2524e7bd41
Merge remote-tracking branch 'origin/factory' into slfo-main
slfo-main
Reinhard Max
2026-01-22 12:26:23 +01:00
07e53f111d
Accepting request 1323488 from server:database:postgresql
Ana Guerrero2025-12-18 17:36:17 +00:00
e040e06cdd
Accepting request 1323488 from server:database:postgresql
Ana Guerrero2025-12-18 17:36:17 +00:00
db46598d96
Accepting request 1322548 from home:Guillaume_G:branches:server:database:postgresql
Dominique Leuenberger2025-12-18 09:15:57 +00:00
f362fac5eb
- Fix build on aarch64 with upstream commit 0dceba2: * llvm-21-aarch64.patch
Dominique Leuenberger2025-12-18 09:15:57 +00:00
5d0efd3129
Accepting request 1320375 from server:database:postgresql
Ana Guerrero2025-11-28 15:52:42 +00:00
405c260e5c
Accepting request 1320375 from server:database:postgresql
Ana Guerrero2025-11-28 15:52:42 +00:00
1f8f7b09bd
- Fix build with uring for post SLE15 code streams.
Reinhard Max2025-11-24 16:46:01 +00:00
e057615c57
- Fix build with uring for post SLE15 code streams.
Reinhard Max2025-11-24 16:46:01 +00:00
7744966a98
- Use %product_libs_llvm_ver to determine the LLVM version. - Remove conditionals for obsolete PostgreSQL releases.
Reinhard Max2025-11-14 17:14:50 +00:00
c31b5ff5b5
- Use %product_libs_llvm_ver to determine the LLVM version. - Remove conditionals for obsolete PostgreSQL releases.
Reinhard Max2025-11-14 17:14:50 +00:00
c7b36bde6d
- Upgrade to 15.15: * https://www.postgresql.org/docs/release/15.15/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer.
Reinhard Max2025-11-13 14:35:08 +00:00
d3c44e38ad
- Upgrade to 15.15: * https://www.postgresql.org/docs/release/15.15/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer.
Reinhard Max2025-11-13 14:35:08 +00:00
883f1023cb
Accepting request 1307159 from server:database:postgresql
Ana Guerrero2025-09-25 16:46:07 +00:00
29524fdbfc
Accepting request 1307159 from server:database:postgresql
Ana Guerrero2025-09-25 16:46:07 +00:00
55b4be4c07
Accepting request 1247458 from server:database:postgresql
Ana Guerrero2025-02-20 18:46:43 +00:00
dc6e42c358
Accepting request 1247458 from server:database:postgresql
Ana Guerrero2025-02-20 18:46:43 +00:00
ae3f852a58
- Upgrade to 16.8: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/16.8/ * https://www.postgresql.org/about/news/p-3018/Reinhard Max2025-02-20 16:33:02 +00:00
bf604bbe63
- Upgrade to 16.8: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/16.8/ * https://www.postgresql.org/about/news/p-3018/Reinhard Max2025-02-20 16:33:02 +00:00
e1c61d9a29
Accepting request 1245714 from server:database:postgresql
Ana Guerrero2025-02-13 17:40:30 +00:00
d95c3a8cf0
Accepting request 1245714 from server:database:postgresql
Ana Guerrero2025-02-13 17:40:30 +00:00
e81e812b9e
Accepting request 1225750 from server:database:postgresql
Ana Guerrero2024-11-22 22:51:52 +00:00
fc57617852
Accepting request 1225750 from server:database:postgresql
Ana Guerrero2024-11-22 22:51:52 +00:00
d85e4a0f09
- Upgrade to 15.10 * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/15.10/Reinhard Max2024-11-21 17:45:50 +00:00
a9b30a6281
- Upgrade to 15.10 * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/15.10/Reinhard Max2024-11-21 17:45:50 +00:00
6f93074088
Accepting request 1224293 from server:database:postgresql
Ana Guerrero2024-11-15 14:43:18 +00:00
2bd7117f04
Accepting request 1224293 from server:database:postgresql
Ana Guerrero2024-11-15 14:43:18 +00:00
ed6a865f30
- Upgrade to 15.9: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/15.9/ * https://www.postgresql.org/about/news/p-2910/Reinhard Max2024-11-14 14:56:30 +00:00
f1de547b6e
- Upgrade to 15.9: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/15.9/ * https://www.postgresql.org/about/news/p-2910/Reinhard Max2024-11-14 14:56:30 +00:00
b864326f93
- Upgrade to 15.7 (bsc#1224051): * bsc#1224038, CVE-2024-4317: Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to the table owner. See the release notes for the steps that have to be taken to fix existing PostgreSQL instances. * Fix incompatibility with LLVM 18. * https://www.postgresql.org/docs/release/15.7/ - Prepare for PostgreSQL 17. - Make sure all compilation and doc generation happens in %build.
Reinhard Max2024-05-09 15:29:37 +00:00
dab7b2d21c
- Upgrade to 15.7 (bsc#1224051): * bsc#1224038, CVE-2024-4317: Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to the table owner. See the release notes for the steps that have to be taken to fix existing PostgreSQL instances. * Fix incompatibility with LLVM 18. * https://www.postgresql.org/docs/release/15.7/ - Prepare for PostgreSQL 17. - Make sure all compilation and doc generation happens in %build.
Reinhard Max2024-05-09 15:29:37 +00:00
997cca77e5
- Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work.
Reinhard Max2024-05-02 07:15:40 +00:00
c12dcc4d42
- Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work.
Reinhard Max2024-05-02 07:15:40 +00:00
37f70bfe3b
Accepting request 1154713 from server:database:postgresql
Ana Guerrero2024-03-04 20:25:56 +00:00
aa3faa40c9
Accepting request 1154713 from server:database:postgresql
Ana Guerrero2024-03-04 20:25:56 +00:00
23b000b188
Accepting request 1153287 from home:dimstar:rpm4.20:p
Reinhard Max2024-03-04 14:16:30 +00:00
f7aeb7259c
Accepting request 1153287 from home:dimstar:rpm4.20:p
Reinhard Max2024-03-04 14:16:30 +00:00
a3987dd52d
Accepting request 1145269 from server:database:postgresql
Ana Guerrero2024-02-09 22:52:53 +00:00
6f99ffbef2
Accepting request 1145269 from server:database:postgresql
Ana Guerrero2024-02-09 22:52:53 +00:00
c9b1e58acc
- Upgrade to 15.6: * bsc#1219679, CVE-2024-0985: Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY. One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected * If you use GIN indexes, you may need to reindex after updating to this release. * LLVM 18 is now supported. * https://www.postgresql.org/docs/release/15.6/Reinhard Max2024-02-08 15:22:58 +00:00
a1154e8c10
- Upgrade to 15.6: * bsc#1219679, CVE-2024-0985: Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY. One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected * If you use GIN indexes, you may need to reindex after updating to this release. * LLVM 18 is now supported. * https://www.postgresql.org/docs/release/15.6/Reinhard Max2024-02-08 15:22:58 +00:00
82e4b30132
Accepting request 1124708 from server:database:postgresql
Ana Guerrero2023-11-10 11:29:02 +00:00
2a816f1f48
Accepting request 1124708 from server:database:postgresql
Ana Guerrero2023-11-10 11:29:02 +00:00
bb1dbbac4e
Accepting request 1121435 from server:database:postgresql
Ana Guerrero2023-11-02 19:20:36 +00:00
2930f00ff0
Accepting request 1121435 from server:database:postgresql
Ana Guerrero2023-11-02 19:20:36 +00:00
5423d74ddd
- boo#1216734: Revert the last change and make the devel package independend of all other subpackages except for the libs.
Reinhard Max2023-10-31 11:03:54 +00:00
19ea942975
- boo#1216734: Revert the last change and make the devel package independend of all other subpackages except for the libs.
Reinhard Max2023-10-31 11:03:54 +00:00
a7a7b96515
Accepting request 1120249 from server:database:postgresql
Ana Guerrero2023-10-26 15:11:40 +00:00
08dbae474d
Accepting request 1120249 from server:database:postgresql
Ana Guerrero2023-10-26 15:11:40 +00:00
35e348feb9
- boo#1216022: Call install-alternatives from the devel subpackage as well, otherwise the symlink for ecpg might be missing.
Reinhard Max2023-10-10 13:11:43 +00:00
df0c7a17f7
- boo#1216022: Call install-alternatives from the devel subpackage as well, otherwise the symlink for ecpg might be missing.
Reinhard Max2023-10-10 13:11:43 +00:00
Ana Guerrero
Reinhard Max
Reinhard Max
Dominique Leuenberger
Marcus Rueckert
Adrian Schröter