Accepting request 1145270 from server:database:postgresql

- Upgrade to 14.11:
  * bsc#1219679, CVE-2024-0985: Tighten security restrictions
    within REFRESH MATERIALIZED VIEW CONCURRENTLY.
    One step of a concurrent refresh command was run under weak
    security restrictions. If a materialized view's owner could
    persuade a superuser or other high-privileged user to perform a
    concurrent refresh on that view, the view's owner could control
    code executed with the privileges of the user running REFRESH.
    Fix things so that all user-determined code is run as the
    view's owner, as expected
  * If you use GIN indexes, you may need to reindex after updating
    to this release.
  * LLVM 18 is now supported.
  * https://www.postgresql.org/docs/release/14.11/

OBS-URL: https://build.opensuse.org/request/show/1145270
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/postgresql14?expand=0&rev=16

postgresql-14.10.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:c99431c48e9d470b0d0ab946eb2141a3cd19130c2fb4dc4b3284a7774ecc8399
-size 22298652

postgresql-14.10.tar.bz2.sha256

@@ -1 +0,0 @@
-c99431c48e9d470b0d0ab946eb2141a3cd19130c2fb4dc4b3284a7774ecc8399  postgresql-14.10.tar.bz2

postgresql-14.11.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a670bd7dce22dcad4297b261136b3b1d4a09a6f541719562aa14ca63bf2968a8
+size 22354758

postgresql-14.11.tar.bz2.sha256

@@ -0,0 +1 @@
+a670bd7dce22dcad4297b261136b3b1d4a09a6f541719562aa14ca63bf2968a8  postgresql-14.11.tar.bz2

postgresql14.changes

@@ -1,3 +1,21 @@
+-------------------------------------------------------------------
+Thu Feb  8 14:10:04 UTC 2024 - Reinhard Max <max@suse.com>
+
+- Upgrade to 14.11:
+  * bsc#1219679, CVE-2024-0985: Tighten security restrictions
+    within REFRESH MATERIALIZED VIEW CONCURRENTLY.
+    One step of a concurrent refresh command was run under weak
+    security restrictions. If a materialized view's owner could
+    persuade a superuser or other high-privileged user to perform a
+    concurrent refresh on that view, the view's owner could control
+    code executed with the privileges of the user running REFRESH.
+    Fix things so that all user-determined code is run as the
+    view's owner, as expected
+  * If you use GIN indexes, you may need to reindex after updating
+    to this release.
+  * LLVM 18 is now supported.
+  * https://www.postgresql.org/docs/release/14.11/
+
 -------------------------------------------------------------------
 Wed Nov  8 14:32:26 UTC 2023 - Reinhard Max <max@suse.com>
 
@@ -27,7 +45,6 @@ Wed Nov  8 14:32:26 UTC 2023 - Reinhard Max <max@suse.com>
     such processes. No specific security consequences are known for
     that oversight, but it might be significant for some extensions.
   * Add support for LLVM 16 and 17
-  * https://www.postgresql.org/about/news/2749
   * https://www.postgresql.org/docs/14/release-14-10.html
 
 -------------------------------------------------------------------

postgresql14.spec

@@ -1,7 +1,7 @@
 #
-# spec file
+# spec file for package postgresql14
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -16,11 +16,11 @@
 #
 
 
-%define pgversion 14.10
+%define pgversion 14.11
 %define pgmajor 14
 %define buildlibs 0
 %define tarversion %{pgversion}
-%define latest_supported_llvm_ver 17
+%define latest_supported_llvm_ver 18
 
 ### CUT HERE ###
 %define pgname postgresql%pgmajor
@@ -187,7 +187,7 @@ Provides:       postgresql = %version-%release
 Provides:       postgresql-implementation = %version-%release
 Requires:       %libpq >= %version
 Requires(post): postgresql-noarch >= %pgmajor
-Requires(postun):postgresql-noarch >= %pgmajor
+Requires(postun): postgresql-noarch >= %pgmajor
 # At this point we changed the package layout on SLE and conflict with
 # older releases to get a clean cut.
 Conflicts:      postgresql-noarch < 12.0.1
@@ -277,7 +277,7 @@ Provides:       %pgname-server-devel = %version-%release
 Provides:       postgresql-server-devel = %version-%release
 Provides:       postgresql-server-devel-implementation = %version-%release
 Requires(post): postgresql-server-devel-noarch >= %pgmajor
-Requires(postun):postgresql-server-devel-noarch >= %pgmajor
+Requires(postun): postgresql-server-devel-noarch >= %pgmajor
 Requires:       %pgname-devel = %version
 Requires:       %pgname-server = %version-%release
 # Installation of postgresql??-devel is exclusive
@@ -335,10 +335,10 @@ Recommends:     %{name}-llvmjit
 Provides:       postgresql-server-implementation = %version-%release
 Requires:       %libpq >= %version
 Requires(pre):  postgresql-server-noarch >= %pgmajor
-Requires(preun):postgresql-server-noarch >= %pgmajor
-Requires(postun):postgresql-server-noarch >= %pgmajor
+Requires(preun): postgresql-server-noarch >= %pgmajor
+Requires(postun): postgresql-server-noarch >= %pgmajor
 Requires(post): postgresql-noarch >= %pgmajor
-Requires(postun):postgresql-noarch >= %pgmajor
+Requires(postun): postgresql-noarch >= %pgmajor
 
 %description server
 PostgreSQL is an advanced object-relational database management system
@@ -377,7 +377,7 @@ Requires:       %pgname-server-devel = %version
 %if %{with llvm}
 Requires:       %pgname-llvmjit = %version
 Requires(post): postgresql-llvmjit-devel-noarch >= %pgmajor
-Requires(postun):postgresql-llvmjit-devel-noarch >= %pgmajor
+Requires(postun): postgresql-llvmjit-devel-noarch >= %pgmajor
 %requires_file	%_bindir/llc
 %requires_file	%_bindir/clang
 %endif