Date: Mon, 4 Jun 2012 11:00:52 +0000 (UTC) From: Palle Girgensohn <girgen@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/databases/postgresql83-server Makefile distinfo pkg-plist-server ports/databases/postgresql83-server/files patch-crypt-des.c ports/databases/postgresql84-server Makefile distinfo pkg-plist-server ports/databases/postgresql84-server/files patch-crypt-des.c ... Message-ID: <201206041100.q54B0qta029172@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
girgen 2012-06-04 11:00:52 UTC
FreeBSD ports repository
Modified files:
databases/postgresql83-server Makefile distinfo
pkg-plist-server
databases/postgresql84-server Makefile distinfo
pkg-plist-server
databases/postgresql90-server Makefile distinfo
pkg-plist-server
databases/postgresql91-server Makefile distinfo
pkg-plist-server
databases/postgresql92-server Makefile distinfo
pkg-plist-server
databases/postgresql90-client Makefile
Removed files:
databases/postgresql83-server/files patch-crypt-des.c
databases/postgresql84-server/files patch-crypt-des.c
databases/postgresql90-server/files patch-crypt-des.c
databases/postgresql91-server/files patch-crypt-des.c
databases/postgresql92-server/files patch-crypt-des.c
Log:
The PostgreSQL Global Development Group today released security updates for all
active branches of the PostgreSQL database system, including versions 9.1.4,
9.0.8, 8.4.12 and 8.3.19.
Users of the crypt(text, text) function with DES encryption in the optional
pg_crypto module should upgrade their installations immediately, if you have'nt
already updated since the port was patched on May 30. All other database
administrators are urged to upgrade your version of PostgreSQL at the
next scheduled downtime.
URL: http://www.postgresql.org/about/news/1398/
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2143
Fix incorrect password transformation in contrib/pgcrypto’s DES crypt() function
This was fixed in a patch release for the FreeBSD ports on May 30.
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2655
Ignore SECURITY DEFINER and SET attributes for a procedural language’s call handle
Revision Changes Path
1.229 +2 -2 ports/databases/postgresql83-server/Makefile
1.82 +2 -2 ports/databases/postgresql83-server/distinfo
1.2 +0 -12 ports/databases/postgresql83-server/files/patch-crypt-des.c (dead)
1.34 +1 -0 ports/databases/postgresql83-server/pkg-plist-server
1.251 +2 -2 ports/databases/postgresql84-server/Makefile
1.85 +2 -2 ports/databases/postgresql84-server/distinfo
1.2 +0 -12 ports/databases/postgresql84-server/files/patch-crypt-des.c (dead)
1.40 +1 -0 ports/databases/postgresql84-server/pkg-plist-server
1.9 +1 -1 ports/databases/postgresql90-client/Makefile
1.243 +2 -2 ports/databases/postgresql90-server/Makefile
1.85 +2 -2 ports/databases/postgresql90-server/distinfo
1.2 +0 -12 ports/databases/postgresql90-server/files/patch-crypt-des.c (dead)
1.41 +1 -0 ports/databases/postgresql90-server/pkg-plist-server
1.250 +2 -2 ports/databases/postgresql91-server/Makefile
1.91 +2 -2 ports/databases/postgresql91-server/distinfo
1.2 +0 -12 ports/databases/postgresql91-server/files/patch-crypt-des.c (dead)
1.45 +1 -0 ports/databases/postgresql91-server/pkg-plist-server
1.252 +3 -3 ports/databases/postgresql92-server/Makefile
1.93 +2 -2 ports/databases/postgresql92-server/distinfo
1.2 +0 -12 ports/databases/postgresql92-server/files/patch-crypt-des.c (dead)
1.47 +1 -0 ports/databases/postgresql92-server/pkg-plist-server
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201206041100.q54B0qta029172>