non port: databases/postgresql83-server/distinfo |
SVNWeb
|
Number of commits found: 30 |
Fri, 8 Feb 2013
|
[ 07:54 girgen ] (Only the first 10 of 19 ports in this commit are shown above. )
PostgreSQL 9.2.3, 9.1.8, 9.0.12, 8.4.16 and 8.3.23 released
This update fixes a denial-of-service (DOS) vulnerability. All users
should update their PostgreSQL installations as soon as possible.
The security issue fixed in this release, CVE-2013-0255, allows a
previously authenticated user to crash the server by calling
an internal function with invalid arguments.
URL: http://www.postgresql.org/about/news/1446/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0255
|
Thu, 6 Dec 2012
|
[ 16:40 girgen ] (Only the first 10 of 12 ports in this commit are shown above. )
The PostgreSQL Global Development Group has released an update to all current
versions of the PostgreSQL database system, including versions 9.2.2, 9.1.7,
9.0.11, 8.4.15, and 8.3.22. Users of PostgreSQL Hot Standby replication
should update at the next possible opportunity. Other users should update
at their next maintenance window.
Deprecate the 8.3.22 version, since it is near end-of-life.
URL: http://www.postgresql.org/about/news/1430/
Feature safe: yes
|
Mon, 24 Sep 2012
|
[ 22:03 girgen ]
Update PostgreSQL to 9.2.1, 9.1.6, 9.0.10, 8.4.14 and 8.3.21 respectively.
This update fixes critical issues for major versions 9.1 and 9.2, and
users running those versions should apply it as soon as possible.
URL: http://www.postgresql.org/about/news/1416/
|
Fri, 17 Aug 2012
|
[ 19:39 jgh ] (Only the first 10 of 11 ports in this commit are shown above. )
The PostgreSQL Global Development Group today released security updates for all
active branches
of the PostgreSQL database system, including versions 9.1.5, 9.0.9, 8.4.13 and
8.3.20. This
update patches security holes associated with libxml2 and libxslt, similar to
those affecting
other open source projects. All users are urged to update their installations at
the first
available opportunity.
This security release fixes a vulnerability in the built-in XML functionality,
and a vulnerability
in the XSLT functionality supplied by the optional XML2 extension. Both
vulnerabilities allow
reading of arbitrary files by any authenticated database user, and the XSLT
vulnerability
allows writing files as well. The fixes cause limited backwards compatibility
issues.
These issues correspond to the following two vulnerabilities:
CVE-2012-3488: PostgreSQL insecure use of libxslt
CVE-2012-3489: PostgreSQL insecure use of libxml2
This release also contains several fixes to version 9.1, and a smaller number of
fixes to older versions, including: (Only the first 15 lines of the commit message are shown above )
|
Mon, 4 Jun 2012
|
[ 11:00 girgen ] (Only the first 10 of 21 ports in this commit are shown above. )
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL database system, including versions 9.1.4,
9.0.8, 8.4.12 and 8.3.19.
Users of the crypt(text, text) function with DES encryption in the optional
pg_crypto module should upgrade their installations immediately, if you have'nt
already updated since the port was patched on May 30. All other database
administrators are urged to upgrade your version of PostgreSQL at the
next scheduled downtime.
URL: http://www.postgresql.org/about/news/1398/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2143
Fix incorrect password transformation in contrib/pgcryptoâs DES
crypt() function
This was fixed in a patch release for the FreeBSD ports on May 30.
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2655
Ignore SECURITY DEFINER and SET attributes for a procedural
languageâs call handle
|
Mon, 27 Feb 2012
|
[ 16:24 girgen ] (Only the first 10 of 15 ports in this commit are shown above. )
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL object-relational database system, including
versions 9.1.3, 9.0.7, 8.4.11 and 8.3.18.
Users of pg_dump, users of SSL certificates for validation or users of triggers
using SECURITY DEFINER should upgrade their installations immediately. All
other database administrators are urged to upgrade your version of PostgreSQL
at the next scheduled downtime. More details on the security fixes here:
URL: http://www.postgresql.org/about/news/1377/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0866
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0867
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0868
|
Fri, 17 Feb 2012
|
[ 13:31 crees ]
Update to 8.3.17 and 8.2.23.
Please note that 8.2 is still deprecated, and any users are still strongly
encouraged to move to 8.4 as soon as possible.
|
Tue, 18 Oct 2011
|
[ 09:03 girgen ] (Only the first 10 of 43 ports in this commit are shown above. )
The PostgreSQL Global Development Group today released minor version updates
for all active branches of the PostgreSQL object-relational database system,
including versions 9.1.1, 9.0.5, 8.4.9, 8.3.16 and 8.2.22.
All users are strongly urged to update their installations at the next
scheduled downtime.
URL: http://www.postgresql.org/about/news.1355
Cleanup ports. Better handling of the knob PG_USER.
Also add uuid to 9.0 and 9.1 contrib ports.
|
Mon, 18 Apr 2011
|
[ 23:34 girgen ] (Only the first 10 of 27 ports in this commit are shown above. )
Update PostgreSQL to 9.0.4, 8.4.8, 8.3.15 and 8.2.21.
This update contains a critical fix to the pg_upgrade utility
which prevents significant downtime issues. Do not use
pg_upgrade without installing this update first.
The issue with pg_upgrade and the fix are detailed on the PostgreSQL
wiki: http://wiki.postgresql.org/wiki/20110408pg_upgrade_fix
Users who have already used pg_upgrade should run the database repair
script given on that page on their databases as soon as possible.
See the release notes for each version at
http://www.postgresql.org/docs/current/static/release.html for a full
list of changes with details.
Allow the username of the postgresql user to configurable for 8.4 and 9.0.
Largely inspired by the work of Jason Helfman [153668, 153136].
Change PGUSER knob to PG_USER not to clash with PGUSER environment.
PR: 153668, 153136, 155493, 155137
|
Tue, 1 Feb 2011
|
[ 14:48 girgen ]
Update to versions 9.0.3, 8.4.7, 8.3.14 and 8.2.20.
This update includes a security fix which prevents a buffer overrun in
the contrib module intarray's input function for the query_int type.
This bug is a security risk since the function's return address could
be overwritten by malicious code.
All supported versions of PostgreSQL are impacted. However, the
affected contrib module is optional. Only users who have installed the
intarray module in their database are affected. See the CVE Advisory
at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4015
This release includes 63 bugfixes, including:
- Avoid unexpected conversion overflow in planner for distant date values (Only the first 15 lines of the commit message are shown above )
|
Fri, 31 Dec 2010
|
[ 09:55 mm ]
- Update to 8.3.13
- unify ICU handling
PR: ports/153245
Approved by: maintainer (timeout)
|
Thu, 7 Oct 2010
|
[ 06:58 girgen ] (Only the first 10 of 28 ports in this commit are shown above. )
Update all PostgreSQL ports to latest versions.
Also, try to break the previous 1:1 relation between FreeBSD system and
PostgreSQL versions installed. Use different PREFIX:es to install
different versions on the same system.
PR: ports/132402, ports/145002, ports/146657
|
Thu, 20 May 2010
|
[ 15:43 girgen ] (Only the first 10 of 39 ports in this commit are shown above. )
Update all PostgreSQL ports to latest version.
Remove postgresql-contrib in favour for postgresqlNN-contrib.
This way we will get packages built, which is nice.
Security: CVE-2010-1169
Security: CVE-2010-1170
The PostgreSQL Project today released minor versions updating all active
branches of the PostgreSQL object-relational database system, including
versions 8.4.4, 8.3.11, 8.2.17, 8.1.21, 8.0.25, and 7.4.29. This release
fixes moderate-risk security issues with PL/perl and PL/tcl, as well as
a data corruption issue with standby databases. Users of any of these
three features should update their PostgreSQL installations immediately.
(Only the first 15 lines of the commit message are shown above )
|
Sun, 20 Dec 2009
|
[ 04:53 delphij ]
Forced commit to mention that the previous patchset was:
PR: ports/141716
Submitted by: mm
|
[ 04:32 delphij ]
Security update to 8.3.9.
Security: vid e7bc5600-eaa0-11de-bd9c-00215c6a37bb
Security: CVE-2009-4034 CVE-2009-4136
With hat: ports-security
|
Wed, 18 Mar 2009
|
[ 15:13 girgen ]
Update PostgreSQL to latest versions.
The PostgreSQL Project today released minor versions updating all active
branches of the PostgreSQL object-relational database system, including
versions 8.3.7, 8.2.13, 8.1.17, 8.0.21 and 7.4.25. This release fixes a denial
of service issue with encoding conversion, and all users should update their
installations at the next reasonable opportunity.
There are 12 other minor fixes contained in these update releases, including
fixes for xpath() functions in version 8.3. See the release notes for full
details.
URL: http://www.postgresql.org/docs/8.3/static/release-8-3-7.html
URL: http://www.postgresql.org/docs/8.2/static/release-8-2-13.html
URL: http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-17
URL: http://www.postgresql.org/docs/8.0/static/release.html#RELEASE-8-0-21
URL: http://www.postgresql.org/docs/7.4/static/release.html#RELEASE-7-4-24
|
Tue, 10 Feb 2009
|
[ 11:59 girgen ] (Only the first 10 of 14 ports in this commit are shown above. )
Update PostgreSQL to latest versions.
URL: http://www.postgresql.org/about/news.1055
The PostgreSQL Project today released
updates to all active branches of the
PostgreSQL object-relational database
system, including versions 8.3.6,
8.2.12, 8.1.16, 8.0.20 and 7.4.24. These
updates include two serious fixes, for
autovacuum crashes in version 8.1 and
GiST indexing data loss in 8.3, and
those two versions should be updated as
soon as possible.
(Only the first 15 lines of the commit message are shown above )
|
Fri, 7 Nov 2008
|
[ 18:07 girgen ]
This time, *really* update to *latest* version of PostgreSQL, 8.3.5.
|
[ 09:49 girgen ] (Only the first 10 of 20 ports in this commit are shown above. )
Update PostgreSQL to latest versions.
http://www.postgresql.org/docs/current/static/release-8-3-5.html
http://www.postgresql.org/docs/current/static/release-8-2-11.html
http://www.postgresql.org/docs/current/static/release-8-1-15.html
http://www.postgresql.org/docs/current/static/release-8-0-19.html
http://www.postgresql.org/docs/current/static/release-7-4-23.html
Note that the GiST problem mentioned does not apply to users of
the FreeBSD port, since the previous version of PostgreSQL never
reached the ports tree, due to the freeze of the tree pending the
FreeBSD 7.1 update.
PR: 121848, 124713
|
Thu, 28 Aug 2008
|
[ 15:15 girgen ]
Update ICU patch to chase update of autoconf 2.61 -> 2.62
PR: ports/126773
Submitted by: Robert Schulze
|
Thu, 12 Jun 2008
|
[ 23:46 girgen ] (Only the first 10 of 24 ports in this commit are shown above. )
Updates of the PostgreSQL ports
Updates for all maintained versions of PostgreSQL are available today:
8.3.3, 8.2.9, 8.1.13, 8.0.17 and 7.4.21. These releases fix more than
two dozen minor issues reported and patched over the last few months.
All PostgreSQL users should plan to update at their earliest
convenience. People in affected time zones, in particular, should
upgrade as soon as possible.
Release Notes:
http://www.postgresql.org/docs/8.3/static/release.html
Also, fix umask error in periodic script [1].
PR: ports/124457 [1]
Submitted by: Alexandre Perrin
|
Tue, 18 Mar 2008
|
[ 22:25 girgen ]
Update to 8.3.1
Release notes:
http://developer.postgresql.org/pgdocs/postgres/release-8-3-1.html
|
Sun, 9 Mar 2008
|
[ 19:04 girgen ]
The ICU patch <http://people.freebsd.org/~girgen/postgresql-icu/README.html>
is finally ported to postgresql-8.3, thanks to Petr Jelinek and yours truly.
|
Mon, 4 Feb 2008
|
[ 17:12 girgen ]
Today the PostgreSQL Global Development Group releases the
long-awaited version 8.3 of the most advanced open source database,
which cements our place as the best performing open source
database. Among the performance features you'll be excited about in
8.3 are:
* Heap Only Tuples
* BGWriter Autotuning
* Asynchronous Commit
* Spread Checkpoints
* Synchronous Scan
* "Var-Varlena"
* L2 Cache Protection
* Lazy XID
8.3 also has a lot of cool features for PostgreSQL DBAs and developers,
including:
* CSV Logging
* SQL/XML
* MS Visual C++ support
* ENUMs
* Integrated Tsearch
* SSPI & GSSAPI
* Composite Type Arrays
* pg_standby
|
Tue, 22 Jan 2008
|
[ 14:08 girgen ]
Update to RC2.
[1] Fix problem installing from package.
[2] Use DISTVERSION instead of PORTVERSION.
(the port reports now correct version 8.3.r2)
[2] Enable more 8.3 features:
- Add OPTION for the new XML data type (default: enabled)
- Add OPTION for usage of system timezone data (default: included tzdata)
PR: ports/119770 [1], ports/119561 [2]
Submitted by: Artis Caune [1], Martin Matuska [2]
|
Mon, 7 Jan 2008
|
[ 20:45 girgen ]
Revert bad commit. The size was OK for *this* version.
|
[ 20:41 girgen ]
Fix bad distinfo sizes
|
[ 13:51 girgen ] (Only the first 10 of 28 ports in this commit are shown above. )
Update all PostgreSQL ports to latest versions.
This includes a bunch of security fixes: CVE-2007-6067, CVE-2007-4772,
CVE-2007-6601, CVE-2007-6600 and CVE-2007-4769.
Security: http://www.postgresql.org/about/news.905
|
Thu, 1 Nov 2007
|
[ 07:10 girgen ]
Update to PostgreSQL 8.3 beta2.
http://www.postgresql.org/developer/beta
This is beta quality, don't use in production.
Approved by: portmgr (erwin)
|
Mon, 15 Oct 2007
|
[ 15:32 girgen ]
Introducing the first beta of PostgreSQL 8.3
Note that this is a BETA VERSION of the PostgreSQL server.
Use it only for testing.
|
Number of commits found: 30 |