreeBSD.org>
* Mirko Zinn <mail@derzinn.de>
* Mohammad S. Babaei <info@babaei.net>
* Muhammad Moinur Rahman <bofh@FreeBSD.org>
* Nick Hibma <n_hibma@freebsd.org>
* Nick Hilliard <nick@foobar.org>
* Nick Sayer <nsayer@FreeBSD.org>
* Nicola Vitale <nivit@FreeBSD.org>
* Nicolas Embriz <nbari@tequila.io>
* Nicolas de Bari Embriz <nbari@dalmp.com>
* Oleg Sharoiko <os@rsu.ru>
* Olexander Melnyk <olexander.v.melnyk@gmail.com>
* Oliver Eikemeier <eikemeier@fillmore-labs.com>
* Olivier Duchateau <duchateau.olivier@gmail.com>
* Palle Girgensohn <girgen@FreeBSD.org>
* Palle Girgensohn <girgen@partitur.se>
* Palle Girgensohn <girgen@pingpong.net>
* Parv <parv@pair.org>
* Pete Fritchman <petef@databits.net>
* Peter Avalos <pavalos@theshell.com>
* Philip M. Gollucci
* Philip M. Gollucci <philip@p6m7g8.com>
* Philip Stoev <philip.stoev@galeracluster.com>
* Pierre-Emmanuel Andre <pea@raveland.org>
* Pietro Cerutti <gahr@FreeBSD.org>
* Piotr Kubaj <pkubaj@anongoth.pl>
* Po-Chuan Hsieh <sunpoet@FreeBSD.org>
* Qing Feng <qingfeng@douban.com>
* Quinton Dolan <q@onthenet.com.au>
* Radim Kolar
* Rainer Hurling <rhurlin@gwdg.de>
* Rick Miller
* Robert Kruus <rob.kruus@gmail.com>
* Rod Taylor <ports@rbt.ca>
* Roland van Laar <roland@micite.net>
* Rong-En Fan <rafan@FreeBSD.org>
* Roy Boerner
* Rozhuk Ivan <rozhuk.im@gmail.com>
* Rusty Nejdl
* Ryan Steinmetz <rpsfa@rit.edu>
* Ryan Steinmetz <zi@FreeBSD.org>
* Ryan T. Dean <rtdean@cytherianage.net>
* Sam Lawrance <boris@brooknet.com.au>
* Scott McWhirter <scott@surreytech.co.uk>
* Seamus Venasse <svenasse@polaris.ca>
* Sean Chittenden <seanc@FreeBSD.org>
* Sergei Kolobov <sergei@kolobov.com>
* Sergei Vyshenski <svysh.fbsd@gmail.com>
* Sergey A. Osokin <osa@FreeBSD.org.ru>
* Sergey A. Osokin <osa@FreeBSD.org>
* Sergey Matveychuk <sem@FreeBSD.org>
* Sergey Skvortsov <skv@FreeBSD.org>
* Sergey Skvortsov <skv@protey.ru>
* Sevan Janiyan <venture37@geeklan.co.uk>
* Sheldon Hearn <sheldonh@FreeBSD.org>
* Stanislav Svirid <count@211.ru>
* Stefan Schmidt <stefan.schmidt@stadtbuch.de>
* Steve Wills <swills@FreeBSD.org>
* Steve Wills <swills@freebsd.org>
* Steven Kreuzer <skreuzer@FreeBSD.org>
* Sunpoet Po-Chuan Hsieh <sunpoet@FreeBSD.org>
* Sunpoet Po-Chuan Hsieh <sunpoet@sunpoet.net>
* T. William Wells <bill@twwells.com>
* TAKATSU Tomonari <tota@FreeBSD.org>
* Thierry Thomas (<thierry@pompo.net>)
* Thomas Gellekum <tg@FreeBSD.org>
* Timur I. Bakeyev <bat@cpan.org>
* Tom Judge <tj@FreeBSD.org>
* Torsten Zuehlsdorff <ports@toco-domains.de>
* Torsten Zuhlsdorff <ports@toco-domains.de>
* Toshiya Saitoh (<toshiya@saitoh.nu>)
* Tsung-Han Yeh <snowfly@yuntech.edu.tw>
* Vasil Dimov <vd@FreeBSD.org>
* Veniamin Gvozdikov <vg@FreeBSD.org>
* Vladimir Timofeev <vovkasm@gmail.com>
* Wen Heping
* Wen Heping <wen@FreeBSD.org>
* Wen Heping <wenheping@gmail.com>
* Wen heping <wenheping@gmail.com>
* William Grzybowski <wg@FreeBSD.org>
* Xin Li <delphij@FreeBSD.org>
* Yarema <yds@CoolRat.org>
* Yarema <yds@Necessitu.de>
* Yen-Ming Lee <leeym@FreeBSD.org>
* Ying-Chieh Liao <ijliao@FreeBSD.org>
* Yoichi NAKAYAMA <yoichi@FreeBSD.org>
* Yuri Victorovich <yuri@rawbw.com>
* Zach Thompson <hideo@lastamericanempire.com>
* Zach Thompson <lin-chi@lastamericanempire.com>
* ache@FreeBSD.org
* alfred
* alp@sfedu.ru
* andrew@scoop.co.nz
* andrey@kostenko.name
* chinsan
* chinsan <chinsan.tw@gmail.com>
* clive
* clive@FreeBSD.org
* clsung@dragon2.net
* dcf@aracnet.com
* elvstone@gmail.com
* erikhb@bgnett.no
* erwin@FreeBSD.org
* gahr
* ijliao
* ijlioa
* ivoras
* johnpupu <johnpupu@gmail.com>
* kirk@daycos.com
* kuriyama
* lbartoletti <lbartoletti@FreeBSD.org>
* loïc bartoletti <lbartoletti@FreeBSD.org>
* mharo@FreeBSD.org
* michael johnson <ahze@ahze.net>
* milki <milki@rescomp.berkeley.edy>
* mm@FreeBSD.org
* nbm
* nectar@FreeBSD.org
* nork@FreeBSD.org
* nork@cityfujisawa.ne.jp
* olevole@olevole.ru
* proler@gmail.com
* sergey@migsoft.com.ua
* sobomax
* spam@rm-rf.kiev.ua
* stas
* tobez
* tremere@cainites.net
* vanilla
* vanilla@
* wen@FreeBSD.org
* wenheping<wenheping@gmail.com>
* wolman@cs.washington.edu
* # Created by Kevin Bowling <kbowling@FreeBSD.org>
* # Created by Matthias Fechner <mfechner@FreeBSD.org>
With hat: portmgr
|
| |
|
|
|
|
|
|
|
| |
The rc script was converted to use a SUB_LIST variable, but I failed to
introduce the variable correctly in the Makefile. [1]
The plist for postgresql15-server was incorrect. Fixed this as well.
PR: 264097 [1]
|
| |
|
|
|
|
|
|
|
| |
Introduce PostgreSQL-15 to the ports tree.
Make version 15 the master port, and add plist parameter for the
postgresql version.
Release notes: https://www.postgresql.org/docs/devel/release.html
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 14.3, 13.7, 12.11, 11.16,
and 10.21. This release fixes over 50 bugs reported over the last three
months. This release closes one security vulnerability and fixes over 50
bugs reported over the last three months.
We encourage you to install this update at your earliest possible
convenience.
If you have any GiST indexes on columns using the ltree data type, you
will need to reindex them after upgrading.
For the full list of changes, please review the release notes.
It also fixes a security issue, CVE-2022-1552:
Autovacuum, REINDEX, and others omit "security restricted operation" sandbox.
Versions Affected: 10 - 14. The security team typically does not test
unsupported versions, but this problem is quite old.
Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER,
and pg_amcheck made incomplete efforts to operate safely when a
privileged user is maintaining another user's objects. Those commands
activated relevant protections too late or not at all. An attacker
having permission to create non-temp objects in at least one schema
could execute arbitrary SQL functions under a superuser identity.
While promptly updating PostgreSQL is the best remediation for most
users, a user unable to do that can work around the vulnerability by
disabling autovacuum, not manually running the above commands, and not
restoring from output of the pg_dump command. Performance may degrade
quickly under this workaround. VACUUM is safe, and all commands are fine
when a trusted user owns the target object.
Security: 157ce083-d145-11ec-ab9b-6cc21735f730
Release notes: https://www.postgresql.org/docs/release/
|
| |
|
|
|
|
|
|
| |
Changes: https://github.com/unicode-org/icu/releases/tag/release-71-1
Reported by: GitHub (watch releases)
PR: 262654
Exp-run by: antoine
Approved by: fluffy
|
| |
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 14.2, 13.6, 12.10, 11.15,
and 10.20. This release fixes over 55 bugs reported over the last three
months.
Announcement: https://www.postgresql.org/about/news/postgresql-142-136-1210-1115-and-1020-released-2402/
Release notes: https://www.postgresql.org/docs/release/
|
| |
|
|
| |
Same as postgresql13-server.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This release contains a variety of fixes from the previous version.
A dump/restore is not required for those running the same major version.
However, note that installations using physical replication should
update standby servers before the primary server, as explained in the
release notes.
Also, several bugs have been found that may have resulted in corrupted
indexes, as explained in the next several changelog entries. If any of
those cases apply to you, it's recommended to reindex possibly-affected
indexes after updating.
This release also mitigates two possible man-in-the-middle attacks.
Security: 2ccd71bd-426b-11ec-87db-6cc21735f730
Release notes: https://www.postgresql.org/docs/release/14.1/
|
| |
|
|
|
|
|
| |
Changes: https://github.com/unicode-org/icu/releases/tag/release-70-1
Reported by: GitHub (watch releases)
PR: 258794
Exp-run by: antoine
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 13.4, 12.8, 11.13, 10.18, and
9.6.23, as well as the third beta release of PostgreSQL 14. This release closes
one security vulnerability and fixes over 75 bugs reported over the last three
months.
Turn off parallel builds since we continue to struggle with build problems when
it is activated. [1]
Avoid chasing latest LLVM version. [2]
PR: 256466 [1], 256167 [2]
Release notes: https://www.postgresql.org/docs/release/
Security: b471130b-fb86-11eb-87db-6cc21735f730
|
| |
|
|
|
|
|
|
|
|
| |
Changeset ab83f2b4bb78 changed the startup order for Postgresql. The cleartmp
rc.d now comes after the Postgresql startup. Unfortunately, Postgresql likes
to create a socket in /tmp/.s.PGSQL.5432. After cleartmp does its work, that
socket disappears from the filesystem.
Submitted by: Jeroen Pulles
PR: 256335
|
| |
|
|
|
|
|
|
|
| |
Release notes: https://www.postgresql.org/docs/devel/release-14.html
Also reintroduce parallel builds. Some components, namely plperl,
plpython, pltcl and contrib, fail to build properly when using parallel
builds. Something with static linking using `ar` that fails.
MAKE_JOBS_UNSAFE is set for these ports.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
PostgreSQL 13.3, 12.7, 11.12, 10.17, and 9.6.22 Released!
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 13.3, 12.7, 11.12, 10.17, and
9.6.22. This release closes three security vulnerabilities and fixes over 45
bugs reported over the last three months.
Security fixes in this release:
CVE-2021-32027: Buffer overrun from integer overflow in array subscripting
calculations
CVE-2021-32028: Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATE
CVE-2021-32029: Memory disclosure in partitioned-table UPDATE ... RETURNING
Also plenty of bug fixes. See the release note for details.
Changes to the port:
Make sure we use the matching version of llvm. This fixes a problem with the
llvm version string not being monotonically increasing with the version
number. [1]
Better pkg message about checksums for postgresql 12+. [2] [4]
Adjust login class parameter to adhere to the documentation in rc.subr(8) [3]:
The rc.conf parameter for the login class of the postgresql daemon has
changed name from postgresql_class to postgresql_login_class, since
rc.subr(8) states that the parameter should be named ${name}_login_class.
Allow parallel builds. [5]
Correct the directory name for the user postgres in pkg message. [6]
PR: 250824 [1], 253558 [2], 236060 [3], 233106 [4], 230656 [5]
PR: 226674 [6]
Submitted by: Michael Zhilin [2], Michael Zhilin [3], Dmitry Chestnykh [4]
Submitted by: Steve Wills [5], knezour [6]
Security: 76e0bb86-b4cb-11eb-b9c9-6cc21735f730
Security: 62da9702-b4cc-11eb-b9c9-6cc21735f730
Release notes: https://www.postgresql.org/docs/release/
|
| | |
|
| |
|
|
|
| |
Reported by: tmunro
Reviewed by: girgen
|
| |
|
|
|
| |
Changes: https://github.com/unicode-org/icu/releases/tag/release-69-1
Reported by: GitHub (watch releases)
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 13.2, 12.6, 11.11, 10.16, 9.6.21,
and 9.5.25. This release closes two security vulnerabilities and fixes over 80
bugs reported over the last three months.
Additionally, this is the final release of PostgreSQL 9.5. If you are running
PostgreSQL 9.5 in a production environment, we suggest that you make plans to
upgrade.
Release notes: https://www.postgresql.org/about/news/postgresql-132-126-1111-1016-9621-and-9525-released-2165/
Security notes: https://www.postgresql.org/support/security/
Security: CVE-2021-3393, CVE-2021-20229
Notes:
svn path=/head/; revision=564956
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 13.1, 12.5, 11.10, 10.15 and 9.6.20.
This release closes three security vulnerabilities and fixes over 65 bugs
reported over the last three months.
Due to the nature of CVE-2020-25695, we advise you to update as soon as possible.
Additionally, this is the second-to-last release of PostgreSQL 9.5. If you are
running PostgreSQL 9.5 in a production environment, we suggest that you make
plans to upgrade.
For the full list of changes, please review the release notes.
Security: CVE-2020-25695: Multiple features escape "security restricted
operation" sandbox
Security: CVE-2020-25694: Reconnection can downgrade connection security
settings
Security: CVE-2020-25696: psql's \gset allows overwriting specially
treated variables
Notes:
svn path=/head/; revision=554966
|
| |
|
|
|
|
|
|
|
| |
Changes: http://site.icu-project.org/download/68
ABI: https://abi-laboratory.pro/tracker/timeline/icu4c/
Reported by: GitHub (watch releases)
Notes:
svn path=/head/; revision=553940
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ports version. Fix this by depending on a higher version of llvm if such a
version exixts, and otherwise use a clang version compatible with the latest
llvm.
Using llvm was previously dependant on clang being used, and this did not quite
work for all cases due to some weird order of variables in the Makefile. The
result was that the option set by the used was not really honored. The
portrevision is bumped to reflect that the setting of LLVM might not have
worked before this portrevison.
PR: 244403
Notes:
svn path=/head/; revision=550749
|
| |
|
|
|
|
|
| |
Release notes: https://www.postgresql.org/about/news/2077/
Notes:
svn path=/head/; revision=549921
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
supported versions of our database system, including 12.4, 11.9, 10.14,
9.6.19, and 9.5.23.
This release closes two security vulnerabilities and fixes over 50 bugs
reported over the last three months.
Please plan to update at your earliest convenience.
Security Issues
---------------
* CVE-2020-14349: Uncontrolled search path element in logical replication.
Versions Affected: 10 - 12.
The PostgreSQL `search_path` setting determines schemas searched for
tables, functions, operators, etc. The CVE-2018-1058 fix caused most
PostgreSQL-provided client applications to sanitize `search_path`, but
logical replication continued to leave `search_path` unchanged. Users of
a replication publisher or subscriber database can create objects in the
`public` schema and harness them to execute arbitrary SQL functions
under the identity running replication, often a superuser. Installations
having adopted a documented secure schema usage pattern are not vulnerable.
The PostgreSQL project thanks Noah Misch for reporting this problem.
* CVE-2020-14350: Uncontrolled search path element in `CREATE EXTENSION`.
Versions Affected: 9.5 - 12. The security team typically does not test
unsupported versions, but this problem is quite old.
When a superuser runs certain `CREATE EXTENSION` statements, users may
be able to execute arbitrary SQL functions under the identity of that
superuser. The attacker must have permission to create objects in the
new extension's schema or a schema of a prerequisite extension. Not all
extensions are vulnerable.
In addition to correcting the extensions provided with PostgreSQL, the
PostgreSQL Global Development Group is issuing guidance for third-party
extension authors to secure their own work.
The PostgreSQL project thanks Andres Freund for reporting this problem.
Security: CVE-2020-14349, CVE-2020-14350
Notes:
svn path=/head/; revision=544810
|
| |
|
|
|
|
|
|
| |
PR: 247226
Reported by: Garrett Wollman
Notes:
svn path=/head/; revision=538854
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
supported versions of our database system, including 12.3, 11.8, 10.13,
9.6.18, and 9.5.22. This release fixes one security issue found in the
PostgreSQL server and over 75 bugs reported over the last three months.
Please plan to update at your earliest convenience.
Update the backup warning text. [1]
Add plpython and plperl libs for hstore, jsonb and ltree for the versions where
they exist. These libs are added to the postgresql??-plpython and -plperl
ports, inspired by [2].
PR: 237910 [1], 245246 [2]
Submitted by: Francesco [1], Loïc Bartoletti [2]
Notes:
svn path=/head/; revision=535676
|
