dc6e42c358Accepting request 1247458 from server:database:postgresqlAna Guerrero2025-02-20 18:46:43 +00:00
bf604bbe63- Upgrade to 16.8: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/16.8/ * https://www.postgresql.org/about/news/p-3018/Reinhard Max2025-02-20 16:33:02 +00:00
d95c3a8cf0Accepting request 1245714 from server:database:postgresqlAna Guerrero2025-02-13 17:40:30 +00:00
fc57617852Accepting request 1225750 from server:database:postgresqlAna Guerrero2024-11-22 22:51:52 +00:00
a9b30a6281- Upgrade to 15.10 * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/15.10/Reinhard Max2024-11-21 17:45:50 +00:00
2bd7117f04Accepting request 1224293 from server:database:postgresqlAna Guerrero2024-11-15 14:43:18 +00:00
f1de547b6e- Upgrade to 15.9: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/15.9/ * https://www.postgresql.org/about/news/p-2910/Reinhard Max2024-11-14 14:56:30 +00:00
dab7b2d21c- Upgrade to 15.7 (bsc#1224051): * bsc#1224038, CVE-2024-4317: Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to the table owner. See the release notes for the steps that have to be taken to fix existing PostgreSQL instances. * Fix incompatibility with LLVM 18. * https://www.postgresql.org/docs/release/15.7/ - Prepare for PostgreSQL 17. - Make sure all compilation and doc generation happens in %build.Reinhard Max2024-05-09 15:29:37 +00:00
c12dcc4d42- Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work.Reinhard Max2024-05-02 07:15:40 +00:00
aa3faa40c9Accepting request 1154713 from server:database:postgresqlAna Guerrero2024-03-04 20:25:56 +00:00
f7aeb7259cAccepting request 1153287 from home:dimstar:rpm4.20:pReinhard Max2024-03-04 14:16:30 +00:00
6f99ffbef2Accepting request 1145269 from server:database:postgresqlAna Guerrero2024-02-09 22:52:53 +00:00
a1154e8c10- Upgrade to 15.6: * bsc#1219679, CVE-2024-0985: Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY. One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected * If you use GIN indexes, you may need to reindex after updating to this release. * LLVM 18 is now supported. * https://www.postgresql.org/docs/release/15.6/Reinhard Max2024-02-08 15:22:58 +00:00
2a816f1f48Accepting request 1124708 from server:database:postgresqlAna Guerrero2023-11-10 11:29:02 +00:00
2930f00ff0Accepting request 1121435 from server:database:postgresqlAna Guerrero2023-11-02 19:20:36 +00:00
19ea942975- boo#1216734: Revert the last change and make the devel package independend of all other subpackages except for the libs.Reinhard Max2023-10-31 11:03:54 +00:00
08dbae474dAccepting request 1120249 from server:database:postgresqlAna Guerrero2023-10-26 15:11:40 +00:00
df0c7a17f7- boo#1216022: Call install-alternatives from the devel subpackage as well, otherwise the symlink for ecpg might be missing.Reinhard Max2023-10-10 13:11:43 +00:00
4a60a0530a- Update to 15.4: * bsc#1214059, CVE-2023-39417: Disallow substituting a schema or owner name into an extension script if the name contains a quote, backslash, or dollar sign. * bsc#1214061, CVE-2023-39418: Fix MERGE to enforce row security policies properly. * https://www.postgresql.org/docs/15/release-15-4.htmlReinhard Max2023-08-10 13:25:30 +00:00
0a56f59dbc- Restore the independence of mini builds from the main build after the -mini name change from April 4, 2023. - Adjust icu handling to prepare for PostgreSQL 16.Reinhard Max2023-05-26 12:02:43 +00:00
6de6cb9f57- Overhaul postgresql-README.SUSE and move it from the binary package to the noarch wrapper package.Reinhard Max2023-05-15 14:51:11 +00:00
ac4cf6cd06- Overhaul postgresql-README.SUSE and move it from the binary package to the noarch wrapper package.Reinhard Max2023-05-15 14:20:54 +00:00
1018b5c605- bsc#1210303: Stop using the obsolete internal %_restart_on_update macro and drop support for sysv init to simplify the scriptlets.Reinhard Max2023-04-18 13:54:19 +00:00
0196712b59- Create mechanism to specify the latest supported LLVM version. Automatically pin to that version if the distribution has a newer unsupported default version.Reinhard Max2022-09-23 13:21:25 +00:00
01f4d6369dAccepting request 1002897 from home:Andreas_Schwab:FactoryReinhard Max2022-09-13 11:50:53 +00:00
Adrian Schröter
Ana Guerrero
Reinhard Max
Marcus Rueckert
Dominique Leuenberger
Fabian Vogt
Richard Brown
Martin Pluskal