SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for postgresql93-docs-9.3.24-1.3.noarch.rpm :

* Fri Aug 10 2018 maxAATTsuse.com- Update to PostgreSQL 9.3.24: https://www.postgresql.org/docs/current/static/release-9-3-24.html https://www.postgresql.org/docs/current/static/release-9-3-23.html
* CVE-2018-10915, bsc#1104199: Fix failure to reset libpq\'s state fully between connection attempts.
* Sat Mar 10 2018 mrueckertAATTsuse.de- Update to PostgreSQL 9.3.22:
* https://www.postgresql.org/docs/9.3/static/release-9-3-22.html A dump/restore is not required for those running 9.3.X. However, if you run an installation in which not all users are mutually trusting, or if you maintain an application or extension that is intended for use in arbitrary situations, it is strongly recommended that you read the documentation changes described in the first changelog entry in the link above, and take suitable steps to ensure that your installation or code is secure. Also, the changes described in the second changelog entry in the link above may cause functions used in index expressions or materialized views to fail during auto-analyze, or when reloading from a dump. After upgrading, monitor the server logs for such problems, and fix affected functions.
* CVE-2018-1058 bsc#1081925 Uncontrolled search path element in pg_dump and other client applications
* Fri Feb 09 2018 maxAATTsuse.com- Update to PostgreSQL 9.3.21:
* https://www.postgresql.org/docs/9.3/static/release-9-3-21.html
* CVE-2018-1053, bsc#1077983: Ensure that all temporary files made by pg_upgrade are non-world-readable.
* bsc#1079757: Rename pg_rewind\'s copy_file_range function to avoid conflict with new Linux system call of that name.- Security fixes from 9.3.20:
* CVE-2017-15098, bsc#1067844: Memory disclosure in JSON functions.- Don\'t %config the symlinks to /etc/alternatives to avoid rpmlint warnings.
* Thu Nov 23 2017 mrueckertAATTsuse.de- port /usr/share/postgresql/install-alternatives usage to the new scheme
* Mon Oct 02 2017 maxAATTsuse.com- Break a build dependency loop in the server packages that led to bootstrap problems.
* Fri Sep 01 2017 maxAATTsuse.com- Update to version 9.3.18:
* https://www.postgresql.org/docs/9.3/static/release-9-3-18.html
* Show foreign tables in information_schema.table_privileges view.
* Clean up handling of a fatal exit (e.g., due to receipt of SIGTERM) that occurs while trying to execute a ROLLBACK of a failed transaction.
* Remove assertion that could trigger during a fatal exit.
* Correctly identify columns that are of a range type or domain type over a composite type or domain type being searched for.
* Fix crash in pg_restore when using parallel mode and using a list file to select a subset of items to restore.
* Change ecpg\'s parser to allow RETURNING clauses without attached C variables.
* Fri Aug 11 2017 maxAATTsuse.com- Update to version 9.3.18:
* https://www.postgresql.org/docs/9.3/static/release-9-3-18.html
* CVE-2017-7547, bsc#1051685: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options.
* CVE-2017-7546, bsc#1051684: Disallow empty passwords in all password-based authentication methods.
* Fri Aug 04 2017 mrueckertAATTsuse.de- use multibuild
* Tue May 09 2017 maxAATTsuse.com- Update to version 9.3.17:
* https://www.postgresql.org/docs/9.3/static/release-9-3-16.html
* CVE-2017-7486, bsc#1037624: Restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. !!! Manual action is needed to fix this in existing databases !!! See upstream release notes for details.
* CVE-2017-7485, bsc#1038293: recognize PGREQUIRESSL variable again.
* CVE-2017-7484, bsc#1037603: Prevent exposure of statistical information via leaky operators.
* Obsoletes postgresql-9.3.16-fix-timezone-tests.patch- Move the timezone requirement to the server package as it was originally intended.- Sync spec file with postgresql96.- Merge Factory and SLE-12.
* Wed Mar 15 2017 astiegerAATTsuse.com- fix tests with timezone 2017a bsc#1029547 postgresql-9.3.16-fix-timezone-tests.patch
* Thu Feb 09 2017 mrueckertAATTsuse.de- Update to version 9.3.16: - Build corruption with CREATE INDEX CONCURRENTLY - Fixes for visibility and write-ahead-log stability For the full release notes, see: https://www.postgresql.org/docs/9.3/static/release-9-3-16.html
* Thu Dec 08 2016 fweissAATTsuse.com- Update to version 9.3.15:
* Fix WAL-logging of truncation of relation free space maps and visibility maps
* Fix SELECT FOR UPDATE/SHARE to correctly lock tuples that have been updated by a subsequently-aborted transaction
* Fix EvalPlanQual rechecks involving CTE scans
* Fix improper repetition of previous results from hashed aggregation in a subquery
* Fix EXPLAIN to emit valid XML when track_io_timing is on
* For the other bug fixes, see the release notes: https://www.postgresql.org/docs/9.3/static/release-9-3-15.html
* Thu Sep 15 2016 fweissAATTsuse.com- Added \"Requires: timezone\" to Server Package (bsc#973660)
* Fri Aug 12 2016 fweissAATTsuse.com- Update to version 9.3.14:
* Fix possible mis-evaluation of nested CASE-WHEN expressions (CVE-2016-5423, bsc#993454)
* Fix client programs\' handling of special characters in database and role names (CVE-2016-5424, bsc#993453)
* Fix corner-case misbehaviors for IS NULL/IS NOT NULL applied to nested composite values
* Make the inet and cidr data types properly reject IPv6 addresses with too many colon-separated fields
* Prevent crash in close_ps() (the point ## lseg operator) for NaN input coordinates
* Fix several one-byte buffer over-reads in to_number()
* Avoid unsafe intermediate state during expensive paths through heap_update()
* For the other bug fixes, see the release notes: https://www.postgresql.org/docs/9.3/static/release-9-3-14.html
* Thu May 19 2016 mrueckertAATTsuse.de- Bugfix release 9.3.13 This update fixes several problems which caused downtime for users, including: - Clearing the OpenSSL error queue before OpenSSL calls, preventing errors in SSL connections, particularly when using the Python, Ruby or PHP OpenSSL wrappers - Fixed the \"failed to build N-way joins\" planner error - Fixed incorrect handling of equivalence in multilevel nestloop query plans, which could emit rows which didn\'t match the WHERE clause. - Prevented two memory leaks with using GIN indexes, including a potential index corruption risk. The release also includes many other bug fixes for reported issues, many of which affect all supported versions: - Fix corner-case parser failures occurring when operator_precedence_warning is turned on - Prevent possible misbehavior of TH, th, and Y,YYY format codes in to_timestamp() - Correct dumping of VIEWs and RULEs which use ANY (array) in a subselect - Disallow newlines in ALTER SYSTEM parameter values - Avoid possible misbehavior after failing to remove a tablespace symlink - Fix crash in logical decoding on alignment-picky platforms - Avoid repeated requests for feedback from receiver while shutting down walsender - Multiple fixes for pg_upgrade - Support building with Visual Studio 2015 - This update also contains tzdata release 2016d, with updates for Russia, Venezuela, Kirov, and Tomsk. http://www.postgresql.org/docs/current/static/release-9-3-13.html
* Wed May 04 2016 mrueckertAATTsuse.de- Bugfix release 9.3.12: - Fix two bugs in indexed ROW() comparisons - Avoid data loss due to renaming files - Prevent an error in rechecking rows in SELECT FOR UPDATE/SHARE - Fix bugs in multiple json_ and jsonb_ functions - Log lock waits for INSERT ON CONFLICT correctly - Ignore recovery_min_apply_delay until reaching a consistent state - Fix issue with pg_subtrans XID wraparound - Fix assorted bugs in Logical Decoding - Fix planner error with nested security barrier views - Prevent memory leak in GIN indexes - Fix two issues with ispell dictionaries - Avoid a crash on old Windows versions - Skip creating an erroneous delete script in pg_upgrade - Correctly translate empty arrays into PL/Perl - Make PL/Python cope with identifier names- For the full release notes, see: http://www.postgresql.org/docs/9.3/static/release-9-3-12.html
* Fri Feb 12 2016 maxAATTsuse.com- Security and bugfix release 9.3.11:
* Fix infinite loops and buffer-overrun problems in regular expressions (CVE-2016-0773, bsc#966436).
* Fix regular-expression compiler to handle loops of constraint arcs (CVE-2007-4772).
* Prevent certain PL/Java parameters from being set by non-superusers (CVE-2016-0766, bsc#966435).
* Fix many issues in pg_dump with specific object types
* Prevent over-eager pushdown of HAVING clauses for GROUPING SETS
* Fix deparsing error with ON CONFLICT ... WHERE clauses
* Fix tableoid errors for postgres_fdw
* Prevent floating-point exceptions in pgbench
* Make \\det search Foreign Table names consistently
* Fix quoting of domain constraint names in pg_dump
* Prevent putting expanded objects into Const nodes
* Allow compile of PL/Java on Windows
* Fix \"unresolved symbol\" errors in PL/Python execution
* Allow Python2 and Python3 to be used in the same database
* Add support for Python 3.5 in PL/Python
* Fix issue with subdirectory creation during initdb
* Make pg_ctl report status correctly on Windows
* Suppress confusing error when using pg_receivexlog with older servers
* Multiple documentation corrections and additions
* Fix erroneous hash calculations in gin_extract_jsonb_path()- For the full release notse, see: http://www.postgresql.org/docs/9.3/static/release-9-3-11.html
* Mon Oct 12 2015 maxAATTsuse.com- Security and bugfix release 9.3.10:
* CVE-2015-5289, bsc#949670: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service.
* CVE-2015-5288, bsc#949669: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed.- For the full release notse, see: http://www.postgresql.org/docs/current/static/release-9-3-10.html- Move systemd related stuff and user creation to postgresql-init.- Remove some obsolete %suse_version conditionals.- Adjust build time dependencies.- Fix some more rpmlint warnings.- Relax dependency on libpq to major version.
* Mon Sep 28 2015 maxAATTsuse.com- Move ~postgres/.bash_profile to postgresql-server to avoid a file conflict between the versioned server packages.
* Thu Aug 20 2015 maxAATTsuse.com- Merge openSUSE and SLE12 packages (bsc#941886).- Merge .changes, remove duplicate entries and fix syntax violations at the very bottom.- postgresql-sle10-timestamptz.patch is obsolete.- remove baselibs.conf, because we don\'t build the libarries any longer.- Bugfix release 9.3.9:
* Fix possible failure to recover from an inconsistent database state. See full release notes for details.
* Fix rare failure to invalidate relation cache init file.
* Avoid deadlock between incoming sessions and CREATE/DROP DATABASE.
* Improve planner\'s cost estimates for semi-joins and anti-joins with inner indexscans- For the full release notse, see: http://www.postgresql.org/docs/9.3/static/release-9-3-9.html
* Wed Jun 03 2015 maxAATTsuse.com- Bugfix release 9.3.8:
* Avoid failures while fsync\'ing data directory during crash restart.
* Fix pg_get_functiondef() to show functions\' LEAKPROOF property, if set.
* Allow libpq to use TLS protocol versions beyond v1.- For the full release notse, see: http://www.postgresql.org/docs/9.3/static/release-9-3-8.html
* Fri May 22 2015 maxAATTsuse.com- Security and bugfix release 9.3.7:
* CVE-2015-3165, bsc#931972: Avoid possible crash when client disconnects just before the authentication timeout expires.
* CVE-2015-3166, bsc#931973: Consistently check for failure of the
* printf() family of functions.
* CVE-2015-3167, bsc#931974: In contrib/pgcrypto, uniformly report decryption failures as \"Wrong key or corrupt data\"
* Protect against wraparound of multixact member IDs.- For the full release notse, see: http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
* Fri Feb 20 2015 maxAATTsuse.com- Security and bugfix release 9.3.6 (bnc#916953):
* Fix buffer overruns in to_char() (CVE-2015-0241).
* Fix buffer overrun in replacement
*printf() functions (CVE-2015-0242).
* Fix buffer overruns in contrib/pgcrypto (CVE-2015-0243).
* Fix possible loss of frontend/backend protocol synchronization after an error (CVE-2015-0244).
* Fix information leak via constraint-violation error messages (CVE-2014-8161).
* For the other bug fixes, see the release notes: http://www.postgresql.org/docs/9.3/static/release-9-3-6.html
* Thu Feb 19 2015 maxAATTsuse.com- Align spec file with version 9.4 and improve the building of libs and devel.
  
ICM