Date: Thu, 11 May 2023 15:43:40 GMT From: Palle Girgensohn <girgen@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 3fd6f200dc8c - main - databases/postgresql??-server: update to latest version Message-ID: <202305111543.34BFheht090978@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by girgen: URL: https://cgit.FreeBSD.org/ports/commit/?id=3fd6f200dc8c12022515f7c3f662df148941e261 commit 3fd6f200dc8c12022515f7c3f662df148941e261 Author: Palle Girgensohn <girgen@FreeBSD.org> AuthorDate: 2023-05-11 15:21:54 +0000 Commit: Palle Girgensohn <girgen@FreeBSD.org> CommitDate: 2023-05-11 15:42:57 +0000 databases/postgresql??-server: update to latest version The PostgreSQL Global Development Group has released an update to all supported versions of PostgreSQL, including 15.3, 14.8, 13.11, 12.15, and 11.20. This release fixes two security vulnerabilities over 80 bugs reported over the last several months. CVE-2023-2454: CREATE SCHEMA ... schema_element defeats protective search_path changes. This enabled an attacker having database-level CREATE privilege to execute arbitrary code as the bootstrap superuser. Database owners have that right by default, and explicit grants may extend it to other users. CVE-2023-2455: Row security policies disregard user ID changes after inlining. While CVE-2016-2193 fixed most interaction between row security and user ID changes, it missed a scenario involving function inlining. This leads to potentially incorrect policies being applied in cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security definer functions or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise-forbidden reads and modifications. This affects only databases that have used CREATE POLICY to define a row security policy. Security: fbb5a260-f00f-11ed-bbae-6cc21735f730 Security: 4b636f50-f011-11ed-bbae-6cc21735f730 Release-notes: https://www.postgresql.org/docs/release/ --- databases/postgresql11-server/Makefile | 4 ++-- databases/postgresql11-server/distinfo | 6 ++--- databases/postgresql12-server/Makefile | 4 ++-- databases/postgresql12-server/distinfo | 6 ++--- databases/postgresql13-server/Makefile | 4 ++-- databases/postgresql13-server/distinfo | 6 ++--- databases/postgresql14-server/Makefile | 4 ++-- databases/postgresql14-server/distinfo | 6 ++--- databases/postgresql15-server/Makefile | 4 ++-- databases/postgresql15-server/distinfo | 6 ++--- databases/postgresql15-server/pkg-plist-client | 1 + databases/postgresql15-server/pkg-plist-server | 33 +++++++++++++++++--------- 12 files changed, 48 insertions(+), 36 deletions(-) diff --git a/databases/postgresql11-server/Makefile b/databases/postgresql11-server/Makefile index f1fba1e8bc55..08ff7ed3f0eb 100644 --- a/databases/postgresql11-server/Makefile +++ b/databases/postgresql11-server/Makefile @@ -1,7 +1,7 @@ -DISTVERSION?= 11.19 +DISTVERSION?= 11.20 # PORTREVISION must be ?= otherwise, all slave ports get this PORTREVISION and # not their own. Probably best to keep it at ?=0 when reset here too. -PORTREVISION?= 2 +PORTREVISION?= 0 MAINTAINER?= pgsql@FreeBSD.org diff --git a/databases/postgresql11-server/distinfo b/databases/postgresql11-server/distinfo index 89cd1b67604b..cfa9c2b2178c 100644 --- a/databases/postgresql11-server/distinfo +++ b/databases/postgresql11-server/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1675791439 -SHA256 (postgresql/postgresql-11.19.tar.bz2) = 13109e2b71f1139405c27201da3733a61ace72ee1c228d9c9f0320e06aee14c2 -SIZE (postgresql/postgresql-11.19.tar.bz2) = 20457793 +TIMESTAMP = 1683631074 +SHA256 (postgresql/postgresql-11.20.tar.bz2) = 3d7c8882f64a7e98534a044257dfee7abad77a5b7da12508d85d722b98b5acce +SIZE (postgresql/postgresql-11.20.tar.bz2) = 20456483 diff --git a/databases/postgresql12-server/Makefile b/databases/postgresql12-server/Makefile index 43ce52802fdb..703060350175 100644 --- a/databases/postgresql12-server/Makefile +++ b/databases/postgresql12-server/Makefile @@ -1,7 +1,7 @@ -DISTVERSION?= 12.14 +DISTVERSION?= 12.15 # PORTREVISION must be ?= otherwise, all slave ports get this PORTREVISION and # not their own. Probably best to keep it at ?=0 when reset here too. -PORTREVISION?= 1 +PORTREVISION?= 0 MAINTAINER?= pgsql@FreeBSD.org diff --git a/databases/postgresql12-server/distinfo b/databases/postgresql12-server/distinfo index 2bb46e1b32bb..9b52869a1c86 100644 --- a/databases/postgresql12-server/distinfo +++ b/databases/postgresql12-server/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1675791439 -SHA256 (postgresql/postgresql-12.14.tar.bz2) = 785610237d382c842d356e347138e58c06ffeae240e6cc0b52ac5ebcc30d043e -SIZE (postgresql/postgresql-12.14.tar.bz2) = 21124742 +TIMESTAMP = 1683631075 +SHA256 (postgresql/postgresql-12.15.tar.bz2) = bb5206e2864c1c4579938b96ea6096d155f22abf2d2cc2aa57571e3c4cb12b36 +SIZE (postgresql/postgresql-12.15.tar.bz2) = 21127306 diff --git a/databases/postgresql13-server/Makefile b/databases/postgresql13-server/Makefile index bd054650762a..cc3f1dd18961 100644 --- a/databases/postgresql13-server/Makefile +++ b/databases/postgresql13-server/Makefile @@ -1,7 +1,7 @@ -DISTVERSION?= 13.10 +DISTVERSION?= 13.11 # PORTREVISION must be ?= otherwise, all slave ports get this PORTREVISION and # not their own. Probably best to keep it at ?=0 when reset here too. -PORTREVISION?= 1 +PORTREVISION?= 0 MAINTAINER?= pgsql@FreeBSD.org diff --git a/databases/postgresql13-server/distinfo b/databases/postgresql13-server/distinfo index 2a3f2ff16279..d62375c0a985 100644 --- a/databases/postgresql13-server/distinfo +++ b/databases/postgresql13-server/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1675791441 -SHA256 (postgresql/postgresql-13.10.tar.bz2) = 5bbcf5a56d85c44f3a8b058fb46862ff49cbc91834d07e295d02e6de3c216df2 -SIZE (postgresql/postgresql-13.10.tar.bz2) = 21457594 +TIMESTAMP = 1683631076 +SHA256 (postgresql/postgresql-13.11.tar.bz2) = 4992ff647203566b670d4e54dc5317499a26856c93576d0ea951bdf6bee50bfb +SIZE (postgresql/postgresql-13.11.tar.bz2) = 21519655 diff --git a/databases/postgresql14-server/Makefile b/databases/postgresql14-server/Makefile index bd9ae915f7d6..2b02150f7460 100644 --- a/databases/postgresql14-server/Makefile +++ b/databases/postgresql14-server/Makefile @@ -1,7 +1,7 @@ -DISTVERSION?= 14.7 +DISTVERSION?= 14.8 # PORTREVISION must be ?= otherwise, all slave ports get this PORTREVISION and # not their own. Probably best to keep it at ?=0 when reset here too. -PORTREVISION?= 1 +PORTREVISION?= 0 MAINTAINER?= pgsql@FreeBSD.org diff --git a/databases/postgresql14-server/distinfo b/databases/postgresql14-server/distinfo index 2f921a832fda..adf611d66417 100644 --- a/databases/postgresql14-server/distinfo +++ b/databases/postgresql14-server/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1675791442 -SHA256 (postgresql/postgresql-14.7.tar.bz2) = cef60f0098fa8101c1546f4254e45b722af5431337945b37af207007630db331 -SIZE (postgresql/postgresql-14.7.tar.bz2) = 22182073 +TIMESTAMP = 1683631077 +SHA256 (postgresql/postgresql-14.8.tar.bz2) = 39d38f0030737ed03835debeefee3b37d335462ce4995e2497bc38d621ebe45a +SIZE (postgresql/postgresql-14.8.tar.bz2) = 22204905 diff --git a/databases/postgresql15-server/Makefile b/databases/postgresql15-server/Makefile index 13c0043bf133..a44c1093df4b 100644 --- a/databases/postgresql15-server/Makefile +++ b/databases/postgresql15-server/Makefile @@ -1,8 +1,8 @@ PORTNAME?= postgresql -DISTVERSION?= 15.2 +DISTVERSION?= 15.3 # PORTREVISION must be ?= otherwise, all slave ports get this PORTREVISION and # not their own. Probably best to keep it at ?=0 when reset here too. -PORTREVISION?= 1 +PORTREVISION?= 0 CATEGORIES?= databases MASTER_SITES= PGSQL/source/v${DISTVERSION} PKGNAMESUFFIX?= ${PORTVERSION:R}${COMPONENT} diff --git a/databases/postgresql15-server/distinfo b/databases/postgresql15-server/distinfo index dc2176452793..96b03c9c614f 100644 --- a/databases/postgresql15-server/distinfo +++ b/databases/postgresql15-server/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1675791442 -SHA256 (postgresql/postgresql-15.2.tar.bz2) = 99a2171fc3d6b5b5f56b757a7a3cb85d509a38e4273805def23941ed2b8468c7 -SIZE (postgresql/postgresql-15.2.tar.bz2) = 22688379 +TIMESTAMP = 1683631078 +SHA256 (postgresql/postgresql-15.3.tar.bz2) = ffc7d4891f00ffbf5c3f4eab7fbbced8460b8c0ee63c5a5167133b9e6599d932 +SIZE (postgresql/postgresql-15.3.tar.bz2) = 22819107 diff --git a/databases/postgresql15-server/pkg-plist-client b/databases/postgresql15-server/pkg-plist-client index 7af2fbe666c3..d4ff8a8d1d21 100644 --- a/databases/postgresql15-server/pkg-plist-client +++ b/databases/postgresql15-server/pkg-plist-client @@ -1259,6 +1259,7 @@ man/man7/WITH.7.gz %%NLS%%share/locale/ko/LC_MESSAGES/ecpg-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/ecpglib6-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/libpq5-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_amcheck-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_config-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_dump-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pgscripts-%%PG_VERSION%%.mo diff --git a/databases/postgresql15-server/pkg-plist-server b/databases/postgresql15-server/pkg-plist-server index 7b47b3ebfd15..57297e9e3dd4 100644 --- a/databases/postgresql15-server/pkg-plist-server +++ b/databases/postgresql15-server/pkg-plist-server @@ -818,11 +818,15 @@ lib/postgresql/utf8_and_win.so %%NLS%%share/locale/de/LC_MESSAGES/postgres-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/initdb-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo +%%NLS%%share/locale/el/LC_MESSAGES/pg_basebackup-%%PG_VERSION%%.mo +%%NLS%%share/locale/el/LC_MESSAGES/pg_checksums-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_controldata-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_ctl-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_resetwal-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_rewind-%%PG_VERSION%%.mo +%%NLS%%share/locale/el/LC_MESSAGES/pg_test_fsync-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/pg_test_timing-%%PG_VERSION%%.mo +%%NLS%%share/locale/el/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo %%NLS%%share/locale/el/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo %%NLS%%share/locale/es/LC_MESSAGES/initdb-%%PG_VERSION%%.mo %%NLS%%share/locale/es/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo @@ -852,9 +856,20 @@ lib/postgresql/utf8_and_win.so %%NLS%%share/locale/fr/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo %%NLS%%share/locale/fr/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo %%NLS%%share/locale/fr/LC_MESSAGES/postgres-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/initdb-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_basebackup-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_checksums-%%PG_VERSION%%.mo %%NLS%%share/locale/it/LC_MESSAGES/pg_controldata-%%PG_VERSION%%.mo %%NLS%%share/locale/it/LC_MESSAGES/pg_ctl-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_resetwal-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_rewind-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_test_fsync-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_test_timing-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_upgrade-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo %%NLS%%share/locale/it/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo +%%NLS%%share/locale/it/LC_MESSAGES/postgres-%%PG_VERSION%%.mo %%NLS%%share/locale/ja/LC_MESSAGES/initdb-%%PG_VERSION%%.mo %%NLS%%share/locale/ja/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo %%NLS%%share/locale/ja/LC_MESSAGES/pg_basebackup-%%PG_VERSION%%.mo @@ -882,22 +897,18 @@ lib/postgresql/utf8_and_win.so %%NLS%%share/locale/ka/LC_MESSAGES/pg_upgrade-%%PG_VERSION%%.mo %%NLS%%share/locale/ka/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo %%NLS%%share/locale/ka/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/initdb-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/postgres-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/initdb-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_archivecleanup-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_basebackup-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_checksums-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_resetwal-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_rewind-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_test_fsync-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_test_timing-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_upgrade-%%PG_VERSION%%.mo -%%NLS%%share/locale/it/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_basebackup-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_checksums-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_controldata-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_ctl-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_resetwal-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_rewind-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_test_fsync-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_test_timing-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/pg_upgrade-%%PG_VERSION%%.mo +%%NLS%%share/locale/ko/LC_MESSAGES/pg_waldump-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo %%NLS%%share/locale/ko/LC_MESSAGES/postgres-%%PG_VERSION%%.mo %%NLS%%share/locale/pl/LC_MESSAGES/plpgsql-%%PG_VERSION%%.mo
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202305111543.34BFheht090978>