FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Commit found by message id
Thu, 20 May 2010
[ 15:43:39 girgen ] Original commit 
postgresql-contrib databases  Deleted files touched by this commit  An older version of this port was marked as vulnerable. The contrib utilities from the PostgreSQL distribution
postgresql74-contrib databases  Deleted Deprecated Expired files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql74-server databases  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql80-contrib databases  Deleted Deprecated Expired files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql80-server databases  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql81-contrib databases  Deleted files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql81-server databases  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql82-contrib databases  Deleted Forbidden Deprecated Expired Ignore files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql82-server databases  Deleted Forbidden Deprecated Expired Ignore files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql83-contrib databases  Deleted Deprecated Expired files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql83-server databases  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql84-contrib databases files touched by this commit The contrib utilities from the PostgreSQL distribution
postgresql84-server databases files touched by this commit  An older version of this port was marked as vulnerable. The most advanced open-source database available anywhere
head/MOVED
Update all PostgreSQL ports to latest version.

Remove postgresql-contrib in favour for postgresqlNN-contrib.
This way we will get packages built, which is nice.

Security:       CVE-2010-1169
Security:       CVE-2010-1170

The PostgreSQL Project today released minor versions updating all active
branches of the PostgreSQL object-relational database system, including
versions 8.4.4, 8.3.11, 8.2.17, 8.1.21, 8.0.25, and 7.4.29. This release
fixes moderate-risk security issues with PL/perl and PL/tcl, as well as
a data corruption issue with standby databases.  Users of any of these
three features should update their PostgreSQL installations immediately.

The PL/perl security fix closes a security hole in PL/perl
procedures which could allow privilege escalation on the host system,
caused by a flaw in Safe.pm; see CVE-2010-1169 and CVE-2010-1447 for
details.  A second patch prevents PL/tcl's pltcl_modules table from
being subverted in order to run arbitrary Tcl scripts; see
CVE-2010-1170.  These issues only affect users who have enabled either
of these two stored procedure languages.

Also corrected is use of the command ALTER TABLE SET TABLESPACE, which
previously could cause data corruption on Warm Standby database slaves.
This issue affects only version 8.4.

There are also 21 other bug fixes in this release, some of which apply
only to version 8.4, and a few of which are specifically for Windows.
While these are generally fixes for minor issues, among the changes are:

     * Fix for a combinational crash condition
     * Prevent normal users from resetting some GUCs in
       their own role definitions
     * Correctly apply constraint exclusion in UPDATE and DELETE queries
     * Minor fixes for WAL archiving
     * Update timezone data for 12 zones

See the release notes for a full list of changes with details.

Releasenotes at http://www.postgresql.org/docs/current/static/release.html

Number of ports [& non-ports] in this commit: 14

Showing files for just one port: databases/postgresql83-server

show all files

hide all files


5 files found
ActionRevisionLinksFile
modify 1.197 View diff View revision /ports/head/databases/postgresql83-server/Makefile
modify 1.74 View diff View revision /ports/head/databases/postgresql83-server/distinfo
modify 1.11 View diff View revision /ports/head/databases/postgresql83-server/files/502.pgsql
modify 1.2 View diff View revision /ports/head/databases/postgresql83-server/files/pkg-message-client.in
modify 1.24 View diff View revision /ports/head/databases/postgresql83-server/pkg-plist-server
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
i2pJul 28
i2pJul 28
i2pJul 28
bugzilla44Jul 25
apache22Jul 24
apache22-event-mpmJul 24
apache22-itk-mpmJul 24
apache22-peruser-mpmJul 24
apache22-worker-mpmJul 24
firefoxJul 23
firefox-develJul 23
firefox-esrJul 23
firefox10Jul 23
firefox15Jul 23
firefox3Jul 23

11 vulnerabilities affecting 34 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24401
Broken 181
Deprecated 838
Ignore 517
Forbidden 16
Restricted 263
No CDROM 101
Vulnerable 27
Expired 4
Set to expire 825
Interactive 13
new 24 hours 1
new 48 hours6
new 7 days17
new fortnight35
new month104


Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.