rpm/postgresql14
SHA256
1
0
Fork 0
forked from pool/postgresql14
Code Pull Requests Activity

Accepting request 1145270 from server:database:postgresql

Browse Source 
- Upgrade to 14.11:
  * bsc#1219679, CVE-2024-0985: Tighten security restrictions
    within REFRESH MATERIALIZED VIEW CONCURRENTLY.
    One step of a concurrent refresh command was run under weak
    security restrictions. If a materialized view's owner could
    persuade a superuser or other high-privileged user to perform a
    concurrent refresh on that view, the view's owner could control
    code executed with the privileges of the user running REFRESH.
    Fix things so that all user-determined code is run as the
    view's owner, as expected
  * If you use GIN indexes, you may need to reindex after updating
    to this release.
  * LLVM 18 is now supported.
  * https://www.postgresql.org/docs/release/14.11/

OBS-URL: https://build.opensuse.org/request/show/1145270
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/postgresql14?expand=0&rev=16
This commit is contained in:
Ana Guerrero 2024-02-09 22:52:55 +00:00 committed by Git OBS Bridge
commit 9888a49a6a
6 changed files with 32 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
postgresql-14.10.tar.bz2
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:c99431c48e9d470b0d0ab946eb2141a3cd19130c2fb4dc4b3284a7774ecc8399
size 22298652

1
postgresql-14.10.tar.bz2.sha256
View File

@ -1 +0,0 @@
c99431c48e9d470b0d0ab946eb2141a3cd19130c2fb4dc4b3284a7774ecc8399 postgresql-14.10.tar.bz2

3
postgresql-14.11.tar.bz2 Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:a670bd7dce22dcad4297b261136b3b1d4a09a6f541719562aa14ca63bf2968a8
size 22354758

1
postgresql-14.11.tar.bz2.sha256 Normal file
View File

@ -0,0 +1 @@
a670bd7dce22dcad4297b261136b3b1d4a09a6f541719562aa14ca63bf2968a8 postgresql-14.11.tar.bz2

19
postgresql14.changes
View File

@ -1,3 +1,21 @@
-------------------------------------------------------------------
Thu Feb 8 14:10:04 UTC 2024 - Reinhard Max <max@suse.com>
- Upgrade to 14.11:
* bsc#1219679, CVE-2024-0985: Tighten security restrictions
within REFRESH MATERIALIZED VIEW CONCURRENTLY.
One step of a concurrent refresh command was run under weak
security restrictions. If a materialized view's owner could
persuade a superuser or other high-privileged user to perform a
concurrent refresh on that view, the view's owner could control
code executed with the privileges of the user running REFRESH.
Fix things so that all user-determined code is run as the
view's owner, as expected
* If you use GIN indexes, you may need to reindex after updating
to this release.
* LLVM 18 is now supported.
* https://www.postgresql.org/docs/release/14.11/
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Nov 8 14:32:26 UTC 2023 - Reinhard Max <max@suse.com> Wed Nov 8 14:32:26 UTC 2023 - Reinhard Max <max@suse.com>
@ -27,7 +45,6 @@ Wed Nov 8 14:32:26 UTC 2023 - Reinhard Max <max@suse.com>
such processes. No specific security consequences are known for such processes. No specific security consequences are known for
that oversight, but it might be significant for some extensions. that oversight, but it might be significant for some extensions.
* Add support for LLVM 16 and 17 * Add support for LLVM 16 and 17
* https://www.postgresql.org/about/news/2749
* https://www.postgresql.org/docs/14/release-14-10.html * https://www.postgresql.org/docs/14/release-14-10.html
------------------------------------------------------------------- -------------------------------------------------------------------

20
postgresql14.spec
View File

@ -1,7 +1,7 @@
# #
# spec file # spec file for package postgresql14
# #
# Copyright (c) 2023 SUSE LLC # Copyright (c) 2024 SUSE LLC
# #
# All modifications and additions to the file contributed by third parties # All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed # remain the property of their copyright owners, unless otherwise agreed
@ -16,11 +16,11 @@
# #
%define pgversion 14.10 %define pgversion 14.11
%define pgmajor 14 %define pgmajor 14
%define buildlibs 0 %define buildlibs 0
%define tarversion %{pgversion} %define tarversion %{pgversion}
%define latest_supported_llvm_ver 17 %define latest_supported_llvm_ver 18
### CUT HERE ### ### CUT HERE ###
%define pgname postgresql%pgmajor %define pgname postgresql%pgmajor
@ -187,7 +187,7 @@ Provides: postgresql = %version-%release
Provides: postgresql-implementation = %version-%release Provides: postgresql-implementation = %version-%release
Requires: %libpq >= %version Requires: %libpq >= %version
Requires(post): postgresql-noarch >= %pgmajor Requires(post): postgresql-noarch >= %pgmajor
Requires(postun):postgresql-noarch >= %pgmajor Requires(postun): postgresql-noarch >= %pgmajor
# At this point we changed the package layout on SLE and conflict with # At this point we changed the package layout on SLE and conflict with
# older releases to get a clean cut. # older releases to get a clean cut.
Conflicts: postgresql-noarch < 12.0.1 Conflicts: postgresql-noarch < 12.0.1
@ -277,7 +277,7 @@ Provides: %pgname-server-devel = %version-%release
Provides: postgresql-server-devel = %version-%release Provides: postgresql-server-devel = %version-%release
Provides: postgresql-server-devel-implementation = %version-%release Provides: postgresql-server-devel-implementation = %version-%release
Requires(post): postgresql-server-devel-noarch >= %pgmajor Requires(post): postgresql-server-devel-noarch >= %pgmajor
Requires(postun):postgresql-server-devel-noarch >= %pgmajor Requires(postun): postgresql-server-devel-noarch >= %pgmajor
Requires: %pgname-devel = %version Requires: %pgname-devel = %version
Requires: %pgname-server = %version-%release Requires: %pgname-server = %version-%release
# Installation of postgresql??-devel is exclusive # Installation of postgresql??-devel is exclusive
@ -335,10 +335,10 @@ Recommends: %{name}-llvmjit
Provides: postgresql-server-implementation = %version-%release Provides: postgresql-server-implementation = %version-%release
Requires: %libpq >= %version Requires: %libpq >= %version
Requires(pre): postgresql-server-noarch >= %pgmajor Requires(pre): postgresql-server-noarch >= %pgmajor
Requires(preun):postgresql-server-noarch >= %pgmajor Requires(preun): postgresql-server-noarch >= %pgmajor
Requires(postun):postgresql-server-noarch >= %pgmajor Requires(postun): postgresql-server-noarch >= %pgmajor
Requires(post): postgresql-noarch >= %pgmajor Requires(post): postgresql-noarch >= %pgmajor
Requires(postun):postgresql-noarch >= %pgmajor Requires(postun): postgresql-noarch >= %pgmajor
%description server %description server
PostgreSQL is an advanced object-relational database management system PostgreSQL is an advanced object-relational database management system
@ -377,7 +377,7 @@ Requires: %pgname-server-devel = %version
%if %{with llvm} %if %{with llvm}
Requires: %pgname-llvmjit = %version Requires: %pgname-llvmjit = %version
Requires(post): postgresql-llvmjit-devel-noarch >= %pgmajor Requires(post): postgresql-llvmjit-devel-noarch >= %pgmajor
Requires(postun):postgresql-llvmjit-devel-noarch >= %pgmajor Requires(postun): postgresql-llvmjit-devel-noarch >= %pgmajor
%requires_file %_bindir/llc %requires_file %_bindir/llc
%requires_file %_bindir/clang %requires_file %_bindir/clang
%endif %endif