summaryrefslogtreecommitdiffstats
path: root/package/postgresql/postgresql.hash
Commit message (Collapse)AuthorAgeFilesLines
* postgresql: bump to 10.1Adam Duskett2017-11-271-3/+4
| | | | | | | | | | | | | | - Add a hash for the license file. - PostgreSQL 10.0 and above will default to checking for /dev/urandom if an SSL library is not found, which will fail when cross compiling. Since /dev/urandom is guaranteed to be provided on Linux systems, add ac_cv_file__dev_urandom=yes to the configure environment if a SSL library is not selected. Signed-off-by: Adam Duskett <Adamduskett@outlook.com> [Thomas: minor tweaks to the /dev/urandom comment in the .mk file.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.6.6Peter Korsgaard2017-11-111-2/+4
| | | | | | | | | | | | | | | | | | | | Fixes the following security issues: CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. CVE-2017-15098: Memory disclosure in JSON functions. CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges. See the announcement for more details: https://www.postgresql.org/about/news/1801/ While we're at it, also add a hash for the license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.6.5Adam Duskett2017-09-051-2/+2
| | | | | Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.3 (security)Vicente Olivert Riera2017-05-111-2/+2
| | | | | | | | | | | | | Three security vulnerabilities have been closed by this release: CVE-2017-7484: selectivity estimators bypass SELECT privilege checks CVE-2017-7485: libpq ignores PGREQUIRESSL environment variable CVE-2017-7486: pg_user_mappings view discloses foreign server passwords More details: https://www.postgresql.org/about/news/1746/ Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.2Vicente Olivert Riera2017-03-181-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.1Vicente Olivert Riera2016-11-011-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.0Peter Seiderer2016-10-221-2/+2
| | | | | | | | | For release notes see [1]. [1] https://www.postgresql.org/docs/9.6/static/release-9-6.html Signed-off-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.5.4Gustavo Zacarias2016-10-131-2/+2
| | | | | | | | | | | Fixes: CVE-2016-5423 - CASE/WHEN with inlining can cause untrusted pointer dereference (bsc#993454). CVE-2016-5424 - Fix client programs' handling of special characters in database and role names (bsc#993453). Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: bump version to 9.5.3Vicente Olivert Riera2016-05-131-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.5.2Vicente Olivert Riera2016-04-141-2/+2
| | | | | | | Also remove a patch which is no longer necessary and do not autoreconf. Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.6Gustavo Zacarias2016-02-161-2/+2
| | | | | | | | | | | | | Fixes: CVE-2016-0766 - privilege escalation issue for users of PL/Java. CVE-2016-0773 - issue with regular expression (regex) parsing. Prior code allowed users to pass in expressions which included out-of-range Unicode characters, triggering a backend crash. This issue is critical for PostgreSQL systems with untrusted users or which generate regexes based on user input. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.5Gustavo Zacarias2015-10-091-2/+2
| | | | | | | | | | | | | | | | | | | Fixes: CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed. sparc build fix patch upstream so drop it. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Reviewed-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Tested-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.4.4Vicente Olivert Riera2015-06-211-2/+2
| | | | | | | | - Bump to version 9.4.4 - Update hash file Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.4.3Gustavo Zacarias2015-06-091-2/+2
| | | | | Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.2Gustavo Zacarias2015-05-261-2/+2
| | | | | | | | | | Fixes: CVE-2015-3165 (denial of service) CVE-2015-3166 (information disclosure) CVE-2015-3167 (side-channel key exposure) Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: bump version to 9.4.1Peter Seiderer2015-02-081-2/+2
| | | | | | | | | See [1] for a detailed list of changes. [1] http://www.postgresql.org/docs/9.4/static/release-9-4-1.html Signed-off-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: add hashGustavo Zacarias2015-01-141-0/+2
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
OpenPOWER on IntegriCloud