| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
| |
- Set X11BASE to ${LOCALBASE} for recent ${OSVERSION}.
- Bump PORTREVISION for ports intalling files in ${X11BASE}.
Notes:
svn path=/head/; revision=191544
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group has released updated versions
for PostgreSQL 8.2 and all back versions to patch a privilege
escalation exploit in SECURITY DEFINER functions. All users of this
feature are urged to update to the latest minor version and follow
instructions on securing these functions as soon as possible. This
minor release also contains other fixes, so all users should plan to
deploy it.
Once you have updated, additional steps are required to secure your
database against the exploit. Please read the release notes at
http://www.postgresql.org/docs/8.2/static/release.html and the
TechDocs article at http://www.postgresql.org/docs/techdocs.77 on how
to lock down your security definer functions, if you use them.
As always, application of a minor release does not require a dump and
reload of the database.
The frequency of security fixes recently is a result of increased
scrutiny of the PostgreSQL code by government agencies and
security-conscious companies. Rapid turnaround on security patches
is key to keeping PostgreSQL the most secure SQL database. Your work
and vigilance in applying the latest security updates ensures that
there will never be a PostgreSQL "worm".
http://www.postgresql.org/docs/8.2/static/release-8-2-4.html
http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-9
http://www.postgresql.org/docs/8.0/static/release.html#RELEASE-8-0-13
http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4-17
http://www.postgresql.org/docs/techdocs.77
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2138
Notes:
svn path=/head/; revision=190743
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A vulnerability allows suppressing the normal checks that a SQL
function returns the data type it's declared to do. These errors can
easily be exploited to cause a backend crash, and in principle might
be used to read database content that the user should not be able to
access. [CVE-2007-0555]
The release includes a set of other fixes as well. Please see the
release information at
http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4-16
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0555
Notes:
svn path=/head/; revision=184278
|
|
|
|
|
|
|
| |
Reported by: Stefan Foulis
Notes:
svn path=/head/; revision=182421
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release notes:
http://www.postgresql.org/docs/7.3/static/release.html#RELEASE-7-3-17
http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4-15
http://www.postgresql.org/docs/8.0/static/release.html#RELEASE-8-0-10
http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-6
http://www.postgresql.org/docs/8.2/static/release-8-2-1.html
The server-side utilities of postgresql (initdb, initlocation,
ipcclean, pg_controldata, pg_ctl, pg_id and pg_resetxlog) are now
installed by the respective postgresql*-server port (previously they
where installed with the client). If you update the client, you should
also update the server to make sure you are not left without the
server-side tools. Do something like:
portupgrade postgresql-client postgresql-server
Notes:
svn path=/head/; revision=181869
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release notes:
8.1.5 http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-5
8.0.9 http://www.postgresql.org/docs/8.0/static/release.html#RELEASE-8-0-9
7.4.14 http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4-14
7.3.16 http://www.postgresql.org/docs/7.3/static/release.html#RELEASE-7-3-16
Change name of the rc script from '010.pgsql.sh' to 'postgresql'
Add optional hierachy patch added for 7.4 and 8.1 ports.
Chase heimdal libs update [reported by several]
For 8.1+ the port enables autovacuum in ~pgsql/postgresql.conf when
running initdb
Cleanup the ports, moving pkg-message-* to files/pkg-message-*.in and
files/pgsql.sh.tmpl to files/postgresql.in. [ports/97767]
PR: ports/97767, submitted by delphij@FreeBSD.org
Notes:
svn path=/head/; revision=176828
|
|
|
|
|
|
|
|
| |
Otherwise there could be problems with the service not starting up in the
case when owner of the file has been changed.
Notes:
svn path=/head/; revision=166410
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL Global Development Group today released versions 8.1.4, 8.0.8,
7.4.13 and 7.3.15. This is an urgent update to close a security hole which
can permit a SQL injection attack on some applications running PostgreSQL.
Users are urged to apply the update as soon as reasonably possible. Since the
update affects client functionality, most driver projects will be updating
this week as well.
Because the security issue involved is complex, we have added a section in
Techdocs to explain it: http://www.postgresql.org/docs/techdocs.52. Please
read this first before applying the updates.
Also, fix rc_subr startup problems on FreeBSD-7.x.
Security: http://www.postgresql.org/docs/techdocs.50
PR: ports/95154
Notes:
svn path=/head/; revision=163198
|
|
|
|
|
|
|
|
|
|
| |
We have not checked for this KEYWORD for a long time now, so this
is a complete noop, and thus no PORTREVISION bump. Removing it at
this point is mostly for pedantic reasons, and partly to avoid
perpetuating this anachronism by copy and paste to future scripts.
Notes:
svn path=/head/; revision=156534
|
|
|
|
|
|
|
| |
Security: http://www.postgresql.org/docs/8.1/static/release-7-4-12.html
Notes:
svn path=/head/; revision=156301
|
|
|
|
| |
Notes:
svn path=/head/; revision=154780
|
|
|
|
|
|
|
|
| |
Approved by: krion@
PR: ports/88711 (related)
Notes:
svn path=/head/; revision=154134
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A critical fix repairs an error in ReadBuffer that can cause data loss
due to overwriting recently-added pages. This applies to the 8.1 and
8.0 branches on all platforms.
Note that this update might require a reindex of textual columns under
certain conditions; please see UPDATING.
Other fixes included are:
-- Character string locale comparison bug. This may require a REINDEX
on text column indexes in some locales, such as Hungarian.
-- Prevent accidental changes of locale by plperl
-- Two fixes for Japanese encodings
-- Two fixes for COPY CSV
-- Fixes for functions returning RECORD
-- Fixes to autovacuum, dblink and pgcrypto
Notes:
svn path=/head/; revision=153149
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
"start" when booting, since there's no need waste time checking for
running processes when the OS is starting up.
Bumping portrevision.
PR: 90884
Submitted by: Victor Snezhko <snezhko@indorsoft.ru>
Notes:
svn path=/head/; revision=152024
|
|
|
|
|
|
|
|
| |
Submitted by: Hirohisa Yamaguchi <umq@ueo.co.jp>
PR: 90445
Notes:
svn path=/head/; revision=151875
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
installed from ports. The base heimdal distribution installs libraries
that have no depenency information. While this is quite correct, it
means that each library that links with libpq.so must also know if
libpq.so is linked with libkrb.so et al. Problem is, there's no good
way to get this information (pg_config has a --libs option starting at
version 8.1) and all ports using postgresql must be changed to make it
possible to link with a libpq.so that was configured to use the
Kerberos implementation installed in /usr by default. Hence, we
require one of the ports (heimdal or krb5) if postgresql is to be
linked with Kerberos. At least for now, until we can fix this in some
better way.
Also, if MIT Kerberos (security/krb5) is installed, users should
ideally remove the base heimdal installation so linkers will not pick
it up in preference to the krb5 libs (base heimdal has higher version
numbers than krb5 port).
PR: 80869, 88098, 85178
Notes:
svn path=/head/; revision=148301
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Migration to version 7.4.9
A dump/restore is not required for those running 7.4.X. However, if you
are upgrading from a version earlier than 7.4.8, see the release notes
for 7.4.8.
__________________________________________________________________
Changes
* Fix error that allowed "VACUUM" to remove ctid chains too soon, and
add more checking in code that follows ctid links
This fixes a long-standing problem that could cause crashes in very
rare circumstances.
* Fix CHAR() to properly pad spaces to the specified length when
using a multiple-byte character set (Yoshiyuki Asaba)
In prior releases, the padding of CHAR() was incorrect because it
only padded to the specified number of bytes without considering
how many characters were stored.
* Fix the sense of the test for read-only transaction in "COPY"
The code formerly prohibited "COPY TO", where it should prohibit
"COPY FROM".
* Fix planning problem with outer-join ON clauses that reference only
the inner-side relation
* Further fixes for x FULL JOIN y ON true corner cases
* Make array_in and array_recv more paranoid about validating their
OID parameter
* Fix missing rows in queries like UPDATE a=... WHERE a... with GiST
index on column a
* Improve robustness of datetime parsing
* Improve checking for partially-written WAL pages
* Improve robustness of signal handling when SSL is enabled
* Don't try to open more than max_files_per_process files during
postmaster startup
* Various memory leakage fixes
* Various portability improvements
* Fix PL/PgSQL to handle var := var correctly when the variable is of
pass-by-reference type
* Update "contrib/tsearch2" to use current Snowball code
Notes:
svn path=/head/; revision=144234
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
please see the HISTORY file included in the Release, but a summary
consists of:
* Change encoding function signature to prevent misuse
* Change "contrib/tsearch2" to avoid unsafe use of INTERNAL function
results
* Repair race condition between relation extension and VACUUM
This could theoretically have caused loss of a page's worth of
freshly-inserted data, although the scenario seems of very low
probability. There are no known cases of it having caused more than
an Assert failure.
Security: http://www.postgresql.org/about/news.315
Notes:
svn path=/head/; revision=135023
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
add support to select login class for running postgresql [2].
The new startup script, using rc.subr, is now installed for all
versions of postgresql. Bump portrevisions, since startup script is
modified.
PR: 78630 [1]
Submitted by: Vivek Khera [1]
Submitted by: Brian B. [2]
Approved by: seanc (implicit)
Notes:
svn path=/head/; revision=131605
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
installed, the patched gram.y file would not be used and the security
patch would be a no-op. Also, I've had reports of compilation errors
related to bison.
Since checking for the correct version of bison is hard and error
prone, I'm doing what the postgresql distribution does - patching the
yacc:ed .c file to get rid of the building dependency.
Bumping portrevision of -server.
Pointy hat to: me
Noticed by: Mike Harding and others
Security: http://www.vuxml.org/freebsd/6b4b0b3f-8127-11d9-a9e7-0001020eed82.html
Approved by: seanc (implicit)
Notes:
svn path=/head/; revision=129331
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Prevent overrunning a heap-allocated buffer if more than 1024
parameters to a refcursor declaration are specified. This is a
minimally-invasive fix for the buffer overrun.
Define LATEST_LINK to avoid package name clashes between the different
branches of PostgreSQL. [1] (Since postgresql-tcltk is hardwired to
branch 7.4, keep its LATEST_LINK to a generic value.)
Set UNIQUENAME and let it be the same for server & client, so each
branch's ports will share the same options file. This adds some no-op
knobs to the -client port, but IMO it is better this way.
Add space inside paranthesis in OSVERSION conditional to work around
(ancient) make bug. [2]
Remove the Rendez-Vouz knob for 8.0 since I can't find the software
needed to even compile it on FreeBSD.
Bump portrevision (for -server only).
Noted by: kris [1]
PR: ports/77530 [2]
Security: http://www.vuxml.org/freebsd/6b4b0b3f-8127-11d9-a9e7-0001020eed82.html
Approved by: seanc (mentor)
Notes:
svn path=/head/; revision=129277
|
|
|
|
|
|
|
|
|
|
| |
The PostgreSQL JDBC project has been decoupled from the server
distribution, and is now hosted at http://jdbc.postgresql.org/.
Approved by: ade (mentor)
Notes:
svn path=/head/; revision=128497
|
|
|
|
|
|
|
|
| |
Submitted by: Nick Pavlica <linicks at gmail dot com>
Approved by: ade (mentor)
Notes:
svn path=/head/; revision=128395
|
|
|
|
|
|
|
|
|
| |
deinstalling.
Approved by: ade (mentor)
Notes:
svn path=/head/; revision=128194
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the "LOAD" option, the PostgreSQL Global Development Group is
announcing the release of new versions of PostgreSQL.
Update to 7.3.9, 7.4.7 & 8.0.1.
Take the opportunity to reset PORTREVISION of slave ports.
Back out name change of startup script. The new script uses rc.subr(8),
and as such also uses rcorder(8). But, rcorder does not exist in FreeBSD
4.x. Hence rename the script it back to the top of the directory
list. [1]
The periodic script should of course be executable. [2]
[1] Noted by Niels Chr. Bank-Pedersen <ncbp at bank-pedersen dot dk>
[2] Noted by Fritz Heinrichmeyer <fritz.heinrichmeyer at fernuni-hagen dot de>
Notes:
svn path=/head/; revision=127966
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
following knobs can be used by ports depending on PostgreSQL:
# USE_PGSQL - Add PostgreSQL client dependency.
# If no version is given (by the maintainer via the port or
# by the user via defined variable), try to find the
# currently installed version. Fall back to default if
# necessary (PostgreSQL-7.4 = 74).
# DEFAULT_PGSQL_VER
# - PostgreSQL default version. Can be overridden within a port.
# Default: 74.
# WANT_PGSQL_VER
# - Maintainer can set an arbitrary version of PostgreSQL by
# using it.
# BROKEN_WITH_PGSQL
# - This variable can be defined if the ports doesn't support
# one or more versions of PostgreSQL.
Note that a periodic script is installed that will, by default, vacuum
all databases nightly. You may want to tweak the settings, see the
script at ${LOCALBASE}/etc/periodic/daily/502.pgsql
To run PostgreSQL at boot time, set postgresql_enable=yes in /etc/rc.conf.
Note
PR: 75344
Approved by: portmgr@ (kris), ade & sean (mentors)
Notes:
svn path=/head/; revision=127734
|
|
|
|
|
|
|
|
|
|
| |
build, so it will not be out the door before the ports freeze.
Meanwhile, modify BROKEN text to something more informative.
Approved by: ade (mentor)
Notes:
svn path=/head/; revision=124724
|
|
|
|
|
|
|
| |
Approved by: ade (mentor)
Notes:
svn path=/head/; revision=123277
|
|
|
|
|
|
|
|
|
|
|
|
| |
Note that none of these ports are (yet) hooked into the tree,
and will not compile unless you set a specific environmental
variable. This should be warning enough to leave well alone
for now :)
Submitted by: maintainer
Notes:
svn path=/head/; revision=122238
|
|
|
|
|
|
|
|
|
|
|
|
| |
advisories in http://www.postgresql.org/news/234.html
Note that postgresql 7.2.x is NOT being updated here since it is
due for termination real soon now.
Submitted by: maintainer, also referenced in ports/73142 (no patch)
Notes:
svn path=/head/; revision=120905
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Prevent possible loss of committed transactions during crash
* Repair possible crash during concurrent btree index insertions
PR: 71176
Submitted by: SUGIMURA Takashi <sugimura@jp.FreeBSD.org>
Reviewed by: Palle Girgensohn <girgen@pingpong.net> (maintainer)
Notes:
svn path=/head/; revision=117737
|
|
|
|
|
|
|
|
| |
PR: ports/68456
Submitted by: maintainer
Notes:
svn path=/head/; revision=112502
|
|
|
|
|
|
|
|
| |
Submitted by: Palle Girgensohn <girgen@pingpong.net> (maintainer)
PR: 64933
Notes:
svn path=/head/; revision=105689
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release notes available at http://www.postgresql.org/news/173.html
NOTICE: unlike most minor versions, this version does require
some updates to the pg_* system tables. Full instructions for
how to do this are included in the full HISTORY file.
DO NOT UPGRADE WITHOUT READING THESE INSTRUCTIONS.
SIZEfy.
Submitted by: Palle Girgensohn <girgen@pingpong.net> (maintainer)
PR: 64105
Notes:
svn path=/head/; revision=103654
|
|
|
|
|
|
|
|
|
| |
PR: 61836
Submitted by: Palle Girgensohn (maintainer)
Pointy hat to: me
Notes:
svn path=/head/; revision=100045
|
|
|
|
|
|
|
|
| |
Submitted by: trevor
Tested by: bento
Notes:
svn path=/head/; revision=99914
|
|
|
|
|
|
|
|
|
|
| |
pg-7.4
PR: ports/62167
Submitted by: maintainer
Notes:
svn path=/head/; revision=99702
|
|
|
|
| |
Notes:
svn path=/head/; revision=98909
|
|
|
|
|
|
|
|
|
|
| |
LOCALBASE to find krb5-config in the MIT case.
Prodded by: Our friendly folks at the ISC who want to use FreeBSD's
PostgreSQL ports instead of an unmanaged build from a tarball.
Notes:
svn path=/head/; revision=98447
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
authentication support for FreeBSD (been broken since 7.4). Merry
Christmas to all, and to all a good night.
Release notes:
http://developer.postgresql.org/docs/postgres/release.html#RELEASE-7-4-1
Prompted by PR: ports/60542
Obtained from: maintainer
Notes:
svn path=/head/; revision=96563
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
MASTERDIR/Makefile[1]. Improve the CONFLICTS messages[2]. Fix the DEPENDS
so that MIT krb5 depends on security/krb5, not heimdal[3]. Add a file that
was missing in the upgrade that has PostgreSQL log to syslog by default[4].
PR: [4] Originally submitted in ports/59402
Submitted by: [1,2,4] maintainer
[3] keoki seu <keoki@camelot.physics.wm.edu>
Notes:
svn path=/head/; revision=95163
|
|
|
|
|
|
|
| |
This fixes INDEX build
Notes:
svn path=/head/; revision=95013
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
regarded as a major release with features with interest to those with
large databases. The updates are extensive and the best source of info
is in the release notes. Enjoy and direct questions to database@!
Release notes:
http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4
PR: ports/59403, ports/59404, ports/59393, ports/59394,
ports/59395, ports/59397, ports/59398, ports/59402, &&
ports/59401
Submitted by: maintainer
Approved by: marcus (portmgr@ hat)
Notes:
svn path=/head/; revision=94977
|
|
|
|
|
|
|
| |
master/slave clean)
Notes:
svn path=/head/; revision=91009
|
|
|
|
|
|
|
| |
Prodded by: kris
Notes:
svn path=/head/; revision=87743
|
|
|
|
| |
Notes:
svn path=/head/; revision=87644
|
|
|
|
|
|
|
|
|
| |
into right place.
Notify from: Palle Girgensohn <girgen@pingpong.net>
Notes:
svn path=/head/; revision=86812
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
"In order to address a potentially serious (although rare)
server startup failure that was recently reported, we have
released PostgreSQL version 7.3.4. This release is critical
for users of PostgreSQL version 7.3.3, and highly recommended
for all other PostgreSQL users."
Submitted by: Palle Girgensohn <girgen@pingpong.net> (maintainer)
PR: 55354
Notes:
svn path=/head/; revision=86803
|
|
|
|
|
|
|
| |
use USE_GETOPT_LONG instead.
Notes:
svn path=/head/; revision=84842
|
|
|
|
|
|
|
|
| |
PR: 52867
Submitted by: Palle Girgensohn <girgen@pingpong.net> (maintainer)
Notes:
svn path=/head/; revision=83302
|