non port: databases/postgresql91-server/pkg-plist-client |
Number of commits found: 11 |
Saturday, 13 Feb 2016
|
22:42 girgen
Update PostgreSQL to latest versions.
Security Fixes for Regular Expressions, PL/Java
This release closes security hole CVE-2016-0773, an issue with regular
expression (regex) parsing. Prior code allowed users to pass in expressions
which included out-of-range Unicode characters, triggering a backend crash.
This issue is critical for PostgreSQL systems with untrusted users or which
generate regexes based on user input.
The update also fixes CVE-2016-0766, a privilege escalation issue for users of
PL/Java. Certain custom configuration settings (GUCS) for PL/Java will now be
modifiable only by the database superuser
URL: http://www.postgresql.org/about/news/1644/
Security: CVE-2016-0773, CVE-2016-0766
|
Wednesday, 22 Jul 2015
|
22:45 bapt
Simplify a bit the Makefiles
Use OPTIONS_SUB to automatically PLIST_SUB
Use OPTIONS helpers
|
21:46 bapt
Cleanup plist and avoid useless @exec
|
Thursday, 5 Feb 2015
|
22:54 girgen
Update PostgreSQL-9.x to latests versions.
This update fixes multiple security issues reported in PostgreSQL over the past
few months. All of these issues require prior authentication, and some require
additional conditions, and as such are not considered generally urgent.
However, users should examine the list of security holes patched below in case
they are particularly vulnerable.
Security: CVE-2015-0241,CVE-2015-0242,CVE-2015-0243,
CVE-2015-0244,CVE-2014-8161
|
Wednesday, 26 Feb 2014
|
17:24 antoine
Stage support
Reviewed by: postgresql@
Tested by: miwi and me
|
Monday, 27 Feb 2012
|
16:24 girgen
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL object-relational database system, including
versions 9.1.3, 9.0.7, 8.4.11 and 8.3.18.
Users of pg_dump, users of SSL certificates for validation or users of triggers
using SECURITY DEFINER should upgrade their installations immediately. All
other database administrators are urged to upgrade your version of PostgreSQL
at the next scheduled downtime. More details on the security fixes here:
URL: http://www.postgresql.org/about/news/1377/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0866
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0867
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0868
|
Tuesday, 18 Oct 2011
|
09:03 girgen
The PostgreSQL Global Development Group today released minor version updates
for all active branches of the PostgreSQL object-relational database system,
including versions 9.1.1, 9.0.5, 8.4.9, 8.3.16 and 8.2.22.
All users are strongly urged to update their installations at the next
scheduled downtime.
URL: http://www.postgresql.org/about/news.1355
Cleanup ports. Better handling of the knob PG_USER.
Also add uuid to 9.0 and 9.1 contrib ports.
|
Monday, 12 Sep 2011
|
09:53 girgen
Update to PostgreSQL version 9.1.0
SITE: http://www.postgresql.org/docs/9.1/static/release-9-1.html
|
Tuesday, 14 Jun 2011
|
08:31 girgen
Update to 9.1beta2
Fix proken plists wrt NLS
|
Saturday, 11 Jun 2011
|
23:14 girgen
Add postgresql 9.1 beta1.
See http://www.postgresql.org/about/news.1313 for more info.
Also, use USERS knob instead of explicitally creating the pgsql user
while still accepting alternative names, using [1] with some added
magic.
PR: 157667 [1]
|
Thursday, 28 Apr 2011
|
07:46 girgen
Forced commit to document that repocopy from postgresql90-server was made.
PR: ports/156485
|
Number of commits found: 11 |