| non port: databases/postgresql92-server/Makefile |
|
SVNWeb
|
Number of commits found: 99 |
|
Thu, 8 Feb 2018
|
[ 17:38 girgen  ]   (Only the first 10 of 31 ports in this commit are shown above.  )
Update to latest versions of PostgreSQL
2018-02-08 Security Update Release
==================================
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 10.2, 9.6.7, 9.5.11, 9.4.16, 9.3.21.
This release fixes two security issues. This release also fixes issues with
VACUUM, GIN indexes, and hash indexes that could lead to data corruption, as
well as fixes for using parallel queries and logical replication.
All users using the affected versions of PostgreSQL should update as soon as
possible. Please see the notes on "Updating" below for any post-update steps
that may be required.
(Only the first 15 lines of the commit message are shown above )
|
|
Tue, 30 Jan 2018
|
[ 13:45 mat ]
Fix ICU depend for postgresql10-server.
PR: 225049
Submitted by: mat
Approved by: maintainer timeout
Sponsored by: Absolight
|
|
Thu, 11 Jan 2018
|
[ 18:31 tijl ]
Convert to USES=autoreconf.
|
|
Mon, 18 Dec 2017
|
[ 14:46 emaste ]
databases/postgresql92-server: set LLD_UNSAFE
postgresql*-client ports fail to build with lld as /usr/bin/ld with
errors like
/usr/bin/ld: error: can't create dynamic relocation R_X86_64_PC32 against
symbol: __mb_sb_limit in readonly segment
>>> defined in /lib/libc.so.7
>>> referenced by pgstrcasecmp.c
>>> pgstrcasecmp.o:(pg_strcasecmp) in archive
../../src/port/libpgport.a
Although this appears to affect only -client ports, just set LLD_UNSAFE
for all of the postgresql*-* ports for simplicity.
Approved by: portmgr (blanket for LLD_UNSAFE)
|
|
Thu, 9 Nov 2017
|
[ 16:11 girgen ] (Only the first 10 of 18 ports in this commit are shown above. )
Update to latest versions of PostgreSQL
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 10.1, 9.6.6, 9.5.10, 9.4.15, 9.3.20,
and 9.2.24. This release fixes three security issues. This release also fixes
issues found in BRIN indexing, logical replication and other bugs reported over
the past three months.
Please note that the CVE-2017-12172 does not affect the FreeBSD port unless you
decided to not use the contrib/startscript instead of the startscript
distributed with the FreeBSD port/package.
Security: CVE-2017-12172, CVE-2017-15099, CVE-2017-15098
URL: https://www.postgresql.org/about/news/1801/
|
[ 02:31 jbeich ] (Only the first 10 of 109 ports in this commit are shown above. )
devel/icu: update to 60.1
Changes: http://site.icu-project.org/download/60
ABI: https://abi-laboratory.pro/tracker/timeline/icu4c/
PR: 223373
Exp-run by: antoine
|
|
Mon, 25 Sep 2017
|
[ 00:02 jbeich ] (Only the first 10 of 111 ports in this commit are shown above. )
devel/icu: update to 59.1
- Temporarily keep C++98 working in consumers for Clang's default -std=
Changes: http://site.icu-project.org/download/59
PR: 218788
Submitted by: takefu@airport.fm, dcarmich@dcarmichael.net (early version)
Exp-run by: antoine
|
|
Tue, 5 Sep 2017
|
[ 09:27 girgen ] (Only the first 10 of 19 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all
supported versions of our database system, including 9.6.5, 9.5.9,
9.4.14, 9.3.19, and 9.2.23.
This release includes fixes that prevent a crash in pg_restore when
using parallel mode. It also patches over a few other bugs reported
since the last releases in August.
Additionally, in 9.4.14 only, there is a fix to an issue with walsenders
preventing primary-server shutdown unless immediate shutdown mode is used.
Users should plan to update at the next convenient downtime.
Bug Fixes and Improvements
(Only the first 15 lines of the commit message are shown above )
|
|
Thu, 10 Aug 2017
|
[ 14:21 girgen ] (Only the first 10 of 12 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all
supported versions of our database system, including 9.6.4, 9.5.8,
9.4.13, 9.3.18, and 9.2.22. This release fixes three security issues.
It also patches over 50 other bugs reported over the last three months.
Users who are affected by the below security issues should update as
soon as possible. Users affected by CVE-2017-7547
(https://access.redhat.com/security/cve/CVE-2017-7547) will need to
perform additional steps after upgrading to resolve the issue. Other
users should plan to update at the next convenient downtime.
URL: https://www.postgresql.org/about/news/1772/
Security: CVE-2017-7546, CVE-2017-7547, CVE-2017-7548
|
|
Tue, 27 Jun 2017
|
[ 13:46 sunpoet ] (Only the first 10 of 252 ports in this commit are shown above. )
Update devel/readline to 7.0 patch 3
- Bump PORTREVISION for shlib change
Changes: https://cnswww.cns.cwru.edu/php/chet/readline/CHANGES
https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00107.html
https://lists.gnu.org/archive/html/bug-readline/2017-01/msg00002.html
Differential Revision: https://reviews.freebsd.org/D11172
PR: 219947
Exp-run by: antoine
|
|
Sun, 28 May 2017
|
[ 23:16 sunpoet ]
Fix OPTIONS_DEFAULT: remove NLS which is added by framework
Approved by: portmgr (blanket)
|
|
Thu, 11 May 2017
|
[ 14:28 girgen ] (Only the first 10 of 23 ports in this commit are shown above. )
PostgreSQL security updates
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 9.6.3, 9.5.7, 9.4.12, 9.3.17, and
9.2.21. This release fixes three security issues. It also patches a number of
other bugs reported over the last three months. Users who use the PGREQUIRESSL
environment variable to control connections, and users who rely on security
isolation between database users when using foreign servers, should update as
soon as possible. Other users should plan to update at the next convenient
downtime.
URL: https://www.postgresql.org/about/news/1746/
Security: CVE-2017-7484, CVE-2017-7485, CVE-2017-7486
Also modify rcorder and let sshd start before PostgreSQL, so any problems
during startup can be reviewed promplty from an ssh login.
|
|
Thu, 9 Feb 2017
|
[ 15:22 girgen ] (Only the first 10 of 15 ports in this commit are shown above. )
PostgreSQL 9.6.2, 9.5.6, 9.4.11, 9.3.16 and 9.2.20 released!
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 9.6.2, 9.5.6, 9.4.11, 9.3.16, and
9.2.20. This release includes fixes that prevent data corruption issues in
index builds and in certain write-ahead-log replay situations, which are
detailed below. It also patches over 75 other bugs reported over the last three
months.
Users should plan to apply this update at the next scheduled downtime.
Build corruption with CREATE INDEX CONCURRENTLY
There existed a race condition if CREATE INDEX CONCURRENTLY was called on a
column that had not been indexed before, then rows that were updated by
transactions running at the same time as the CREATE INDEX CONCURRENTLY command
could have been indexed incorrectly.
If you suspect this may have happened, the most reliable solution is to rebuild
affected indexes after installing this update.
This issue is present in the 9.2, 9.3, 9.4, 9.5, and 9.6 series of PostgreSQL.
URL https://www.postgresql.org/about/news/1733/
|
|
Tue, 29 Nov 2016
|
[ 18:46 mat ] (Only the first 10 of 55 ports in this commit are shown above. )
Mark some ports as not openssl-devel ready.
Sponsored by: Absolight
|
|
Sat, 19 Nov 2016
|
[ 18:21 jbeich ] (Only the first 10 of 85 ports in this commit are shown above. )
devel/icu: update to 58.1
Changes: http://site.icu-project.org/download/58
PR: 214384
Exp-run by: antoine
Approved by: office (bapt)
|
|
Fri, 28 Oct 2016
|
[ 17:55 danfe ] (Only the first 10 of 17 ports in this commit are shown above. )
Do not redefine DEBUG_DESC when its meaning more or less matches the default
option description. Those ports where it meant something more specific were
left untouched.
|
|
Thu, 27 Oct 2016
|
[ 14:04 girgen ] (Only the first 10 of 25 ports in this commit are shown above. )
Update PostgreSQL to latest versions.
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 9.6.1, 9.5.5, 9.4.10, 9.3.15,
9.2.19, and 9.1.24.
This release fixes two issues that can cause data corruption, which are
described in more detail below. It also patches a number of other bugs reported
over the last three months. The project urges users to apply this update at the
next possible downtime.
|
|
Sat, 24 Sep 2016
|
[ 11:06 tijl ] (Only the first 10 of 110 ports in this commit are shown above. )
- Update devel/icu to 57.1.
- Clean up the Makefile.
- Follow some upstream recommendations (--with-data-packaging=archive,
--disable-renaming, -DICU_NO_USER_DATA_OVERRIDE).
- Patch makefiles to install static libraries with INSTALL_DATA so they
aren't stripped.
- Patch config/mh-bsd-gcc to sync with config/mh-linux-gcc.
- Fix endianness detection in ICU. The code wanted to use BYTE_ORDER
defined in machine/endian.h, but this isn't visible because ICU is
compiled with _XOPEN_SOURCE. Patch the code to use _BYTE_ORDER instead.
- Compile ICU with C++11 compiler to enable move constructors.
- Patch ICU to fix a problem with atomics in the case of a C++11 compiler
without C++11 header <atomic> (like Clang on FreeBSD 9).
- Bump all ports that depend on it due to library version change.
- Add USES=compiler:c++0x to some ports that pick up -std=c++0x from ICU
pkgconfig files.
- Add USES=compiler:c++11-lib to graphics/libcdr01 because it also needs
a C++11 runtime library now. Add this to all ports that depend on it
so their executables load the right libstdc++.so on FreeBSD 9.
PR: 205120
Exp-run by: antoine
Approved by: portmgr (antoine)
|
|
Wed, 7 Sep 2016
|
[ 01:57 girgen ]
Fix plist problem for postgresql-9.6 [1]
Fix spelling while here [2]
Pointed out by: matthew [1], bcr [2]
Pointy hat to: girgen
|
|
Mon, 5 Sep 2016
|
[ 11:59 girgen ]
Fix broken package name for PostgreSQL 9.6 RC1
Fix bad pkg-plist for postgresql 9.6 server
|
[ 11:15 girgen ] (Only the first 10 of 32 ports in this commit are shown above. )
Add PostgreSQL-9.6 RC1
Please read the entry from 20160905 in UPDATING:
daemon user has changed to `postgres'
ICU is default on
|
|
Thu, 11 Aug 2016
|
[ 18:35 ohauer ]
- fix sizes
- s/USE_OPENSSL/USES=ssl/
assumed OK for commit ~1h after first notify about wrong sizes in distinfo
|
[ 16:39 girgen ] (Only the first 10 of 16 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 9.5.4, 9.4.9, 9.3.14, 9.2.18 and
9.1.23. This release fixes two security issues. It also patches a number of
other bugs reported over the last three months. Users who rely on security
isolation between database users should update as soon as possible. Other users
should plan to update at the next convenient downtime.
If you are using the ICU patch, please consult UPDATING.
Improve periodic cleanup, suggested by claudius (at) ambtec.de. [1]
PR: 210941 [1]
Security: CVE-2016-5423, CVE-2016-5424
|
|
Sat, 9 Jul 2016
|
[ 13:16 cmt ]
do not strip binaries when building with DTRACE
stripping would destroy some probes and might result in instable
behaviour when trying to access those probes.
PR: 204314
Approved by: rene (mentor), maintainer-timeout
|
|
Wed, 6 Jul 2016
|
[ 22:10 mat ] (Only the first 10 of 74 ports in this commit are shown above. )
Bump PORTREVISION for the icu revert.
This time not bumping lang/php70, but devel/php70-intl which is the one
really depending on icu.
PR: 205120
With hat: portmgr
Sponsored by: Absolight
|
[ 07:34 gahr ] (Only the first 10 of 64 ports in this commit are shown above. )
devel/icu: bump PORTREVISION on dependent ports
|
|
Thu, 12 May 2016
|
[ 22:36 girgen ] (Only the first 10 of 15 ports in this commit are shown above. )
Update PostgreSQL to latest versions
URL: http://www.postgresql.org/docs/9.5/static/release-9-5-3.html
|
|
Fri, 1 Apr 2016
|
[ 14:00 mat ] (Only the first 10 of 5103 ports in this commit are shown above. )
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.
With hat: portmgr
Sponsored by: Absolight
|
|
Thu, 31 Mar 2016
|
[ 14:49 girgen ] (Only the first 10 of 12 ports in this commit are shown above. )
Update PostgreSQL 9.1, 9.2 9.3 and 9.4 to latest versions.
URL: http://www.postgresql.org/about/news/1656/
|
|
Sat, 13 Feb 2016
|
[ 22:42 girgen ] (Only the first 10 of 22 ports in this commit are shown above. )
Update PostgreSQL to latest versions.
Security Fixes for Regular Expressions, PL/Java
This release closes security hole CVE-2016-0773, an issue with regular
expression (regex) parsing. Prior code allowed users to pass in expressions
which included out-of-range Unicode characters, triggering a backend crash.
This issue is critical for PostgreSQL systems with untrusted users or which
generate regexes based on user input.
The update also fixes CVE-2016-0766, a privilege escalation issue for users of
PL/Java. Certain custom configuration settings (GUCS) for PL/Java will now be
modifiable only by the database superuser
URL: http://www.postgresql.org/about/news/1644/
Security: CVE-2016-0773, CVE-2016-0766
|
|
Wed, 13 Jan 2016
|
[ 10:36 girgen ] (Only the first 10 of 13 ports in this commit are shown above. )
Some binaries where moved from contrib to base in 9.5, like pgbench and
pg_upgrade. Other where added in 9.5, but the port failed to install them.
Make sure they are properly installed by the correct port (-client or -server)
[1]
Remove unused and hence confusing OSSP_UUID parameters from Makefile [2]
Add options to allow user to be set for the backup script in periodic.
Add this option only to 9.5 for now. It will be updated to other servers at
next regular patch release. [3]
The path to perl in hard coded into pgxs/src/Makefile.global which is
then installed. Hence, we must depend on perl when that file is installed.
Noticed by: Paul Guyot [1]
PR: 192387 [2]
PR: 172110 [3]
PR: 206046 [4]
|
|
Thu, 15 Oct 2015
|
[ 14:55 mat ] (Only the first 10 of 135 ports in this commit are shown above. )
Drop 8 support.
With hat: portmgr
Sponsored by: Absolight
Differential Revision: https://reviews.freebsd.org/D3694
|
|
Thu, 8 Oct 2015
|
[ 21:25 girgen ] (Only the first 10 of 27 ports in this commit are shown above. )
Update PostgreSQL port to latest version.
Two security issues have been fixed in this release which affect users
of specific PostgreSQL features:
CVE-2015-5289: json or jsonb input values constructed from arbitrary
user input can crash the PostgreSQL server and cause a denial of
service.
CVE-2015-5288: The crypt( function included with the optional pgCrypto
extension could be exploited to read a few additional bytes of memory.
No working exploit for this issue has been developed.
This update will also disable SSL renegotiation by default;
previously, it was enabled by default. SSL renegotiation will be
removed entirely in PostgreSQL versions 9.5 and later.
URL: http://www.postgresql.org/about/news/1615/
Security: CVE-2015-5288 CVE-2015-5289
|
|
Tue, 6 Oct 2015
|
[ 08:47 girgen ]
Fix broken XML support.
PR: ports/202649
|
|
Fri, 24 Jul 2015
|
[ 06:05 bapt ]
Really fix ldap option
|
|
Wed, 22 Jul 2015
|
[ 23:20 bapt ]
Fix ldap option
|
[ 23:10 bapt ]
Only defined options marked as server only for the servers
Remove (server) from the description
|
[ 22:56 bapt ]
UNIQUENAME is not used anymore for long to save options
|
[ 22:45 bapt ] (Only the first 10 of 12 ports in this commit are shown above. )
Simplify a bit the Makefiles
Use OPTIONS_SUB to automatically PLIST_SUB
Use OPTIONS helpers
|
[ 21:46 bapt ] (Only the first 10 of 35 ports in this commit are shown above. )
Cleanup plist and avoid useless @exec
|
|
Fri, 12 Jun 2015
|
[ 13:00 girgen ]
Update PostgreSQL to latest versions.
Earlier update releases attempted to fix an issue in PostgreSQL 9.3 and 9.4
with "multixact wraparound", but failed to account for issues doing multixact
cleanup during crash recovery. This could cause servers to be unable to restart
after a crash. As such, all users of 9.3 and 9.4 should apply this update as
soon as possible.
URL: http://www.postgresql.org/about/news/1592/
|
|
Fri, 5 Jun 2015
|
[ 14:57 girgen ]
Update PostgreSQL to latest versions.
The update is mostly to fix the file persmission problem described
in the URL below. You might want to wait until next upgrade, depending
on you local configuration.
URL: http://www.postgresql.org/about/news/1590/
|
|
Fri, 22 May 2015
|
[ 23:22 girgen ] (Only the first 10 of 19 ports in this commit are shown above. )
Update PostgreSQL ports to latest version.
Data Corruption Fix
For users of PostgreSQL versions 9.3 or 9.4, this release fixes a problem where
the database will fail to protect against "multixact wraparound", resulting in
data corruption or loss. Users with a high transaction rate (1 million or more
per hour) in a database with many foreign keys are especially vulnerable. We
strongly urge all users of 9.4 and 9.3 to update their installations in the
next few days.
Users of versions 9.2 and earlier are not affected by this issue.
Security: fc38cd83-00b3-11e5-8ebd-0026551a22dc
|
|
Thu, 14 May 2015
|
[ 10:15 mat ] (Only the first 10 of 1814 ports in this commit are shown above. )
MASTER_SITES cleanup.
- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.
While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.
Also, replace some EXTRACT_SUFX occurences with USES=tar:*.
Checked by: make fetch-urlall-list
With hat: portmgr
Sponsored by: Absolight
|
|
Sun, 19 Apr 2015
|
[ 11:12 girgen ]
Commit the missing part of last commit: Chase upcoming update of ICU to 5.5.
|
|
Sat, 18 Apr 2015
|
[ 12:37 girgen ]
Chase upcoming update of ICU to 5.5.
|
|
Sun, 5 Apr 2015
|
[ 09:00 girgen ]
remove redundant cpe markers on the slave ports
|
|
Wed, 25 Mar 2015
|
[ 09:33 marino ] (Only the first 10 of 29 ports in this commit are shown above. )
databases category: Remove $PTHREAD_LIBS
Note: virtuoso did not pass check-plist from before, so it was fixed.
approved by: PTHREAD blanket
|
|
Fri, 20 Mar 2015
|
[ 08:58 robak ]
databases/postgresql92-server: add CPE information
- Maintainer's timeout (pgsql@FreeBSD.org)
PR: 197487
Submitted by: Shun <shun.fbsd.pr@dropcut.net>
|
|
Sat, 7 Feb 2015
|
[ 17:05 girgen ]
Revert the change from readline to libedit, and instead make libedit optional.
PR: ports/197362
|
|
Thu, 5 Feb 2015
|
[ 22:54 girgen ] (Only the first 10 of 46 ports in this commit are shown above. )
Update PostgreSQL-9.x to latests versions.
This update fixes multiple security issues reported in PostgreSQL over the past
few months. All of these issues require prior authentication, and some require
additional conditions, and as such are not considered generally urgent.
However, users should examine the list of security holes patched below in case
they are particularly vulnerable.
Security: CVE-2015-0241,CVE-2015-0242,CVE-2015-0243,
CVE-2015-0244,CVE-2014-8161
|
|
Wed, 12 Nov 2014
|
[ 09:53 girgen ]
Revert r247147.
We need -pthread in LDFLAGS for threaded extensions like plv8js to work.
PR: 175783
Submitted by: Li-Wen Hsu <lwhsu@FreeBSD.org>
|
|
Wed, 10 Sep 2014
|
[ 13:34 bapt ]
Turn OPTIONS_SINGLE KRB5 into an OPTIONS_RADIO like it is supposed to be
PR: 193451
Submitted by: dmitry2004@yandex.ru
|
|
Mon, 25 Aug 2014
|
[ 17:53 crees ] (Only the first 10 of 39 ports in this commit are shown above. )
Convert pgsql ports to use USES+=pgsql
Reviewed by: bapt
|
|
Wed, 30 Jul 2014
|
[ 18:21 crees ] (Only the first 10 of 20 ports in this commit are shown above. )
Update to the latest snapshots.
uuid-ossp patch has been outdated with irrelevant changes (for us),
so massage back in.
In head of postgresql, this is handled properly, so eventually the ossp patches
can go.
|
|
Thu, 24 Jul 2014
|
[ 18:34 tijl ] (Only the first 10 of 208 ports in this commit are shown above. )
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD
databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip
databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample (Only the first 15 lines of the commit message are shown above )
|
|
Tue, 24 Jun 2014
|
[ 22:34 bapt ]
Properly call MAKE_CMD
|
|
Mon, 9 Jun 2014
|
[ 21:57 girgen ]
Prepare for upcoming ICU-5.3 upgrade.
|
|
Wed, 16 Apr 2014
|
[ 18:28 zeising ] (Only the first 10 of 1008 ports in this commit are shown above. )
The FreeBSD x11@ and graphics team proudly presents
a zeising, kwm production, with help from dumbbell, bdrewery:
NEW XORG ON FREEBSD 9-STABLE AND 10-STABLE
This update switches over to use the new xorg stack by default on FreeBSD 9
and 10 stable, on osversions where vt(9) is available.
It is still possible to use the old stack by specifying WITHOUT_NEW_XORG in
/etc/make.conf .
FreeBSD 8-STABLE and released versions of FreeBSD still use
the old version.
A package repository with binary packages for new xorg will
be available soon.
This patch also contains updates of libxcb and related ports, pixman, as well (Only the first 15 lines of the commit message are shown above )
|
|
Thu, 20 Mar 2014
|
[ 13:43 girgen ] (Only the first 10 of 25 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all supported
version of the database system, including versions 9.3.4, 9.2.8, 9.1.13,
9.0.17, and 8.4.21. This minor release fixes a data corruption issue with
replication and crash recovery in version 9.3, as well as several other minor
issues in all versions. All users of version 9.3 are urged to update their
installations at the next possible downtime. Users of older versions should
update at their convenience.
The data corruption issue in PostgreSQL 9.3 affects binary replication
standbys, servers being recovered from point-in-time-recovery backup, and
standalone servers which recover from a system crash. The bug causes
unrecoverable index corruption during recovery due to incorrect replay of row
locking operations. This can then cause query results to be inconsistent
depending on whether or not an index is used, and eventually lead to primary
key violations and similar issues. For this reason, users are encouraged to (Only the first 15 lines of the commit message are shown above )
|
|
Wed, 26 Feb 2014
|
[ 17:24 antoine ] (Only the first 10 of 38 ports in this commit are shown above. )
Stage support
Reviewed by: postgresql@
Tested by: miwi and me
|
|
Thu, 20 Feb 2014
|
[ 18:11 girgen ] (Only the first 10 of 16 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an important
update to all supported versions of the PostgreSQL database system,
which includes minor versions 9.3.3, 9.2.7, 9.1.12, 9.0.16, and
8.4.20. This update contains fixes for multiple security issues, as
well as several fixes for replication and data integrity issues. All
users are urged to update their installations at the earliest
opportunity, especially those using binary replication or running a
high-security application.
This update fixes CVE-2014-0060, in which PostgreSQL did not properly
enforce the WITH ADMIN OPTION permission for ROLE management. Before
this fix, any member of a ROLE was able to grant others access to the
same ROLE regardless if the member was given the WITH ADMIN OPTION
permission. It also fixes multiple privilege escalation issues,
including: CVE-2014-0061, CVE-2014-0062, CVE-2014-0063, CVE-2014-0064,
CVE-2014-0065, and CVE-2014-0066. More information on these issues can
be found on our security page and the security issue detail wiki page.
Security: CVE-2014-0060,CVE-2014-0061,CVE-2014-0062,CVE-2014-0063
CVE-2014-0064,CVE-2014-0065,CVE-2014-0066,CVE-2014-0067
|
|
Mon, 10 Feb 2014
|
[ 16:32 girgen ] (Only the first 10 of 11 ports in this commit are shown above. )
Chase ICU update
|
|
Fri, 7 Feb 2014
|
[ 11:44 bapt ] (Only the first 10 of 229 ports in this commit are shown above. )
Chase boost and icu bump
While here convert some LIB_DEPENDS
|
|
Wed, 11 Dec 2013
|
[ 18:08 bapt ] (Only the first 10 of 103 ports in this commit are shown above. )
In preparation for making libtool generate libraries with a sane name, fix all
LIB_DEPENDS in databases
|
|
Thu, 5 Dec 2013
|
[ 15:59 girgen ] (Only the first 10 of 11 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released a critical update
to all supported versions of the PostgreSQL database system, which
includes minor versions 9.3.2, 9.2.6, 9.1.11, 9.0.15, and 8.4.19. This
update fixes three serious data-loss bugs affecting replication and
database maintenance. All users are urged to update their
installations at the earliest opportunity.
URL: http://www.postgresql.org/about/news/1492/
|
|
Tue, 15 Oct 2013
|
[ 17:17 sunpoet ] (Only the first 10 of 15 ports in this commit are shown above. )
- Remove DISTV: only used in PKGNAMESUFFIX and complained by portlint
- Convert to new LIB_DEPENDS format for postgresql*-contrib
Submitted by: sunpoet (myself)
Reviewed by: crees (pgsql)
Approved by: jgh (pgsql)
|
|
Sat, 12 Oct 2013
|
[ 00:59 girgen ] (Only the first 10 of 12 ports in this commit are shown above. )
Update PostgreSQL ports to 9.3.1, 9.2.5, 9.1.10, 9.0.14, and 8.4.18.
Note that users of the hstore extension on version 9.3 must take an additional,
post upgrade step of running "ALTER EXTENSION hstore UPDATE" in each database
after update.
URL: http://www.postgresql.org/about/news/1487/
|
|
Thu, 10 Oct 2013
|
[ 00:09 jgh ] (Only the first 10 of 23 ports in this commit are shown above. )
- Fix pkg name collision
Reviewed by: pgsql@
With hat: pgsql@
|
|
Mon, 7 Oct 2013
|
[ 20:03 jgh ] (Only the first 10 of 19 ports in this commit are shown above. )
- revert r329725
Reported by: qat@
With hat: pgsql@
|
[ 19:04 jgh ] (Only the first 10 of 20 ports in this commit are shown above. )
- Fix pkg name collision
Reviewed by: crees@
With hat: pgsql@
|
|
Fri, 20 Sep 2013
|
[ 16:13 bapt ] (Only the first 10 of 927 ports in this commit are shown above. )
Add NO_STAGE all over the place in preparation for the staging support (cat:
databases)
|
|
Sun, 7 Jul 2013
|
[ 00:15 jgh ]
- convert from USE_GMAKE to USES=gmake
- trim historical headers
With hat: pgsql@
|
|
Sun, 12 May 2013
|
[ 21:09 girgen ]
Update postgresql93-client to properly depend on pkgconfig
Reported by: Ports-QAT
|
|
Mon, 6 May 2013
|
[ 18:37 crees ]
Don't build client with ldap-- this is unnecessary and causes build breakage
for package building because of lack of LDAP installation.
PR: ports/177381
Tested by: Chris Dukes <chris.dukes.aix@gmail.com>
|
|
Sun, 28 Apr 2013
|
[ 18:15 crees ]
databases/postgresql-server ports: Unbreak NLS
Submitted by: bapt
|
[ 14:00 crees ]
databases/postgresql{84,91,92}-server: Readd bsd.port.pre.mk; it is required for
checking existence of files in FILESDIR
|
|
Fri, 26 Apr 2013
|
[ 15:10 bapt ] (Only the first 10 of 20 ports in this commit are shown above. )
Convert USE_GETTEXT -> USES=gettext
While here:
- Trim headers
- Remove some useless pre.mk/post.mk
- Convert to optionsng
|
|
Thu, 4 Apr 2013
|
[ 13:21 girgen ] (Only the first 10 of 16 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released a security
update to all current versions of the PostgreSQL database system,
including versions 9.2.4, 9.1.9, 9.0.13, and 8.4.17. This update
fixes a high-exposure security vulnerability in versions 9.0 and
later. All users of the affected versions are strongly urged to apply
the update *immediately*.
A major security issue (for versions 9.x only) fixed in this release,
[CVE-2013-1899](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899),
makes it possible for a connection request containing a database name
that begins with "-" to be crafted that can damage or destroy files
within a server's data directory. Anyone with access to the port the
PostgreSQL server listens on can initiate this request. This issue was
discovered by Mitsumasa Kondo and Kyotaro Horiguchi of NTT Open Source
Software Center. (Only the first 15 lines of the commit message are shown above )
|
|
Fri, 8 Feb 2013
|
[ 07:54 girgen ] (Only the first 10 of 19 ports in this commit are shown above. )
PostgreSQL 9.2.3, 9.1.8, 9.0.12, 8.4.16 and 8.3.23 released
This update fixes a denial-of-service (DOS) vulnerability. All users
should update their PostgreSQL installations as soon as possible.
The security issue fixed in this release, CVE-2013-0255, allows a
previously authenticated user to crash the server by calling
an internal function with invalid arguments.
URL: http://www.postgresql.org/about/news/1446/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0255
|
|
Tue, 22 Jan 2013
|
[ 18:32 crees ]
Remove versioned PKGNAMESUFFIX from -plpython ports; the versions differ anyway
Submitted by: sunpoet
|
[ 17:59 crees ]
Fix package build for -plpython
Although the plpython work was done by rm, this problem was actually my fault
Noticed by: sunpoet
|
|
Thu, 27 Dec 2012
|
[ 21:11 jgh ]
- remove broken configurable non-default user/group for postgresql-server
- while here fix formatting of new header
With hat: pgsql@
|
|
Wed, 19 Dec 2012
|
[ 16:13 girgen ]
Chase ICU update properly and bump PORTREVISION
|
[ 16:03 girgen ]
Chase ICU update to 50
|
|
Mon, 10 Dec 2012
|
[ 16:44 girgen ]
Feature safe: yes
PR: 174336
fix typo
|
|
Thu, 6 Dec 2012
|
[ 16:40 girgen ] (Only the first 10 of 12 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all current
versions of the PostgreSQL database system, including versions 9.2.2, 9.1.7,
9.0.11, 8.4.15, and 8.3.22. Users of PostgreSQL Hot Standby replication
should update at the next possible opportunity. Other users should update
at their next maintenance window.
Deprecate the 8.3.22 version, since it is near end-of-life.
URL: http://www.postgresql.org/about/news/1430/
Feature safe: yes
|
|
Tue, 16 Oct 2012
|
[ 17:28 jgh ]
- adopt optionsNG
with hat pgsql@
Feature safe: yes
|
|
Mon, 24 Sep 2012
|
[ 22:03 girgen ]
Update PostgreSQL to 9.2.1, 9.1.6, 9.0.10, 8.4.14 and 8.3.21 respectively.
This update fixes critical issues for major versions 9.1 and 9.2, and
users running those versions should apply it as soon as possible.
URL: http://www.postgresql.org/about/news/1416/
|
|
Mon, 10 Sep 2012
|
[ 11:53 girgen ]
PostgreSQL 9.2 is released.
"PostgreSQL 9.2 will ship with native JSON support,
covering indexes, replication and performance improvements,
and many more features."
Read more at the web site.
URL: http://www.postgresql.org/about/news/1415/
|
|
Mon, 27 Aug 2012
|
[ 14:16 girgen ]
update postgresql 9.2 to RC1
|
|
Sun, 19 Aug 2012
|
[ 15:24 crees ]
Use pre-build instead of pre-everything for backupwarning-- stop making people
wait before fetching etc
Suggested by: ohauer
Discussed with: girgen
While here, fix package for postgresql92-server
|
|
Fri, 17 Aug 2012
|
[ 20:32 girgen ]
update postgresql 9.2 to beta4
|
|
Fri, 10 Aug 2012
|
[ 11:10 crees ]
Fix fetch
Submitted by: beat
|
|
Tue, 7 Aug 2012
|
[ 07:49 girgen ]
The PostgreSQL Global Development Group announces the third beta release
of PostgreSQL 9.2, which will include major increases in performance and
both vertical and horizontal scalability. The PostgreSQL Project asks
all users to download and begin testing 9.2 beta 3 as soon as possible.
9.2 Beta 3 includes multiple bug fixes to earlier beta releases, fixing
almost all known outstanding issues as of last week. Among them are:
* Multiple documentation updates
* Apply translation updates
* Fixes to transaction log and replication issues with SP-GiST
* Replace libpq's "row processor" API with a "single row" mode.
* Fix WITH issue with set operations (UNION/INTERSECT/EXCEPT)
* Improvements to Autovacuum cancellation
* Multiple pg_upgrade fixes (Only the first 15 lines of the commit message are shown above )
|
|
Mon, 4 Jun 2012
|
[ 11:00 girgen ] (Only the first 10 of 21 ports in this commit are shown above. )
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL database system, including versions 9.1.4,
9.0.8, 8.4.12 and 8.3.19.
Users of the crypt(text, text) function with DES encryption in the optional
pg_crypto module should upgrade their installations immediately, if you have'nt
already updated since the port was patched on May 30. All other database
administrators are urged to upgrade your version of PostgreSQL at the
next scheduled downtime.
URL: http://www.postgresql.org/about/news/1398/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2143
Fix incorrect password transformation in contrib/pgcryptoâs DES
crypt() function
This was fixed in a patch release for the FreeBSD ports on May 30.
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2655
Ignore SECURITY DEFINER and SET attributes for a procedural
languageâs call handle
|
|
Wed, 30 May 2012
|
[ 22:26 jgh ] (Only the first 10 of 12 ports in this commit are shown above. )
- Address postgresql*-servers for crypt vulnerability (CVE-2012-2143)
http://www.postgresql.org/about/news/1397/
With hat: pgsql
|
|
Tue, 15 May 2012
|
[ 22:14 girgen ] (Only the first 10 of 14 ports in this commit are shown above. )
The PostgreSQL Global Development Group announces the beta release of
PostgreSQL 9.2, which will include major increases in performance and
both vertical and horizontal scalability. The PostgreSQL Project asks
all users to download and begin testing 9.2 Beta as soon as possible.
Major performance and scalability advances in this version include:
* Index-only scans, allowing users to avoid inefficient scans of base
tables
* Enhanced read-only workload scaling to 64 cores and over 300,000
queries per second
* Improvements to data write speeds, including group commit
* Reductions in CPU power consumption
* Cascading replication, supporting geographically distributed standby
databases (Only the first 15 lines of the commit message are shown above )
|
|
Fri, 11 May 2012
|
[ 08:35 girgen ]
Repository copy from postgresql91-server
|
Number of commits found: 99 |
As an Amazon Associate I earn from qualifying purchases.