SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for postgresql10-10.5-6.26.x86_64.rpm :

* Tue Jun 18 2019 Reinhard Max - Update to 10.9:
* https://www.postgresql.org/docs/10/release-10-9.html
* CVE-2019-10164, bsc#1138034: Fix buffer-overflow hazards in SCRAM verifier parsing.
* Numerous other bug fixes.
* Thu May 16 2019 Reinhard Max - Update to 10.8:
* https://www.postgresql.org/docs/10/release-10-8.html
* https://www.postgresql.org/about/news/1939/
* CVE-2019-10130, bsc#1134689: Prevent row-level security policies from being bypassed via selectivity estimators.- Update to 10.7:
* https://www.postgresql.org/docs/10/release-10-7.html
* https://www.postgresql.org/about/news/1920/
* By default, panic instead of retrying after fsync() failure, to avoid possible data corruption.
* Ensure that NOT NULL constraints of a partitioned table are honored within its partitions.
* Numerous other bug fixes.
* Tue Nov 06 2018 Reinhard Max - Update to 10.6: https://www.postgresql.org/docs/current/static/release-10-6.html
* CVE-2018-16850, bsc#1114837: Improper quoting of transition table names when pg_dump emits CREATE TRIGGER can cause privilege escalation
* Numerous bug fixes, see the release notes.
* Wed Aug 08 2018 maxAATTsuse.com- Update to 10.5: https://www.postgresql.org/docs/current/static/release-10-5.html
* CVE-2018-10915, bsc#1104199: Fix failure to reset libpq\'s state fully between connection attempts.
* CVE-2018-10925, bsc#1104202: Fix INSERT ... ON CONFLICT UPDATE through a view that isn\'t just SELECT
* FROM ...
* Tue May 08 2018 maxAATTsuse.com- Update to 10.4: https://www.postgresql.org/about/news/1851/ https://www.postgresql.org/docs/current/static/release-10-4.html A dump/restore is not required for those running 10.X. However, if you use the adminpack extension, you should update it as per the first changelog entry below. Also, if the function marking mistakes mentioned in the second and third changelog entries below affect you, you will want to take steps to correct your database catalogs.
* CVE-2018-1115, bsc#1091610: Remove public execute privilege from contrib/adminpack\'s pg_logfile_rotate() function pg_logfile_rotate() is a deprecated wrapper for the core function pg_rotate_logfile(). When that function was changed to rely on SQL privileges for access control rather than a hard-coded superuser check, pg_logfile_rotate() should have been updated as well, but the need for this was missed. Hence, if adminpack is installed, any user could request a logfile rotation, creating a minor security issue. After installing this update, administrators should update adminpack by performing ALTER EXTENSION adminpack UPDATE in each database in which adminpack is installed.
* Fix incorrect volatility markings on a few built-in functions
* Fix incorrect parallel-safety markings on a few built-in functions.
* Wed May 02 2018 maxAATTsuse.com- bsc#1091412: server prerequires server-noarch to make sure that the postgresql user and group exist.
* Fri Mar 09 2018 mrueckertAATTsuse.de- Update to 10.3
* https://www.postgresql.org/docs/current/static/release-10-3.html A dump/restore is not required for those running 10.X. However, if you run an installation in which not all users are mutually trusting, or if you maintain an application or extension that is intended for use in arbitrary situations, it is strongly recommended that you read the documentation changes described in the first changelog entry in the link above, and take suitable steps to ensure that your installation or code is secure. Also, the changes described in the second changelog entry in the link above may cause functions used in index expressions or materialized views to fail during auto-analyze, or when reloading from a dump. After upgrading, monitor the server logs for such problems, and fix affected functions.
* CVE-2018-1058 bsc#1081925 Uncontrolled search path element in pg_dump and other client applications
* Fri Feb 09 2018 maxAATTsuse.com- Update to PostgreSQL 10.2
* https://www.postgresql.org/docs/10/static/release-10-2.html
* CVE-2018-1052, bsc#1080253: Fix processing of partition keys containing multiple expressions.
* CVE-2018-1053, bsc#1077983: Ensure that all temporary files made by pg_upgrade are non-world-readable.
* bsc#1079757: Rename pg_rewind\'s copy_file_range function to avoid conflict with new Linux system call of that name.
* Fri Jan 19 2018 maxAATTsuse.com- Use Python 3 for building PL/Python (boo#1067699).- Don\'t %config the symlinks to /etc/alternatives to avoid rpmlint warnings.
* Thu Dec 14 2017 mrueckertAATTsuse.de- also package %define pgcontribdir %pgdatadir/contrib
  
ICM