c2df52cb5f
Merge remote-tracking branch 'origin/factory' into slfo-main
slfo-main
Reinhard Max
2026-01-22 12:28:19 +01:00
bcee3569c6
Merge remote-tracking branch 'origin/factory' into slfo-1.2
slfo-1.2
Reinhard Max
2026-01-22 12:27:42 +01:00
f66aa71757
Accepting request 1323487 from server:database:postgresql
Ana Guerrero2025-12-18 17:36:14 +00:00
5f9a45c184
Accepting request 1323487 from server:database:postgresql
Ana Guerrero2025-12-18 17:36:14 +00:00
488b546951
Accepting request 1322547 from home:Guillaume_G:branches:server:database:postgresql
Dominique Leuenberger2025-12-18 09:15:52 +00:00
667c7e6955
- Fix build on aarch64 with upstream commit 0dceba2: * llvm-21-aarch64.patch
Dominique Leuenberger2025-12-18 09:15:52 +00:00
01f197bc80
Accepting request 1320374 from server:database:postgresql
Ana Guerrero2025-11-28 15:52:40 +00:00
df857fdfea
Accepting request 1320374 from server:database:postgresql
Ana Guerrero2025-11-28 15:52:40 +00:00
72048f1e6b
- Fix build with uring for post SLE15 code streams.
Reinhard Max2025-11-27 17:24:11 +00:00
aededa741b
- Fix build with uring for post SLE15 code streams.
Reinhard Max2025-11-27 17:24:11 +00:00
8d85120dfa
- Use %product_libs_llvm_ver to determine the LLVM version. - Remove conditionals for obsolete PostgreSQL releases.
Reinhard Max2025-11-14 17:16:53 +00:00
fb3e1549e4
- Use %product_libs_llvm_ver to determine the LLVM version. - Remove conditionals for obsolete PostgreSQL releases.
Reinhard Max2025-11-14 17:16:53 +00:00
a5b5c785f9
- Upgrade to 16.11: * https://www.postgresql.org/docs/release/16.11/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer.
Reinhard Max2025-11-13 14:35:28 +00:00
7169edf48a
- Upgrade to 16.11: * https://www.postgresql.org/docs/release/16.11/ * bsc#1253332, CVE-2025-12817: Missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts. * bsc#1253333, CVE-2025-12818: Several places in libpq were not sufficiently careful about computing the required size of a memory allocation. Sufficiently large inputs could cause integer overflow, resulting in an undersized buffer, which would then lead to writing past the end of the buffer.
Reinhard Max2025-11-13 14:35:28 +00:00
00610712ca
Accepting request 1307160 from server:database:postgresql
Ana Guerrero2025-09-25 16:46:08 +00:00
6e62935728
Accepting request 1307160 from server:database:postgresql
Ana Guerrero2025-09-25 16:46:08 +00:00
804e376c32
Accepting request 1247459 from server:database:postgresql
Ana Guerrero2025-02-20 18:46:45 +00:00
94ba80f6a5
Accepting request 1247459 from server:database:postgresql
Ana Guerrero2025-02-20 18:46:45 +00:00
05d55112cc
- Upgrade to 16.8: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/16.8/ * https://www.postgresql.org/about/news/p-3018/Reinhard Max2025-02-20 16:55:21 +00:00
f2d9242304
- Upgrade to 16.8: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/16.8/ * https://www.postgresql.org/about/news/p-3018/Reinhard Max2025-02-20 16:55:21 +00:00
2b1bcce6c0
Accepting request 1245715 from server:database:postgresql
Ana Guerrero2025-02-13 17:40:32 +00:00
617571d30d
Accepting request 1245715 from server:database:postgresql
Ana Guerrero2025-02-13 17:40:32 +00:00
8d27afbf0d
Accepting request 1225749 from server:database:postgresql
Ana Guerrero2024-11-22 22:51:50 +00:00
33252a232e
Accepting request 1225749 from server:database:postgresql
Ana Guerrero2024-11-22 22:51:50 +00:00
15c5859e2b
- Upgrade to 16.6: * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/16.6/Reinhard Max2024-11-21 17:46:07 +00:00
ff949ca942
- Upgrade to 16.6: * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/16.6/Reinhard Max2024-11-21 17:46:07 +00:00
b0c2571a8f
Accepting request 1224292 from server:database:postgresql
Ana Guerrero2024-11-15 14:43:16 +00:00
5c4da96edf
Accepting request 1224292 from server:database:postgresql
Ana Guerrero2024-11-15 14:43:16 +00:00
3f4a5d034e
- Upgrade to 16.5: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * obsoletes postgresql-testsuite-timezone-fix.patch * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/16.5/ * https://www.postgresql.org/about/news/p-2910/Reinhard Max2024-11-14 14:58:17 +00:00
6a28d61790
- Upgrade to 16.5: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * obsoletes postgresql-testsuite-timezone-fix.patch * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/16.5/ * https://www.postgresql.org/about/news/p-2910/Reinhard Max2024-11-14 14:58:17 +00:00
7362bb668d
- Upgrade to 16.3 (bsc#1224051): * bsc#1224038, CVE-2024-4317: Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to the table owner. See the release notes for the steps that have to be taken to fix existing PostgreSQL instances. * Fix incompatibility with LLVM 18. * https://www.postgresql.org/docs/release/16.3/ - Prepare for PostgreSQL 17. - Make sure all compilation and doc generation happens in %build.
Reinhard Max2024-05-09 15:28:22 +00:00
f6f2fd362a
- Upgrade to 16.3 (bsc#1224051): * bsc#1224038, CVE-2024-4317: Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to the table owner. See the release notes for the steps that have to be taken to fix existing PostgreSQL instances. * Fix incompatibility with LLVM 18. * https://www.postgresql.org/docs/release/16.3/ - Prepare for PostgreSQL 17. - Make sure all compilation and doc generation happens in %build.
Reinhard Max2024-05-09 15:28:22 +00:00
Ana Guerrero
Reinhard Max
Reinhard Max
Dominique Leuenberger
Marcus Rueckert
Adrian Schröter