Accepting request 1145269 from server:database:postgresql

- Upgrade to 15.6:
  * bsc#1219679, CVE-2024-0985: Tighten security restrictions
    within REFRESH MATERIALIZED VIEW CONCURRENTLY.
    One step of a concurrent refresh command was run under weak
    security restrictions. If a materialized view's owner could
    persuade a superuser or other high-privileged user to perform a
    concurrent refresh on that view, the view's owner could control
    code executed with the privileges of the user running REFRESH.
    Fix things so that all user-determined code is run as the
    view's owner, as expected
  * If you use GIN indexes, you may need to reindex after updating
    to this release.
  * LLVM 18 is now supported.
  * https://www.postgresql.org/docs/release/15.6/

OBS-URL: https://build.opensuse.org/request/show/1145269
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/postgresql15?expand=0&rev=14
This commit is contained in:
Ana Guerrero 2024-02-09 22:52:53 +00:00 committed by Git OBS Bridge
commit 6f99ffbef2
6 changed files with 32 additions and 15 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:8f53aa95d78eb8e82536ea46b68187793b42bba3b4f65aa342f540b23c9b10a6
size 23091780

View File

@ -1 +0,0 @@
8f53aa95d78eb8e82536ea46b68187793b42bba3b4f65aa342f540b23c9b10a6 postgresql-15.5.tar.bz2

3
postgresql-15.6.tar.bz2 Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:8455146ed9c69c93a57de954aead0302cafad035c2b242175d6aa1e17ebcb2fb
size 23093967

View File

@ -0,0 +1 @@
8455146ed9c69c93a57de954aead0302cafad035c2b242175d6aa1e17ebcb2fb postgresql-15.6.tar.bz2

View File

@ -1,3 +1,21 @@
-------------------------------------------------------------------
Thu Feb 8 14:04:50 UTC 2024 - Reinhard Max <max@suse.com>
- Upgrade to 15.6:
* bsc#1219679, CVE-2024-0985: Tighten security restrictions
within REFRESH MATERIALIZED VIEW CONCURRENTLY.
One step of a concurrent refresh command was run under weak
security restrictions. If a materialized view's owner could
persuade a superuser or other high-privileged user to perform a
concurrent refresh on that view, the view's owner could control
code executed with the privileges of the user running REFRESH.
Fix things so that all user-determined code is run as the
view's owner, as expected
* If you use GIN indexes, you may need to reindex after updating
to this release.
* LLVM 18 is now supported.
* https://www.postgresql.org/docs/release/15.6/
-------------------------------------------------------------------
Wed Nov 8 14:26:51 UTC 2023 - Reinhard Max <max@suse.com>
@ -27,7 +45,6 @@ Wed Nov 8 14:26:51 UTC 2023 - Reinhard Max <max@suse.com>
such processes. No specific security consequences are known for
that oversight, but it might be significant for some extensions.
* Add support for LLVM 16 and 17
* https://www.postgresql.org/about/news/2749
* https://www.postgresql.org/docs/15/release-15-5.html
-------------------------------------------------------------------

View File

@ -1,7 +1,7 @@
#
# spec file
# spec file for package postgresql15
#
# Copyright (c) 2023 SUSE LLC
# Copyright (c) 2024 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@ -16,11 +16,11 @@
#
%define pgversion 15.5
%define pgversion 15.6
%define pgmajor 15
%define buildlibs 0
%define tarversion %{pgversion}
%define latest_supported_llvm_ver 17
%define latest_supported_llvm_ver 18
### CUT HERE ###
%define pgname postgresql%pgmajor