FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Commit found by message id
Tue, 1 Feb 2011
[ 14:48:17 girgen ] Original commit 
postgresql82-server databases  Deleted Forbidden Deprecated Expired Ignore files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql83-server databases  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The most advanced open-source database available anywhere
postgresql84-server databases files touched by this commit  An older version of this port was marked as vulnerable. The most advanced open-source database available anywhere
postgresql90-server databases files touched by this commit  An older version of this port was marked as vulnerable. The most advanced open-source database available anywhere
Update to versions 9.0.3, 8.4.7, 8.3.14 and 8.2.20.

This update includes a security fix which prevents a buffer overrun in
the contrib module intarray's input function for the query_int type.
This bug is a security risk since the function's return address could
be overwritten by malicious code.

All supported versions of PostgreSQL are impacted. However, the
affected contrib module is optional. Only users who have installed the
intarray module in their database are affected. See the CVE Advisory
at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4015

This release includes 63 bugfixes, including:

- Avoid unexpected conversion overflow in planner for distant date values
- Fix assignment to an array slice that is before the existing range
of subscripts
- Fix pg_restore to do the right thing when escaping large objects
- Avoid failures when EXPLAIN tries to display a simple-form CASE expression
- Improved build support for Windows version
- Fix bug in contrib/seg's GiST picksplit algorithm which caused
performance degredation

The 9.0.3 update also contains several fixes for issues with features
introduced or changed in version 9.0:

- Ensure all the received WAL is fsync'd to disk before exiting walreceiver
- Improve performance of walreceiver by avoiding excess fsync activity
- Make ALTER TABLE revalidate uniqueness and exclusion constraints when needed
- Fix EvalPlanQual for UPDATE of an inheritance tree when the tables
are not all alike

PR:             ports/154436
Security:       http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4015
Feature safe:   yes
Approved by:    portmgr

Number of ports [& non-ports] in this commit: 4

Showing files for just one port: databases/postgresql90-server

show all files

hide all files


2 files found
ActionRevisionLinksFile
modify 1.214 View diff View revision /ports/head/databases/postgresql90-server/Makefile
modify 1.80 View diff View revision /ports/head/databases/postgresql90-server/distinfo
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
mingw32-opensslApr 23
opensslApr 23
py-djangoApr 23
py-django-develApr 23
py-django14Apr 23
py-django15Apr 23
bugzilla40*Apr 18
bugzilla40*Apr 18
bugzilla42*Apr 18
bugzilla42*Apr 18
bugzilla44*Apr 18
bugzilla44*Apr 18
curlApr 11
dbus-glibApr 11
libaudiofileApr 11

14 vulnerabilities affecting 20 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24374
Broken 178
Deprecated 91
Ignore 533
Forbidden 6
Restricted 263
No CDROM 108
Vulnerable 29
Expired 24
Set to expire 78
Interactive 22
new 24 hours 5
new 48 hours8
new 7 days17
new fortnight34
new month133


Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.