commit postgresql92.2612 for openSUSE:13.1:Update
![](https://seccdn.libravatar.org/avatar/e2145bc5cf53dda95c308a3c75e8fef3.jpg?s=120&d=mm&r=g)
Hello community, here is the log from the commit of package postgresql92.2612 for openSUSE:13.1:Update checked in at 2014-03-08 14:47:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/postgresql92.2612 (Old) and /work/SRC/openSUSE:13.1:Update/.postgresql92.2612.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "postgresql92.2612" Changes: -------- New Changes file: --- /dev/null 2014-02-13 01:09:38.344032506 +0100 +++ /work/SRC/openSUSE:13.1:Update/.postgresql92.2612.new/postgresql92-libs.changes 2014-03-08 14:47:30.000000000 +0100 @@ -0,0 +1,2093 @@ +------------------------------------------------------------------- +Mon Feb 24 12:26:35 UTC 2014 - max@suse.com + +- Security and bugfix release 9.2.7: + * Shore up GRANT ... WITH ADMIN OPTION restrictions + (CVE-2014-0060, bnc#864845) + * Prevent privilege escalation via manual calls to PL validator + functions (CVE-2014-0061, bnc#864846) + * Avoid multiple name lookups during table and index DDL + (CVE-2014-0062, bnc#864847) + * Prevent buffer overrun with long datetime strings + (CVE-2014-0063, bnc#864850) + * Prevent buffer overrun due to integer overflow in size + calculations (CVE-2014-0064, bnc#864851) + * Prevent overruns of fixed-size buffers (CVE-2014-0065, + bnc#864852) + * Avoid crashing if crypt() returns NULL (CVE-2014-0066, + bnc#864853) + * Document risks of make check in the regression testing + instructions (CVE-2014-0067) + + * For the other (many!) bug fixes, see the release notes: + http://www.postgresql.org/docs/9.3/static/release-9-2-7.html + +------------------------------------------------------------------- +Wed May 8 14:23:05 UTC 2013 - schwab@suse.de + +- postgresql-tas-aarch64.patch: Implement TAS for aarch64 + +------------------------------------------------------------------- +Mon Apr 15 09:42:31 UTC 2013 - idonmez@suse.com + +- Add Source URL, see https://en.opensuse.org/SourceUrls + +------------------------------------------------------------------- +Tue Apr 2 13:35:37 UTC 2013 - max@suse.com + +- Updated to version 9.2.4 (bnc#812525): + * CVE-2013-1899: Fix insecure parsing of server command-line + switches. A connection request containing a database name that + begins with "-" could be crafted to damage or destroy files + within the server's data directory, even if the request is + eventually rejected. + * CVE-2013-1900: Reset OpenSSL randomness state in each + postmaster child process. This avoids a scenario wherein + random numbers generated by "contrib/pgcrypto" functions might + be relatively easy for another database user to guess. The + risk is only significant when the postmaster is configured + with ssl = on but most connections don't use SSL encryption. + * CVE-2013-1901: Make REPLICATION privilege checks test current + user not authenticated user. An unprivileged database user + could exploit this mistake to call pg_start_backup() or + pg_stop_backup(), thus possibly interfering with creation of + routine backups. + * See the release notes for the rest of the changes: + http://www.postgresql.org/docs/9.2/static/release-9-2-4.html + /usr/share/doc/packages/postgresql92/HISTORY + +------------------------------------------------------------------- +Wed Feb 13 16:57:51 UTC 2013 - max@suse.com + +- Version 9.2.3 also fixes bnc#802679, CVE-2013-0255. +- Remove postgresql92-full.spec.in and use postgresql92.spec as the + master for generating postgresql92-libs.spec. + +------------------------------------------------------------------- +Fri Feb 8 14:06:20 UTC 2013 - darin@darins.net + +- Updated to version 9.2.3 + * Prevent execution of enum_recv from SQL (Tom Lane) + * Fix multiple problems in detection of when a consistent database + state has been reached during WAL replay + * Fix detection of end-of-backup point when no actual redo + work is required + * Update minimum recovery point when truncating a relation file + * Fix recycling of WAL segments after changing recovery target + timeline + * Properly restore timeline history files from archive on + cascading standby servers + * Fix lock conflict detection on hot-standby servers + * Fix missing cancellations in hot standby mode + * See the release notes for the rest of the changes: + http://www.postgresql.org/docs/9.2/static/release-9-2-3.html + /usr/share/doc/packages/postgresql/HISTORY + +------------------------------------------------------------------- +Tue Jan 8 12:59:02 UTC 2013 - max@suse.com + +- Use PDX license string. + +------------------------------------------------------------------- +Thu Dec 20 17:57:26 UTC 2012 - max@suse.com + +- Conflicts tags don't support the != operator. + +------------------------------------------------------------------- +Thu Dec 13 16:50:15 UTC 2012 - darin@darins.net + +- Updated to version 9.2.2 + * Fix multiple bugs associated with + CREATE/DROP INDEX CONCURRENTLY + * Correct predicate locking for DROP INDEX CONCURRENTLY + * Fix buffer locking during WAL replay + * Fix an error in WAL generation logic for GIN indexes + * Fix an error in WAL replay logic for SP-GiST indexes + * Fix incorrect detection of end-of-base-backup location + during WAL recovery + * Properly remove startup process's virtual XID lock when + promoting a hot standby server to normal running + * Avoid bogus "out-of-sequence timeline ID" errors in standby + mode + * Prevent the postmaster from launching new child processes after + it's received a shutdown signal + * Fix the syslogger process to not fail when log_rotation_age + exceeds 2^31 milliseconds + * Fix WaitLatch() to return promptly when the requested timeout + expires + * Avoid corruption of internal hash tables when out of memory + * Prevent file descriptors for dropped tables from being held + open past transaction end + * See the release notes for the rest of the changes: + http://www.postgresql.org/docs/9.2/static/release-9-2-2.html + /usr/share/doc/packages/postgresql/HISTORY +------------------------------------------------------------------- +Mon Nov 19 09:49:05 UTC 2012 - max@suse.com + +- Change mechanism for making postgresql??-devel exclusive + (bnc#789562). + +------------------------------------------------------------------- +Fri Oct 5 08:44:52 UTC 2012 - max@suse.com + +- Resolve "have choice for libpq.so.5" by ignoring postgresql-libs. + +------------------------------------------------------------------- +Thu Oct 4 15:00:39 UTC 2012 - max@suse.com + +- Get the new packaging scheme over to the postgresql92 packages + and make 9.2 the new default version. + +------------------------------------------------------------------- +Mon Oct 1 08:28:51 UTC 2012 - max@suse.com + +- Bugfix release 9.1.6 (bnc#782251) to fix data corruption issues. + * Users who upgrade from a previous 9.1 release should run + REINDEX after applying this update. + See also: http://wiki.postgresql.org/wiki/20120924updaterelease + * For the full list of changes, see + http://www.postgresql.org/docs/9.1/static/release.html + +- Change the base name of all PostgreSQL packages from postgresql + to postgresql91 and adopt the new packaging schema, which allows + the parallel installation of multiple PostgreSQL versions to + simplify and speedup migration. + +- Move init script, sysconfig file and firewall configuration into + a new package called postgresql-init which can work with + different PostgreSQL versions. + +------------------------------------------------------------------- +Mon Sep 17 13:06:26 UTC 2012 - zawel1@gmail.com +- Security and bugfix release 9.1.5: + * Ignore SECURITY DEFINER and SET attributes for a procedural + language's call handler (CVE-2012-2655) + * Fix incorrect password transformation in "contrib/pgcrypto"'s DES + crypt() function (CVE-2012-2143) + * Prevent access to external files/URLs via "contrib/xml2"'s + xslt_process() (CVE-2012-3488) + * Prevent access to external files/URLs via XML entity references + (CVE-2012-3489) + * See the release notes for the rest of the changes: + http://www.postgresql.org/docs/9.1/static/release.html + /usr/share/doc/packages/postgresql/HISTORY + +------------------------------------------------------------------- +Mon Mar 12 08:54:39 UTC 2012 - max@suse.com + +- Security and bugfix release 9.1.3: + * Require execute permission on the trigger function for "CREATE + TRIGGER" (CVE-2012-0866, bnc#749299). + * Remove arbitrary limitation on length of common name in SSL + certificates (CVE-2012-0867, bnc#749301). + * Convert newlines to spaces in names written in pg_dump + comments (CVE-2012-0868, bnc#749303). + * See the release notes for the rest of the changes: + http://www.postgresql.org/docs/9.1/static/release.html + /usr/share/doc/packages/postgresql/HISTORY +- This also fixes bnc#701489. + +------------------------------------------------------------------- +Wed Oct 5 16:41:31 UTC 2011 - max@suse.com + +- New version 9.1.1. For detailed release notes, see: + http://www.postgresql.org/docs/9.1/static/release-9-1-1.html +- Stop using deprecated silent_mode in default config. +- postgresql-perl514.patch is no longer needed. +- Use %_smp_mflags for parallel make ++++ 1896 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:13.1:Update/.postgresql92.2612.new/postgresql92-libs.changes New Changes file: postgresql92.changes: same change New: ---- baselibs.conf postgresql-9.2.7.tar.bz2 postgresql-README.SUSE postgresql-bashprofile postgresql-conf.patch postgresql-plperl.patch postgresql-regress.patch postgresql-rpmlintrc postgresql-sle10-timestamptz.patch postgresql-tas-aarch64.patch postgresql92-libs.changes postgresql92-libs.spec postgresql92.changes postgresql92.spec pre_checkin.sh ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql92-libs.spec ++++++ ++++ 645 lines (skipped) postgresql92.spec: same change ++++++ baselibs.conf ++++++ libpq5 provides "postgresql-libs-<targettype> = <version>" obsoletes "postgresql-libs-<targettype> < <version>" conflicts "postgresql-libs-<targettype> < 9.1.6" libecpg6 ++++++ postgresql-README.SUSE ++++++ Newer versions of PostgreSQL come with the pg_upgrade tool that simplifies and speeds up the migration of a PostgreSQL installation to a new version. Formerly dump and restore was needed that was much slower. pg_upgrade needs to have the server binaries of both versions available. To allow this, we had to change the way PostgreSQL is packaged as well as the naming of the packages, so that two or more versions of PostgreSQL can be installed in parallel. Starting with version 9.1, PostgreSQL package names contain numbers indicating the major version. In PostgreSQL terms the major version consists of the first two components of the version number, i.e. 8.3, 8.4, 9.0, or 9.1. So, the packages for Postgresql 9.1 are named postgresql91, postgresql91-server, etc. Inside the packages the files were moved from their standard locations to a versioned location such as /usr/lib/postgresql83/bin or /usr/lib/postgresql91/bin to avoid file conflicts if packages are installed in parallel. The update-alternatives mechanism creates and maintains symbolic links that cause one version (by default the highest installed version) to re-appear in the standard locations. By default, database data are stored under /var/lib/pgsql/data on SUSE Linux. The following preconditions have to be fulfilled before data migration can be started: 1. If not already done, the packages of the old PostgreSQL version must be upgraded to the new packaging scheme through a maintenance update. For SLE11 this means to install the patch that upgrades PostgreSQL from version 8.3.14 to 8.3.19 or higher. 2. The packages of the new PostgreSQL major version need to be installed. For SLE11 this means to install postgresql91-server and all the packages it depends on. As pg_upgrade is contained in postgresql91-contrib, that one has to be installed as well, at least until the migration is done. 3. Unless pg_upgrade is used in link mode, the server must have enough free disk space to temporarily hold a copy of the database files. If the database instance was installed in the default location, the needed space in megabytes can be determined by running the follwing command as root: "du -hs /var/lib/pgsql/data". If space is tight, it might help to run the "VACUUM FULL" SQL command on each database in the instance to be migrated, but be aware that it might take very long. Upstream documentation about pg_upgrade including step by step instructions for performing a database migration can be found under file:///usr/share/doc/packages/postgresql91/html/pgupgrade.html (if the postgresql91-docs package is installed), or online under http://www.postgresql.org/docs/9.1/static/pgupgrade.html . NOTE: The online documentation starts with explaining how you can install PostgreSQL from the upstream sources (which is not necessary on SLES) and also uses other directory names (/usr/local instead of the update-alternatives based path as described above). For background information about the inner workings of pg_admin and a performance comparison with the old dump and restore method, see http://momjian.us/main/writings/pgsql/pg_upgrade.pdf .++++++ postgresql-bashprofile ++++++ # Get PGDATA from /etc/sysconfig/postgresql if test -f /etc/sysconfig/postgresql; then eval eval $(sed -n '/^POSTGRES_DATADIR=/s//PGDATA=/p' /etc/sysconfig/postgresql) export PGDATA fi ++++++ postgresql-conf.patch ++++++ Index: src/backend/utils/misc/postgresql.conf.sample =================================================================== --- src/backend/utils/misc/postgresql.conf.sample.orig +++ src/backend/utils/misc/postgresql.conf.sample @@ -273,13 +273,13 @@ # - Where to Log - -#log_destination = 'stderr' # Valid values are combinations of +log_destination = 'stderr' # Valid values are combinations of # stderr, csvlog, syslog, and eventlog, # depending on platform. csvlog # requires logging_collector to be on. # This is used when logging to stderr: -#logging_collector = off # Enable capturing of stderr and csvlog +logging_collector = on # Enable capturing of stderr and csvlog # into log files. Required to be on for # csvlogs. # (change requires restart) @@ -374,7 +374,8 @@ #log_duration = off #log_error_verbosity = default # terse, default, or verbose messages #log_hostname = off -#log_line_prefix = '' # special values: +log_line_prefix = '%t %d %u ' + # special values: # %a = application name # %u = user name # %d = database name ++++++ postgresql-plperl.patch ++++++ Index: config/perl.m4 =================================================================== --- config/perl.m4.orig +++ config/perl.m4 @@ -57,9 +57,7 @@ AC_DEFUN([PGAC_CHECK_PERL_CONFIGS], AC_DEFUN([PGAC_CHECK_PERL_EMBED_LDFLAGS], [AC_REQUIRE([PGAC_PATH_PERL]) AC_MSG_CHECKING(for flags to link embedded Perl) -pgac_tmp1=`$PERL -MExtUtils::Embed -e ldopts` -pgac_tmp2=`$PERL -MConfig -e 'print $Config{ccdlflags}'` -perl_embed_ldflags=`echo X"$pgac_tmp1" | sed -e "s/^X//" -e "s%$pgac_tmp2%%" -e ["s/ -arch [-a-zA-Z0-9_]*//g"]` +perl_embed_ldflags=`$PERL -MExtUtils::Embed -e ldopts` AC_SUBST(perl_embed_ldflags)dnl if test -z "$perl_embed_ldflags" ; then AC_MSG_RESULT(no) Index: configure =================================================================== --- configure.orig +++ configure @@ -7218,9 +7218,7 @@ $as_echo "$perl_useshrplib" >&6; } { $as_echo "$as_me:$LINENO: checking for flags to link embedded Perl" >&5 $as_echo_n "checking for flags to link embedded Perl... " >&6; } -pgac_tmp1=`$PERL -MExtUtils::Embed -e ldopts` -pgac_tmp2=`$PERL -MConfig -e 'print $Config{ccdlflags}'` -perl_embed_ldflags=`echo X"$pgac_tmp1" | sed -e "s/^X//" -e "s%$pgac_tmp2%%" -e "s/ -arch [-a-zA-Z0-9_]*//g"` +perl_embed_ldflags=`$PERL -MExtUtils::Embed -e ldopts` if test -z "$perl_embed_ldflags" ; then { $as_echo "$as_me:$LINENO: result: no" >&5 $as_echo "no" >&6; } ++++++ postgresql-regress.patch ++++++ Index: src/test/regress/expected/horology.out =================================================================== --- src/test/regress/expected/horology.out.orig +++ src/test/regress/expected/horology.out @@ -616,26 +616,26 @@ SELECT (timestamp with time zone 'tomorr (1 row) -- timestamp with time zone, interval arithmetic around DST change -SET TIME ZONE 'CST7CDT'; -SELECT timestamp with time zone '2005-04-02 12:00-07' + interval '1 day' as "Apr 3, 12:00"; +SET TIME ZONE 'CST6CDT'; +SELECT timestamp with time zone '2005-04-02 12:00-06' + interval '1 day' as "Apr 3, 12:00"; Apr 3, 12:00 ------------------------------ Sun Apr 03 12:00:00 2005 CDT (1 row) -SELECT timestamp with time zone '2005-04-02 12:00-07' + interval '24 hours' as "Apr 3, 13:00"; +SELECT timestamp with time zone '2005-04-02 12:00-06' + interval '24 hours' as "Apr 3, 13:00"; Apr 3, 13:00 ------------------------------ Sun Apr 03 13:00:00 2005 CDT (1 row) -SELECT timestamp with time zone '2005-04-03 12:00-06' - interval '1 day' as "Apr 2, 12:00"; +SELECT timestamp with time zone '2005-04-03 12:00-05' - interval '1 day' as "Apr 2, 12:00"; Apr 2, 12:00 ------------------------------ Sat Apr 02 12:00:00 2005 CST (1 row) -SELECT timestamp with time zone '2005-04-03 12:00-06' - interval '24 hours' as "Apr 2, 11:00"; +SELECT timestamp with time zone '2005-04-03 12:00-05' - interval '24 hours' as "Apr 2, 11:00"; Apr 2, 11:00 ------------------------------ Sat Apr 02 11:00:00 2005 CST Index: src/test/regress/pg_regress.c =================================================================== --- src/test/regress/pg_regress.c.orig +++ src/test/regress/pg_regress.c @@ -72,7 +72,7 @@ static char *shellprog = SHELLPROG; */ #ifndef WIN32 const char *basic_diff_opts = ""; -const char *pretty_diff_opts = "-C3"; +const char *pretty_diff_opts = "-U5"; #else const char *basic_diff_opts = "-w"; const char *pretty_diff_opts = "-w -C3"; Index: src/test/regress/sql/horology.sql =================================================================== --- src/test/regress/sql/horology.sql.orig +++ src/test/regress/sql/horology.sql @@ -116,11 +116,11 @@ SELECT (timestamp with time zone 'tomorr SELECT (timestamp with time zone 'tomorrow' > 'now') as "True"; -- timestamp with time zone, interval arithmetic around DST change -SET TIME ZONE 'CST7CDT'; -SELECT timestamp with time zone '2005-04-02 12:00-07' + interval '1 day' as "Apr 3, 12:00"; -SELECT timestamp with time zone '2005-04-02 12:00-07' + interval '24 hours' as "Apr 3, 13:00"; -SELECT timestamp with time zone '2005-04-03 12:00-06' - interval '1 day' as "Apr 2, 12:00"; -SELECT timestamp with time zone '2005-04-03 12:00-06' - interval '24 hours' as "Apr 2, 11:00"; +SET TIME ZONE 'CST6CDT'; +SELECT timestamp with time zone '2005-04-02 12:00-06' + interval '1 day' as "Apr 3, 12:00"; +SELECT timestamp with time zone '2005-04-02 12:00-06' + interval '24 hours' as "Apr 3, 13:00"; +SELECT timestamp with time zone '2005-04-03 12:00-05' - interval '1 day' as "Apr 2, 12:00"; +SELECT timestamp with time zone '2005-04-03 12:00-05' - interval '24 hours' as "Apr 2, 11:00"; RESET TIME ZONE; ++++++ postgresql-rpmlintrc ++++++ addFilter("useless-explicit-provides") addFilter("unnecessary-buildrequires") addFilter("patch-not-applied") addFilter("non-standard-uid") addFilter("file-not-in-%lang") addFilter("no-dependency-on") ++++++ postgresql-sle10-timestamptz.patch ++++++ Only for SLE10. On other platforms, the test works. poeml, Mon Jul 27 19:12:40 CEST 2009 diff -uNr postgresql-8.4.0.orig/src/test/regress/expected/timestamptz.out postgresql-8.4.0/src/test/regress/expected/timestamptz.out --- postgresql-8.4.0.orig/src/test/regress/expected/timestamptz.out 2009-03-22 02:12:32.000000000 +0100 +++ postgresql-8.4.0/src/test/regress/expected/timestamptz.out 2009-07-27 19:11:39.280087000 +0200 @@ -153,7 +153,7 @@ SELECT '20500710 173201 Europe/Helsinki'::timestamptz; -- DST timestamptz ------------------------------ - Sun Jul 10 07:32:01 2050 PDT + Sun Jul 10 07:32:01 2050 PST (1 row) SELECT '20500110 173201 Europe/Helsinki'::timestamptz; -- non-DST @@ -165,7 +165,7 @@ SELECT '205000-07-10 17:32:01 Europe/Helsinki'::timestamptz; -- DST timestamptz -------------------------------- - Thu Jul 10 07:32:01 205000 PDT + Thu Jul 10 07:32:01 205000 PST (1 row) SELECT '205000-01-10 17:32:01 Europe/Helsinki'::timestamptz; -- non-DST ++++++ postgresql-tas-aarch64.patch ++++++ Index: src/include/storage/s_lock.h =================================================================== --- src/include/storage/s_lock.h.orig +++ src/include/storage/s_lock.h @@ -689,6 +689,23 @@ typedef unsigned char slock_t; #endif +#if defined(__aarch64__) +#define HAS_TEST_AND_SET + +#define TAS(lock) tas(lock) + +typedef int slock_t; + +static __inline__ int +tas(volatile slock_t *lock) +{ + return __sync_lock_test_and_set(lock, 1); +} + +#define S_UNLOCK(lock) __sync_lock_release(lock) + +#endif /* __aarch64__ */ + #endif /* defined(__GNUC__) || defined(__INTEL_COMPILER) */ ++++++ pre_checkin.sh ++++++ #!/bin/bash cp -a postgresql??.changes postgresql??-libs.changes cp -a postgresql??.spec postgresql??-libs.spec sed -i \ -e 's/%define buildmain .*/%define buildmain 1/' \ -e 's/%define buildlibs .*/%define buildlibs 0/' \ postgresql??.spec sed -i \ -e 's/postgresql[[:digit:]]\{2\}/&-libs/g' \ -e 's/%define buildmain .*/%define buildmain 0/' \ -e 's/%define buildlibs .*/%define buildlibs 1/' \ postgresql??-libs.spec diff -u postgresql??.spec postgresql??-libs.spec -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org
participants (1)
-
root@hilbert.suse.de