summaryrefslogtreecommitdiffstats
path: root/package/postgresql/postgresql.hash
Commit message (Collapse)AuthorAgeFilesLines
* package/postgresql: bump to version 11.2Peter Korsgaard2019-02-181-5/+5
| | | | | | | | | | | | | | | | | | Fixes a long standing fsync issue and a number of other bugs: https://www.postgresql.org/docs/11/release-11-2.html https://wiki.postgresql.org/wiki/Fsync_Errors The hash of the license file is only changed due to a year update: -Portions Copyright (c) 1996-2018, PostgreSQL Global Development Group +Portions Copyright (c) 1996-2019, PostgreSQL Global Development Group Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Reviewed-by: Peter Seiderer <ps.report@gmx.net> [Thomas: update commit log to explain why the license file hash has changed, as repoted by Peter Seiderer] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* postgresql: security bump to version 11.1Peter Korsgaard2018-11-081-4/+4
| | | | | | | | | | | | | | Fixes the following security issue: CVE-2018-16850: SQL injection in pg_upgrade and pg_dump, via CREATE TRIGGER ... REFERENCING For more details, see the advisory: https://www.postgresql.org/about/news/1905/ Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* package/postgresql: bump version to 11.0Bernd Kuhls2018-10-211-2/+4
| | | | | | | | | | | | | Release notes: https://www.postgresql.org/about/news/1894/ Added md5 hash provided by upstream. To fix build errors "MAKELEVEL=0" is required by upstream in MAKE_OPTS: https://www.postgresql-archive.org/BUG-15407-minor-build-depends-on-MAKELEVEL-being-0-at-top-Makefile-td6047685.html#a6047709 Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> [Thomas: add a comment in the .mk file about MAKELEVEL=0] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* postgresql: security bump to 10.5Adam Duskett2018-08-281-2/+2
| | | | | | | | | Fixes CVE-2018-10915 & CVE-2018-10925 Changelog: https://www.postgresql.org/docs/10/static/release-10-5.html Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* postgresql: security bump to 10.3Adam Duskett2018-03-031-2/+2
| | | | | | | | | | Helps mitigate CVE-2018-1058 see: https://www.postgresql.org/docs/current/static/release-10-3.html for more bugfixes. Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: update license file hashBaruch Siach2018-02-131-1/+1
| | | | | | | | | | | | | | Copyright year update. Fixes: http://autobuild.buildroot.net/results/d79/d7989660584430945644e3a4406ba33cee22863d/ http://autobuild.buildroot.net/results/b51/b5141b64ed838caa1daca1bf4fe322dd2afaf0b5/ http://autobuild.buildroot.net/results/a37/a375d533036a1b95af32b6bda086e93174b8c5f0/ Cc: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Reviewed-by: Matt Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* postgresql: security bump to 10.2Adam Duskett2018-02-101-2/+2
| | | | | | | | | | | | | from https://www.postgresql.org/about/news/1829/ [1] CVE-2018-1052: Fix the processing of partition keys containing multiple expressions [2] CVE-2018-1053: Ensure that all temporary files made with "pg_upgrade" are non-world-readable Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
* postgresql: bump to 10.1Adam Duskett2017-11-271-3/+4
| | | | | | | | | | | | | | - Add a hash for the license file. - PostgreSQL 10.0 and above will default to checking for /dev/urandom if an SSL library is not found, which will fail when cross compiling. Since /dev/urandom is guaranteed to be provided on Linux systems, add ac_cv_file__dev_urandom=yes to the configure environment if a SSL library is not selected. Signed-off-by: Adam Duskett <Adamduskett@outlook.com> [Thomas: minor tweaks to the /dev/urandom comment in the .mk file.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.6.6Peter Korsgaard2017-11-111-2/+4
| | | | | | | | | | | | | | | | | | | | Fixes the following security issues: CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. CVE-2017-15098: Memory disclosure in JSON functions. CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges. See the announcement for more details: https://www.postgresql.org/about/news/1801/ While we're at it, also add a hash for the license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.6.5Adam Duskett2017-09-051-2/+2
| | | | | Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.3 (security)Vicente Olivert Riera2017-05-111-2/+2
| | | | | | | | | | | | | Three security vulnerabilities have been closed by this release: CVE-2017-7484: selectivity estimators bypass SELECT privilege checks CVE-2017-7485: libpq ignores PGREQUIRESSL environment variable CVE-2017-7486: pg_user_mappings view discloses foreign server passwords More details: https://www.postgresql.org/about/news/1746/ Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.2Vicente Olivert Riera2017-03-181-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.1Vicente Olivert Riera2016-11-011-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.6.0Peter Seiderer2016-10-221-2/+2
| | | | | | | | | For release notes see [1]. [1] https://www.postgresql.org/docs/9.6/static/release-9-6.html Signed-off-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.5.4Gustavo Zacarias2016-10-131-2/+2
| | | | | | | | | | | Fixes: CVE-2016-5423 - CASE/WHEN with inlining can cause untrusted pointer dereference (bsc#993454). CVE-2016-5424 - Fix client programs' handling of special characters in database and role names (bsc#993453). Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: bump version to 9.5.3Vicente Olivert Riera2016-05-131-2/+2
| | | | | Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump version to 9.5.2Vicente Olivert Riera2016-04-141-2/+2
| | | | | | | Also remove a patch which is no longer necessary and do not autoreconf. Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.6Gustavo Zacarias2016-02-161-2/+2
| | | | | | | | | | | | | Fixes: CVE-2016-0766 - privilege escalation issue for users of PL/Java. CVE-2016-0773 - issue with regular expression (regex) parsing. Prior code allowed users to pass in expressions which included out-of-range Unicode characters, triggering a backend crash. This issue is critical for PostgreSQL systems with untrusted users or which generate regexes based on user input. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.5Gustavo Zacarias2015-10-091-2/+2
| | | | | | | | | | | | | | | | | | | Fixes: CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service. CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed. sparc build fix patch upstream so drop it. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Reviewed-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Tested-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.4.4Vicente Olivert Riera2015-06-211-2/+2
| | | | | | | | - Bump to version 9.4.4 - Update hash file Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: bump to version 9.4.3Gustavo Zacarias2015-06-091-2/+2
| | | | | Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* postgresql: security bump to version 9.4.2Gustavo Zacarias2015-05-261-2/+2
| | | | | | | | | | Fixes: CVE-2015-3165 (denial of service) CVE-2015-3166 (information disclosure) CVE-2015-3167 (side-channel key exposure) Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: bump version to 9.4.1Peter Seiderer2015-02-081-2/+2
| | | | | | | | | See [1] for a detailed list of changes. [1] http://www.postgresql.org/docs/9.4/static/release-9-4-1.html Signed-off-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: add hashGustavo Zacarias2015-01-141-0/+2
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
OpenPOWER on IntegriCloud