notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Want a good monitor light? See my photosAll times are UTC
Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

FInally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combinatio for a given watch list. This is what FreshPorts will look for.

Port details
postgresql90-server The most advanced open-source database available anywhere
9.0.23 databases Deleted on this many watch lists=12 search for ports that depend on this port This port version is marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout 9.0.23Version of this port present on the latest quarterly branch.
Deprecated DEPRECATED: "EOL was reached in September 2015"
Expired This port expired on: 2016-04-13
Maintainer: pgsql@FreeBSD.org search for ports maintained by this maintainer
Port Added: 2010-09-15 19:06:48
Last Update: 2016-07-01 23:25:18
SVN Revision: 417905
People watching this port, also watch:: postfix
License: not specified in port
WWW:
http://www.postgresql.org/
Description:
PostgreSQL is a sophisticated Object-Relational DBMS, supporting almost all SQL constructs, including subselects, transactions, and user-defined types and functions. It is the most advanced open-source database available anywhere. Commercial Support is also available. The original Postgres code was the effort of many graduate students, undergraduate students, and staff programmers working under the direction of Professor Michael Stonebraker at the University of California, Berkeley. In 1995, Andrew Yu and Jolly Chen took on the task of converting the DBMS query language to SQL and created a new database system which came to known as Postgres95. Many others contributed to the porting, testing, debugging and enhancement of the Postgres95 code. As the code improved, and 1995 faded into memory, PostgreSQL was born. PostgreSQL development is presently being performed by a team of Internet developers who are now responsible for all current and future development. The development team coordinator is Marc G. Fournier (scrappy@PostgreSQL.ORG). Support is available from the PostgreSQL developer/user community through the support mailing list (questions@PostgreSQL.ORG). PostgreSQL is free and the complete source is available. WWW: http://www.postgresql.org/
Homepage    cgit ¦ GitHub ¦ GitHub ¦ GitLab ¦ SVNWeb

Manual pages:
FreshPorts has no man page information for this port.
pkg-plist: as obtained via: make generate-plist
There is no configure plist information for this port.
Dependency lines:
  • postgresql90-server>0:databases/postgresql90-server
No installation instructions:
This port has been deleted.
PKGNAME: postgresql90-server
Flavors: there is no flavor information for this port.
distinfo:
There is no distinfo for this port.

No package information for this port in our database
Sometimes this happens. Not all ports have packages.
Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. gmake : devel/gmake
  2. msgfmt : devel/gettext-tools
Library dependencies:
  1. libpq.so.5 : databases/postgresql90-client
  2. libintl.so : devel/gettext-runtime
NOTE: dependencies for deleted ports are notoriously suspect
This port is required by:
for Build

Deleted ports which required this port:

Expand this list of 3 deleted ports
  1. databases/ludia*
  2. databases/postgresql90-plpython*
  3. databases/postgresql90-pltcl*
  4. Collapse this list of deleted ports.
for Run

Deleted ports which required this port:

Expand this list of 5 deleted ports
  1. databases/ludia*
  2. databases/postgis*
  3. databases/postgresql90-plperl*
  4. databases/postgresql90-plpython*
  5. databases/postgresql90-pltcl*
  6. Collapse this list of deleted ports.
* - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

Configuration Options:
===> The following configuration options are available for postgresql90-server-9.0.23: DEBUG=off: Builds with debugging symbols DTRACE=off: Build with DTrace probes GSSAPI=off: Build with GSSAPI support ICU=off: Use ICU for unicode collation INTDATE=on: Builds with 64-bit date/time type LDAP=off: Build with LDAP authentication support NLS=on: Use internationalized messages OPTIMIZED_CFLAGS=off: Builds with compiler optimizations (-O3) PAM=off: Build with PAM Support SSL=on: Build with OpenSSL support TZDATA=on: Use internal timezone database ====> Build with kerberos provider support: you can only select none or one of them MIT_KRB5=off: Build with MIT kerberos support HEIMDAL_KRB5=off: Builds with Heimdal kerberos ===> Use 'make config' to modify these settings
Options name:
N/A
USES:
tar:bzip2 cpe gmake pgsql:9.0 gettext
FreshPorts was unable to extract/find any pkg message
Master Sites:
Expand this list (4 items)
Collapse this list.
  1. ftp://ftp.postgresql.org/pub/source/v9.0.23/
  2. http://distcache.FreeBSD.org/ports-distfiles/postgresql/
  3. http://ftp.postgresql.org/pub/source/v9.0.23/
  4. https://ftp.postgresql.org/pub/source/v9.0.23/
Collapse this list.

Number of commits found: 92

Commit History - (may be incomplete: for full details, see links to repositories near top of page)
CommitCreditsLog message
9.0.23
01 Jul 2016 23:25:18
Revision:417905Original commit files touched by this commit This port version is marked as vulnerable.
rene search for other commits by this committer
Prune empty postgresql90-* directories.
9.0.23
01 Jul 2016 17:45:51
Revision:417899Original commit files touched by this commit This port version is marked as vulnerable.
matthew search for other commits by this committer
Delete the now expired postgresql90 ports.  Upstream support for
postgresql-9.0.x was declared EoL in September 2015.

Summary:
Remove 9.0 from the list of postgresql versions available in ports

Disconnect postgresql90 ports from the build

Remove postgresql90-pgtcl port

Remove postgresql90-client port

Move the master postgreslXY-plperl makefile to postgresql95-plperl/Makefile.

Adjust include lines in other postgresqlXY-plperl ports
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.23
17 Jun 2016 23:28:05
Revision:417041Original commit files touched by this commit This port version is marked as vulnerable.
mat search for other commits by this committer
Rename all files containing a : in their filename.

While there, run make makepatch on affected ports, and rename patches
accordingly.

Sponsored by:	Absolight
9.0.23
19 May 2016 11:09:14
Revision:415503Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-messages

Approved by:	portmgr blanket
9.0.23
19 May 2016 10:21:25
Revision:415498Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-descrs, categories [a-f]*

Approved by:	portmgr blanket
9.0.23
16 May 2016 17:57:07
Revision:415347Original commit files touched by this commit This port version is marked as vulnerable.
rene search for other commits by this committer
Re-add databases/postgresql90-server, for now
databases/postgresql9*-pl{perl|python} need it.
9.0.23
16 May 2016 17:39:45
Revision:415344Original commit files touched by this commit Sanity Test Failure This port version is marked as vulnerable.
rene search for other commits by this committer
Remove expired ports:
2016-04-13 databases/postgresql90-contrib: "EOL was reached in September 2015"
2016-04-13 databases/postgresql90-pltcl: "EOL was reached in September 2015"
2016-04-13 databases/postgresql90-client: "EOL was reached in September 2015"
2016-04-13 databases/postgresql90-docs: "EOL was reached in September 2015"
2016-04-13 databases/postgresql90-server: "EOL was reached in September 2015"
9.0.23
13 Feb 2016 22:50:56
Revision:408836Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Deprecate PostgreSQL 9.0

EOL was reached in September 2015
http://www.postgresql.org/support/versioning/
9.0.23
13 Feb 2016 22:42:04
Revision:408835Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL to latest versions.

Security Fixes for Regular Expressions, PL/Java

This release closes security hole CVE-2016-0773, an issue with regular
expression (regex) parsing. Prior code allowed users to pass in expressions
which included out-of-range Unicode characters, triggering a backend crash.
This issue is critical for PostgreSQL systems with untrusted users or which
generate regexes based on user input.

The update also fixes CVE-2016-0766, a privilege escalation issue for users of
PL/Java.  Certain custom configuration settings (GUCS) for PL/Java will now be
modifiable only by the database superuser

URL:		http://www.postgresql.org/about/news/1644/
Security:	CVE-2016-0773, CVE-2016-0766
9.0.23
08 Oct 2015 21:25:01
Revision:398895Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL port to latest version.

Two security issues have been fixed in this release which affect users
of specific PostgreSQL features:

CVE-2015-5289: json or jsonb input values constructed from arbitrary
user input can crash the PostgreSQL server and cause a denial of
service.

CVE-2015-5288: The crypt( function included with the optional pgCrypto
extension could be exploited to read a few additional bytes of memory.
No working exploit for this issue has been developed.

This update will also disable SSL renegotiation by default;
previously, it was enabled by default.   SSL renegotiation will be
removed entirely in PostgreSQL versions 9.5 and later.

URL:		http://www.postgresql.org/about/news/1615/
Security:	CVE-2015-5288 CVE-2015-5289
9.0.22_1
22 Jul 2015 22:45:36
Revision:392699Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Simplify a bit the Makefiles

Use OPTIONS_SUB to automatically PLIST_SUB
Use OPTIONS helpers
9.0.22_1
22 Jul 2015 21:46:28
Revision:392696Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Cleanup plist and avoid useless @exec
9.0.22
12 Jun 2015 13:00:50
Revision:389267Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL to latest versions.

Earlier update releases attempted to fix an issue in PostgreSQL 9.3 and 9.4
with "multixact wraparound", but failed to account for issues doing multixact
cleanup during crash recovery. This could cause servers to be unable to restart
after a crash. As such, all users of 9.3 and 9.4 should apply this update as
soon as possible.

URL:	http://www.postgresql.org/about/news/1592/
9.0.21
05 Jun 2015 14:57:29
Revision:388585Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL to latest versions.
The update is mostly to fix the file persmission problem described
in the URL below. You might want to wait until next upgrade, depending
on you local configuration.
URL:	http://www.postgresql.org/about/news/1590/
9.0.20
22 May 2015 23:22:20
Revision:387089Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL ports to latest version.

Data Corruption Fix

For users of PostgreSQL versions 9.3 or 9.4, this release fixes a problem where
the database will fail to protect against "multixact wraparound", resulting in
data corruption or loss. Users with a high transaction rate (1 million or more
per hour) in a database with many foreign keys are especially vulnerable. We
strongly urge all users of 9.4 and 9.3 to update their installations in the
next few days.

Users of versions 9.2 and earlier are not affected by this issue.

Security:	fc38cd83-00b3-11e5-8ebd-0026551a22dc
9.0.19_1
19 Apr 2015 11:12:22
Revision:384279Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Commit the missing part of last commit: Chase upcoming update of ICU to 5.5.
9.0.19_1
18 Apr 2015 12:37:23
Revision:384223Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Chase upcoming update of ICU to 5.5.
9.0.19
05 Apr 2015 09:00:59
Revision:383272Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
remove redundant cpe markers on the slave ports
9.0.19
19 Mar 2015 22:08:17
Revision:381696Original commit files touched by this commit This port version is marked as vulnerable.
robak search for other commits by this committer
databases/postgresql90-server: add CPE information

- Maintainer's timeout (pgsql@FreeBSD.org)

PR:		197485
Submitted by:	Shun <shun.fbsd.pr@dropcut.net>
9.0.19
07 Feb 2015 17:18:49
Revision:378608Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
In previous commit,
"Revert the change from readline to libedit, and instead make libedit
optional.",
I failed to get the PORTREVISION set correctly. Fixed now.

PR:	ports/197362
9.0.19
05 Feb 2015 22:54:35
Revision:378500Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL-9.x to latests versions.

This update fixes multiple security issues reported in PostgreSQL over the past
few months. All of these issues require prior authentication, and some require
additional conditions, and as such are not considered generally urgent.
However, users should examine the list of security holes patched below in case
they are particularly vulnerable.

Security:	CVE-2015-0241,CVE-2015-0242,CVE-2015-0243,
		CVE-2015-0244,CVE-2014-8161
9.0.18
02 Aug 2014 07:01:54
Revision:363792Original commit files touched by this commit This port version is marked as vulnerable.
mva search for other commits by this committer
- Unbreak builds after the lang/python27 update (r363790)

Exp-run:	192242, 192244
9.0.18
30 Jul 2014 18:21:47
Revision:363500Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Update to the latest snapshots.

uuid-ossp patch has been outdated with irrelevant changes (for us),
so massage back in.

In head of postgresql, this is handled properly, so eventually the ossp patches
can go.
9.0.17
09 Jun 2014 21:57:43
Revision:357209Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Prepare for upcoming ICU-5.3 upgrade.
9.0.17
21 Mar 2014 08:15:26
Revision:348732Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Fix mistake with ossp-uuid: don't use --with-ossp-uuid, since it will need
the ossp library present, and then we never use it.
9.0.17
20 Mar 2014 13:43:16
Revision:348685Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group has released an update to all supported
version of the database system, including versions 9.3.4, 9.2.8, 9.1.13,
9.0.17, and 8.4.21. This minor release fixes a data corruption issue with
replication and crash recovery in version 9.3, as well as several other minor
issues in all versions.  All users of version 9.3 are urged to update their
installations at the next possible downtime.  Users of older versions should
update at their convenience.

The data corruption issue in PostgreSQL 9.3 affects binary replication
standbys, servers being recovered from point-in-time-recovery backup, and
standalone servers which recover from a system crash. The bug causes
unrecoverable index corruption during recovery due to incorrect replay of row
locking operations.  This can then cause query results to be inconsistent
depending on whether or not an index is used, and eventually lead to primary
key violations and similar issues.  For this reason, users are encouraged to
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.16
26 Feb 2014 17:24:36
Revision:346217Original commit files touched by this commit This port version is marked as vulnerable.
antoine search for other commits by this committer
Stage support

Reviewed by:	postgresql@
Tested by:	miwi and me
9.0.16
20 Feb 2014 18:11:38
Revision:345257Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group has released an important
update to all supported versions of the PostgreSQL database system,
which includes minor versions 9.3.3, 9.2.7, 9.1.12, 9.0.16, and
8.4.20. This update contains fixes for multiple security issues, as
well as several fixes for replication and data integrity issues.  All
users are urged to update their installations at the earliest
opportunity, especially those using binary replication or running a
high-security application.

This update fixes CVE-2014-0060, in which PostgreSQL did not properly
enforce the WITH ADMIN OPTION permission for ROLE management. Before
this fix, any member of a ROLE was able to grant others access to the
same ROLE regardless if the member was given the WITH ADMIN OPTION
permission. It also fixes multiple privilege escalation issues,
including: CVE-2014-0061, CVE-2014-0062, CVE-2014-0063, CVE-2014-0064,
CVE-2014-0065, and CVE-2014-0066. More information on these issues can
be found on our security page and the security issue detail wiki page.

Security:	CVE-2014-0060,CVE-2014-0061,CVE-2014-0062,CVE-2014-0063
		CVE-2014-0064,CVE-2014-0065,CVE-2014-0066,CVE-2014-0067
9.0.15
10 Feb 2014 16:32:41
Revision:343650Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Chase ICU update
9.0.15
07 Feb 2014 11:45:14
Revision:343215Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Add forgotten bits from boost chasing
9.0.15
05 Dec 2013 15:59:53
Revision:335673Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group has released a critical update
to all supported versions of the PostgreSQL database system, which
includes minor versions 9.3.2, 9.2.6, 9.1.11, 9.0.15, and 8.4.19. This
update fixes three serious data-loss bugs affecting replication and
database maintenance.  All users are urged to update their
installations at the earliest opportunity.

URL:	http://www.postgresql.org/about/news/1492/
9.0.14
15 Oct 2013 17:17:06
Revision:330414Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Remove DISTV: only used in PKGNAMESUFFIX and complained by portlint
- Convert to new LIB_DEPENDS format for postgresql*-contrib

Submitted by:	sunpoet (myself)
Reviewed by:	crees (pgsql)
Approved by:	jgh (pgsql)
9.0.14
12 Oct 2013 00:59:50
Revision:330109Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL ports to 9.3.1, 9.2.5, 9.1.10, 9.0.14, and 8.4.18.

Note that users of the hstore extension on version 9.3 must take an additional,
post upgrade step of running "ALTER EXTENSION hstore UPDATE" in each database
after update.

URL:	http://www.postgresql.org/about/news/1487/
9.0.13
10 Oct 2013 00:09:35
Revision:329946Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
- Fix pkg name collision

Reviewed by: pgsql@
With hat: pgsql@
9.0.13
07 Oct 2013 20:03:38
Revision:329729Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
- revert r329725

Reported by: qat@
With hat: pgsql@
9.0.13
07 Oct 2013 19:04:04
Revision:329725Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
- Fix pkg name collision

Reviewed by: crees@
With hat: pgsql@
9.0.13
20 Sep 2013 16:13:49
Revision:327717Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
databases)
9.0.13
04 Apr 2013 13:21:23
Revision:315718Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group has released a security
update to all current versions of the PostgreSQL database system,
including versions 9.2.4, 9.1.9, 9.0.13, and 8.4.17. This update
fixes a high-exposure security vulnerability in versions 9.0 and
later. All users of the affected versions are strongly urged to apply
the update *immediately*.

A major security issue (for versions 9.x only) fixed in this release,
[CVE-2013-1899](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1899),
makes it possible for a connection request containing a database name
that begins with "-" to be crafted that can damage or destroy files
within a server's data directory. Anyone with access to the port the
PostgreSQL server listens on can initiate this request. This issue was
discovered by Mitsumasa Kondo and Kyotaro Horiguchi of NTT Open Source
Software Center.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.12
08 Feb 2013 07:54:10
Revision:311915Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
PostgreSQL 9.2.3, 9.1.8, 9.0.12, 8.4.16 and 8.3.23 released

This update fixes a denial-of-service (DOS) vulnerability.  All users
should update their PostgreSQL installations as soon as possible.

The security issue fixed in this release, CVE-2013-0255, allows a
previously authenticated user to crash the server by calling
an internal function with invalid arguments.

URL:	http://www.postgresql.org/about/news/1446/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0255
9.0.11
19 Dec 2012 16:03:59
Revision:309246Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Chase ICU update to 50
9.0.11
06 Dec 2012 16:40:36
Revision:308391Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group has released an update to all current
versions of the PostgreSQL database system, including versions 9.2.2, 9.1.7,
9.0.11, 8.4.15, and 8.3.22.  Users of PostgreSQL Hot Standby replication
should update at the next possible opportunity. Other users should update
at their next maintenance window.

Deprecate the 8.3.22 version, since it is near end-of-life.

URL:	http://www.postgresql.org/about/news/1430/

Feature safe: yes
9.0.10
24 Sep 2012 22:03:11
Revision:304804Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL to 9.2.1, 9.1.6, 9.0.10, 8.4.14 and 8.3.21 respectively.

This update fixes critical issues for major versions 9.1 and 9.2, and
users running those versions should apply it as soon as possible.

URL:	http://www.postgresql.org/about/news/1416/
9.0.9
17 Aug 2012 19:39:51
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
The PostgreSQL Global Development Group today released security updates for all
active branches
of the PostgreSQL database system, including versions 9.1.5, 9.0.9, 8.4.13 and
8.3.20. This
update patches security holes associated with libxml2 and libxslt, similar to
those affecting
other open source projects. All users are urged to update their installations at
the first
available opportunity.

This security release fixes a vulnerability in the built-in XML functionality,
and a vulnerability
in the XSLT functionality supplied by the optional XML2 extension. Both
vulnerabilities allow
reading of arbitrary files by any authenticated database user, and the XSLT
vulnerability
allows writing files as well. The fixes cause limited backwards compatibility
issues.
These issues correspond to the following two vulnerabilities:

CVE-2012-3488: PostgreSQL insecure use of libxslt
CVE-2012-3489: PostgreSQL insecure use of libxml2
This release also contains several fixes to version 9.1, and a smaller number of
fixes to older versions, including:
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.8
04 Jun 2012 11:00:52
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL database system, including versions 9.1.4,
9.0.8, 8.4.12 and 8.3.19.

Users of the crypt(text, text) function with DES encryption in the optional
pg_crypto module should upgrade their installations immediately, if you have'nt
already updated since the port was patched on May 30.  All other database
administrators are urged to upgrade your version of PostgreSQL at the
next scheduled downtime.

URL:      http://www.postgresql.org/about/news/1398/

Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2143
          Fix incorrect password transformation in contrib/pgcrypto’s DES
crypt() function
          This was fixed in a patch release for the FreeBSD ports on May 30.

Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2655
          Ignore SECURITY DEFINER and SET attributes for a procedural
language’s call handle
9.0.7_2
30 May 2012 22:26:15
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
- Address postgresql*-servers for crypt vulnerability (CVE-2012-2143)

http://www.postgresql.org/about/news/1397/

With hat: pgsql
9.0.7_1
05 Mar 2012 20:10:22
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Various tidiness patches:
 - Compact -plperl ports
 - Portlint for 90-plperl
 - Update version numbers in pkg-install-server
 - s/spaces/tabs/
 - Use ${} instead of $()
 - s/YES/yes/
 - Tidy IGNORE values

Submitted by:   sunpoet
9.0.7_1
04 Mar 2012 17:19:59
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Over to new team, pgsql@FreeBSD.org
9.0.7_1
28 Feb 2012 21:37:40
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Fix pkg-plist
9.0.7
27 Feb 2012 16:24:48
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL object-relational database system, including
versions 9.1.3, 9.0.7, 8.4.11 and 8.3.18.

Users of pg_dump, users of SSL certificates for validation or users of triggers
using SECURITY DEFINER should upgrade their installations immediately. All
other database administrators are urged to upgrade your version of PostgreSQL
at the next scheduled downtime. More details on the security fixes here:

URL:    http://www.postgresql.org/about/news/1377/

Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0866
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0867
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0868
9.0.6_3
19 Feb 2012 19:35:02
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Remove p5- from postgresql*-plperl 's mention in pkg-message-client
9.0.6_3
25 Jan 2012 21:12:33
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
- To preserve my sanity, slave 82 and 83 to 84, and 90 to 91, resulting in
  three fewer Makefiles to maintain

- Switch patch master site

- Various cleanups
9.0.6_3
23 Jan 2012 20:36:58
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Add OPTION to postgresql9[10]-contrib for building without uuid-ossp

Requested by:   sunpoet
9.0.6_3
22 Jan 2012 06:59:27
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
- Add profile support for PostgreSQL servers
- re-assign LOCALBASE to PREFIX
- add PG_GROUP to SUB_PLIST for packaging fix
- fix permissions for package installations

PR:     ports/162776
Submitted by:   jgh, Phil Phillips < pphillips at experts-exchange.com >
Reviewed by: rene (mentor)
Approved by: crees (maintainer, mentor)
9.0.6_2
19 Jan 2012 19:06:00
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
fix typo %%PG_GROUP%% in pkg-plist-server

Spotted by: decke
Approved by:    crees, rene (mentors,implicit)
9.0.6_1
19 Jan 2012 03:35:49
Original commit files touched by this commit This port version is marked as vulnerable.
tabthorpe search for other commits by this committer
- Reset ports due to maintainer timeouts and lack of response to emails

With hat:       portmgr
9.0.6_1
18 Jan 2012 21:35:11
Original commit files touched by this commit This port version is marked as vulnerable.
jgh search for other commits by this committer
Fix plist to create directory with proper ownerships PostgreSQL database
may start.

PR:     ports/164273 (critical)
Submitted by: Alexander Yerenkow <yerenkow at gmail.com>
Approved by:    maintainer-timeout: girgen (1 day), portmgr (linimon)
9.0.6
14 Jan 2012 08:57:23
Original commit files touched by this commit This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
9.0.6
05 Dec 2011 16:45:14
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group today released updates for all
active branches of the PostgreSQL object-relational database system,
including versions 9.1.2, 9.0.6, 8.4.10, 8.3.17 and 8.2.23.

This release contains 52 fixes to version 9.1, and a smaller number of
fixes to older versions, including:

- Fix bugs in information_schema.referential_constraints view**
- Correct collations for citext columns and indexes**
- Prevent possible crash when joining to a scalar function
- Prevent transitory data corruption of GIN indexes after a crash
- Prevent data corruption on TOAST columns when copying data
- Fix failures during hot standby startup
- Correct another "variable not found in subplan target list" bug
- Fix bug with sorting on aggregate expressions in windowing functions
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.5_1
30 Nov 2011 18:49:31
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Add DTRACE option for postgresql84-server

PR:             ports/150431
Submitted by:   rpaulo

Fix compilation with GSSAPI

PR:             ports/161786
Submitted by:   rea
Reviewed by:    mandree, John Marshall <john.marshall@riverwillow.com.au>

Mark IGNORE if DTRACE enabled for FreeBSD < 900021 without userland dtrace

PR:             ports/152502
Submitted by:   Sevan Janiyan <venture37@geeklan.co.uk>

Approved by:    maintainer timeout (girgen, at least 2 months)
Feature safe:   yes
9.0.5_1
20 Oct 2011 21:07:29
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
- Fix packaging issue (missed %%PG_USER%% in pkg-plist-server)
- Remove extra bsd.port.pre.mk include from postgresql82-server

PR:             ports/161816 ports/161824 ports/161821
Submitted by:   Jason Helfman (jhelfman@e-e.com)
Approved by:    portmgr (pav)
9.0.5_1
19 Oct 2011 18:29:58
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
This time remember to bump PORTREVISION
9.0.5
19 Oct 2011 18:21:25
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Fix SUB_LIST issue by deconditionalising it.

Temporary fix, but will stop the flurry of incoming PRs related.

PR:             ports/161779 ports/161774 ports/161791 ports/161771 ports/161769
Submitted by:   Many people, original fix suggested by Jason Helfman
(jhelfman@e-e.com)
Approved by:    portmgr (pav)
9.0.5
18 Oct 2011 09:03:33
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
The PostgreSQL Global Development Group today released minor version updates
for all active branches of the PostgreSQL object-relational database system,
including versions 9.1.1, 9.0.5, 8.4.9, 8.3.16 and 8.2.22.

All users are strongly urged to update their installations at the next
scheduled downtime.

URL:    http://www.postgresql.org/about/news.1355

Cleanup ports. Better handling of the knob PG_USER.
Also add uuid to 9.0 and 9.1 contrib ports.
9.0.4_3
06 Oct 2011 08:45:16
Original commit files touched by this commit This port version is marked as vulnerable.
mm search for other commits by this committer
- Add SSL to OPTIONS
- Make portlint happier
- Fix typo

PR:             ports/160914
Approved by:    maintainer (timeout)
9.0.4_2
02 Oct 2011 20:07:40
Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Unbreak postgresql-plpython: allow build with threaded python
- Pass maintainership to submitter

PR:             ports/159843
Submitted by:   Ruslan Mahmatkhanov <cvs-src@yandex.ru>
9.0.4_2
25 Sep 2011 22:20:28
Original commit files touched by this commit This port version is marked as vulnerable.
rea search for other commits by this committer
Don't rebuild manual pages if configure was changed

Sometimes patches for PostgreSQL touch its configure script.  And the
logics inside current Makefiles for the documentation makes the manual
pages (and other stuff) to be dependent of the timestamp of the
top-level configure file.  This triggers the rebuild of the manual
pages, but since some additional XML-related tools are needed, this
rebuild can fail.

PR: 159844
Approved by: maintainer timeout (1 month)
Feature safe: yes
9.0.4_2
25 Sep 2011 19:40:10
Original commit files touched by this commit This port version is marked as vulnerable.
rea search for other commits by this committer
PostgreSQL: unbreak 'make describe'

It was a really bad idea to include bsd.port.pre.mk
inside a conditional expression.

Detected by: portsnap buildbox
Pointyhat to: rea
9.0.4_2
25 Sep 2011 18:09:06
Original commit files touched by this commit This port version is marked as vulnerable.
rea search for other commits by this committer
PostgreSQL: unbreak GSSAPI support

The problem with GSSAPI without Kerberos is that configure.in has
very funny logics of choosing GSSAPI libraries:
{{{
if test "$with_gssapi" = yes ; then
  if test "$PORTNAME" != "win32"; then
    AC_SEARCH_LIBS(gss_init_sec_context, [gssapi_krb5 gss 'gssapi -lkrb5
-lcrypto'], [],
                                  [AC_MSG_ERROR([could not find function
'gss_init_sec_context' required for GSSAPI])])
  else
    LIBS="$LIBS -lgssapi32"
  fi
fi
}}}
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.4_2
23 Sep 2011 22:26:39
Original commit files touched by this commit This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav
9.0.4_2
15 Aug 2011 14:52:31
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Revert previous commit -- appears to cause rc problems as I missed some subs

http://www.mail-archive.com/freebsd-ports@freebsd.org/msg35324.html

PR:             ports/157558 ports/157559 ports/157666 ports/157669
Submitted by:   rihad@mail.ru
Approved by:    maintainer (girgen; implicit -- this reverts a commit I did
after maintainer timeout)
9.0.4_2
14 Aug 2011 01:32:13
Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Fix databases/p5-postgresql-plperl build with Perl 5.14

This patch is for PostgreSQL 8.2, 8.3, 8.4 and 9.0.
PostgreSQL 9.1 has it already.

PR:             ports/158727
Submitted by:   sunpoet (myself)
Approved by:    girgen (maintainer timeout, 5 weeks)
9.0.4_2
12 Aug 2011 10:11:22
Original commit files touched by this commit This port version is marked as vulnerable.
crees search for other commits by this committer
Use USERS and GROUPS

PR:             ports/157669
Submitted by:   me
Approved by:    maintainer timeout (girgen, 7 weeks)
9.0.4_2
10 Jul 2011 21:06:39
Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
- update ICU to 4.8
- chase library bump
- add an entry in UPDATING for instructions
- remove old conflict lines
9.0.4_2
17 May 2011 22:26:08
Original commit files touched by this commit This port version is marked as vulnerable.
pav search for other commits by this committer
- Mark BROKEN on FreeBSD 9.X: does not link

  libpq/auth.o: In function `pg_GSS_error':
  auth.c:(.text+0x6e): undefined reference to `gss_display_status'
  [..]

Reported by:    pointyhat
9.0.4_2
02 May 2011 21:37:31
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Fix a problem with creating the postgresql user when using a package.
9.0.4_1
27 Apr 2011 13:28:51
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Fix problem creating postgres user when PGUSER was set.

PR: 156662
9.0.4_1
20 Apr 2011 15:30:33
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Fix typo in 502.pgsql script

PR: 156515
9.0.4
18 Apr 2011 23:34:27
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update PostgreSQL to 9.0.4, 8.4.8, 8.3.15 and 8.2.21.

This update contains a critical fix to the pg_upgrade utility
which prevents significant downtime issues. Do not use
pg_upgrade without installing this update first.

The issue with pg_upgrade and the fix are detailed on the PostgreSQL
wiki: http://wiki.postgresql.org/wiki/20110408pg_upgrade_fix
Users who have already used pg_upgrade should run the database repair
script given on that page on their databases as soon as possible.

See the release notes for each version at
http://www.postgresql.org/docs/current/static/release.html for a full
list of changes with details.

Allow the username of the postgresql user to configurable for 8.4 and 9.0.
Largely inspired by the work of Jason Helfman [153668, 153136].

Change PGUSER knob to PG_USER not to clash with PGUSER environment.

PR: 153668, 153136, 155493, 155137
9.0.3
01 Feb 2011 14:48:17
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update to versions 9.0.3, 8.4.7, 8.3.14 and 8.2.20.

This update includes a security fix which prevents a buffer overrun in
the contrib module intarray's input function for the query_int type.
This bug is a security risk since the function's return address could
be overwritten by malicious code.

All supported versions of PostgreSQL are impacted. However, the
affected contrib module is optional. Only users who have installed the
intarray module in their database are affected. See the CVE Advisory
at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4015

This release includes 63 bugfixes, including:

- Avoid unexpected conversion overflow in planner for distant date values
(Only the first 15 lines of the commit message are shown above View all of this commit message)
9.0.2
30 Jan 2011 09:28:38
Original commit files touched by this commit This port version is marked as vulnerable.
az search for other commits by this committer
Fix @dirrmtry since it already filter stderr and return true.

PR:             ports/153888
Submitted by:   az@
Approved by:    maintainer (timeout)
Feature safe:   yes
9.0.2
31 Dec 2010 09:57:21
Original commit files touched by this commit This port version is marked as vulnerable.
mm search for other commits by this committer
- Update to 9.0.2
- Unify ICU handling

PR:             ports/153245
Approved by:    maintainer (timeout)
9.0.1_2
16 Dec 2010 18:47:57
Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
- Prepare for devel/icu4 deletion
- fix py-icu with icu4.6
- fix portsgresql*server with icu 4.6
- remove now useless icu patch from webkit
9.0.1_2
15 Dec 2010 11:37:49
Original commit files touched by this commit This port version is marked as vulnerable.
bapt search for other commits by this committer
Chase devel/icu upgrade
Add an updating note
9.0.1_2
09 Dec 2010 18:46:07
Original commit files touched by this commit This port version is marked as vulnerable.
danger search for other commits by this committer
- Fix build if WITH_ICU or WITH_ICU4 defined (bsd.autotools.mk update)

Obtained from:  mm
Approved by:    portmgr (linimon)
9.0.1_2
04 Dec 2010 07:34:27
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Sync to new bsd.autotools.mk
9.0.1_2
22 Nov 2010 19:21:09
Original commit files touched by this commit This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Use dirrmtry on share/postgresql/tsearch_data for postgresql{83|84|90}-server
- Bump PORTREVISION

PR:             ports/151882
Submitted by:   sunpoet (myself)
Approved by:    girgen (maintainer timeout, 20 days)
9.0.1_1
21 Nov 2010 23:48:49
Original commit files touched by this commit This port version is marked as vulnerable.
rene search for other commits by this committer
- Fix optional dependency on security/heimdal
- Bump PORTREVISION
PR:             ports/152029
Submitted by:   Joerg Pulz [Joerg.Pulz frm2.tum.de]
Approved by:    Ryan Steinmetz <rpsfa@rit.edu> (maintainer of net/freeradius*)
                girgen (maintainer of databases/postgresql*-server,
                        14 day timeout)
9.0.1
26 Oct 2010 12:34:27
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Make postgresql90-client depend on libxml. Technically it does not depend on
libxml,
only postgresql90-server does, but since we don't want two different pg_config
setups,
one for client and one for server, I'm bringing the libxml dependency on board
until
I can find out a better way to solve this.
9.0.1
16 Oct 2010 11:52:47
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Punt autoconf267->autoconf268
9.0.1
07 Oct 2010 06:58:10
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
Update all PostgreSQL ports to latest versions.

Also, try to break the previous 1:1 relation between FreeBSD system and
PostgreSQL versions installed. Use different PREFIX:es to install
different versions on the same system.

PR: ports/132402, ports/145002, ports/146657
9.0.0
20 Sep 2010 13:46:47
Original commit files touched by this commit This port version is marked as vulnerable.
girgen search for other commits by this committer
PostgreSQL 9.0 is here!  The PostgreSQL Global Development Group
announces the availability of our most eagerly awaited release.
PostgreSQL 9.0 includes built-in, binary replication, and over a dozen
other major features which will appeal to everyone from web developers
to database hackers.

9.0 includes more major features than any release before it, including:
* Hot standby
* Streaming replication
* In-place upgrades
* 64-bit Windows builds
* Easy mass permissions management
* Anonymous blocks and named parameter calls for stored procedures
* New windowing functions and ordered aggregates
(Only the first 15 lines of the commit message are shown above View all of this commit message)
8.4.3_2
15 Sep 2010 18:35:24
Original commit files touched by this commit This port version is marked as vulnerable.
ade search for other commits by this committer
Autotools update.   Read ports/UPDATING 20100915 for details.

Approved by:    portmgr (for Mk/bsd.port.mk part)
Tested by:      Multiple -exp runs

Number of commits found: 92