openSUSE Build Service

Overview Repositories Revisions Requests Users Attributes Meta

Revisions of postgresql12

Ana Guerrero (anag+factory) accepted request 1224296 from

Reinhard Max (rmax) 7 days ago (revision 36)

- Upgrade to 12.21:
  * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as
    dependent on the calling role when RLS applies to a
    non-top-level table reference.
  * CVE-2024-10977, bsc#1233325: Make libpq discard error messages
    received during SSL or GSS protocol negotiation.
  * CVE-2024-10978, bsc#1233326: Fix unintended interactions
    between SET SESSION AUTHORIZATION and SET ROLE
  * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from
    changing environment variables.
  * https://www.postgresql.org/about/news/p-2955/
  * https://www.postgresql.org/docs/release/12.21/

- Sync spec file from postgresql17.

  * https://www.postgresql.org/about/news/p-2910/

Ana Guerrero (anag+factory) accepted request 1201983 from

Marcus Rueckert (darix) 2 months ago (revision 35)

- Upgrade to 12.20 (bsc#1229013):
  * bsc#1229013, CVE-2024-7348 PostgreSQL relation replacement
    during pg_dump executes arbitrary SQL
  * https://www.postgresql.org/about/news/postgresql-164-158-1413-1316-1220-and-17-beta-3-released-2910/
  * https://www.postgresql.org/docs/release/12.20/

Dominique Leuenberger (dimstar_suse) accepted request 1172964 from

Reinhard Max (rmax) 7 months ago (revision 34)

- Upgrade to 12.19 (bsc#1224051):
  * Fix incompatibility with LLVM 18.
  * https://www.postgresql.org/docs/release/12.19/
- Prepare for PostgreSQL 17.
- Make sure all compilation and doc generation happens in %build.

- Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work.

- Remove constraints file because improved memory usage for s390x

Ana Guerrero (anag+factory) accepted request 1154709 from

Reinhard Max (rmax) 9 months ago (revision 33)

Ana Guerrero (anag+factory) accepted request 1145273 from

Reinhard Max (rmax) 10 months ago (revision 32)

- Upgrade to 12.18:
  * bsc#1219679, CVE-2024-0985: Tighten security restrictions
    within REFRESH MATERIALIZED VIEW CONCURRENTLY.
    One step of a concurrent refresh command was run under weak
    security restrictions. If a materialized view's owner could
    persuade a superuser or other high-privileged user to perform a
    concurrent refresh on that view, the view's owner could control
    code executed with the privileges of the user running REFRESH.
    Fix things so that all user-determined code is run as the
    view's owner, as expected
  * If you use GIN indexes, you may need to reindex after updating
    to this release.
  * LLVM 18 is now supported.
  * https://www.postgresql.org/docs/release/12.18/

- Update to 12.17:
  * bsc#1216962, CVE-2023-5868: Fix handling of unknown-type
    arguments in DISTINCT "any" aggregate functions. This error led
    to a text-type value being interpreted as an unknown-type value
    (that is, a zero-terminated string) at runtime. This could
    result in disclosure of server memory following the text value.
  * bsc#1216961, CVE-2023-5869: Detect integer overflow while
    computing new array dimensions. When assigning new elements to
    array subscripts that are outside the current array bounds, an
    undetected integer overflow could occur in edge cases. Memory
    stomps that are potentially exploitable for arbitrary code
    execution are possible, and so is disclosure of server memory.
  * bsc#1216960, CVE-2023-5870: Prevent the pg_signal_backend role
    from signalling background workers and autovacuum processes.
    The documentation says that pg_signal_backend cannot issue

Ana Guerrero (anag+factory) accepted request 1121432 from

Reinhard Max (rmax) about 1 year ago (revision 31)

Revert last change and make the devel package independend

Ana Guerrero (anag+factory) accepted request 1120253 from

Reinhard Max (rmax) about 1 year ago (revision 30)

- boo#1216022: Call install-alternatives from the devel subpackage
  as well, otherwise the symlink for ecpg might be missing.

- Also buildignore the postgresql*-implementation symbols: this is
  needed in order to bootstrap when no postgresql version currently
  has valid symbols provided. Once the packages are built, OBS
  could translate this to the pgname-* packages and accept the
  ignores; during bootstrap though, there is nothing providing the
  symbol and the existing buildignores do not suffice.

Dominique Leuenberger (dimstar_suse) accepted request 1103350 from

Reinhard Max (rmax) over 1 year ago (revision 29)

- Update to 12.16:
  * bsc#1214059, CVE-2023-39417: Disallow substituting a schema or
    owner name into an extension script if the name contains a
    quote, backslash, or dollar sign.
  * https://www.postgresql.org/docs/12/release-12-16.html

- Restore the independence of mini builds from the main build after
  the -mini name change from April 4, 2023.
- Adjust icu handling to prepare for PostgreSQL 16.

- Overhaul postgresql-README.SUSE and move it from the binary
  package to the noarch wrapper package.
- Change the unix domain socket location from /var/run to /run.

Dominique Leuenberger (dimstar_suse) accepted request 1086557 from

Reinhard Max (rmax) over 1 year ago (revision 28)

- Update to 12.15:
  * bsc#1211228, CVE-2023-2454:
    Prevent CREATE SCHEMA from defeating changes in search_path
  * bsc#1211229, CVE-2023-2455: Enforce row-level security
    policies correctly after inlining a set-returning function
  * https://www.postgresql.org/about/news/2637/
  * https://www.postgresql.org/docs/12/release-12-15.html

Dominique Leuenberger (dimstar_suse) accepted request 1081148 from

Reinhard Max (rmax) over 1 year ago (revision 27)

- bsc#1210303: Stop using the obsolete internal %_restart_on_update
  macro and drop support for sysv init to simplify the scriptlets.

- Include -mini in Name: to avoid conflicts in the source package
  name and OBS internal dependency tracking.

Dominique Leuenberger (dimstar_suse) accepted request 1064057 from

Reinhard Max (rmax) almost 2 years ago (revision 26)

- Update to 12.14:
  * CVE-2022-41862, bsc#1208102: memory leak in libpq
  * https://www.postgresql.org/about/news/2592/
  * https://www.postgresql.org/docs/12/release-12-14.html
- Bump latest_supported_llvm_ver to 15.

Dominique Leuenberger (dimstar_suse) accepted request 1035216 from

Reinhard Max (rmax) about 2 years ago (revision 25)

- bsc#1205300: Update to 12.13:
  * https://www.postgresql.org/about/news/2543/
  * https://www.postgresql.org/docs/12/release-12-13.html
- Sync spec file with postgresql15.

Richard Brown (RBrownFactory) accepted request 1006685 from

Aaron Puchert (aaronpuchert) about 2 years ago (revision 24)

- Create mechanism to specify the latest supported LLVM version.
  Automatically pin to that version if the distribution has a newer
  unsupported default version.
- Sync spec file with postgresql15.
- Disable LLVM JIT on riscv64

Dominique Leuenberger (dimstar_suse) accepted request 995183 from

Reinhard Max (rmax) over 2 years ago (revision 23)

- - Update to 12.12:
  * bsc#1202368, CVE-2022-2625: Extension scripts replace objects
    not belonging to the extension.
  * https://www.postgresql.org/docs/release/12.12/

Dominique Leuenberger (dimstar_suse) accepted request 977047 from

Reinhard Max (rmax) over 2 years ago (revision 22)

- Update to 12.11:
  * bsc#1199475, CVE-2022-1552: Confine additional operations
    within "security restricted operation" sandboxes.
  * https://www.postgresql.org/docs/12/release-12-11.html

Dominique Leuenberger (dimstar_suse) accepted request 969863 from

Reinhard Max (rmax) over 2 years ago (revision 21)

- bsc#1198166: Pin to llvm13 until the next patchlevel update.

- bsc#1195680: Upgrade to 12.10:
  * https://www.postgresql.org/docs/12/release-12-10.html
  * Reindexing might be needed after applying this upgrade, so
    please read the release notes carefully.
- boo#1190740: Add constraints file with 12GB of memory for s390x
  as a workaround

Dominique Leuenberger (dimstar_suse) accepted request 935206 from

Reinhard Max (rmax) almost 3 years ago (revision 20)

- Add a llvmjit-devel subpackage to pull in the right versions
  of clang and llvm for building extensions. 
- Fix some mistakes in the interdependencies between the
  implementation packages and their noarch counterpart.
- Update the BuildIgnore section.

Dominique Leuenberger (dimstar_suse) accepted request 930951 from

Reinhard Max (rmax) about 3 years ago (revision 19)

- bsc#1192516: Upgrade to version 12.9:
  * Make the server reject extraneous data after an SSL or GSS
    encryption handshake (CVE-2021-23214).
  * Make libpq reject extraneous data after an SSL or GSS
    encryption handshake (CVE-2021-23222).
  * https://www.postgresql.org/docs/12/release-12-0.html

Dominique Leuenberger (dimstar_suse) accepted request 923704 from

Reinhard Max (rmax) about 3 years ago (revision 18)

- Let genlists skip non-existing binaries to avoid lots of version
  conditionals in the file lists.
- Remove postgresql-testsuite-int8.sql.patch, because its purpose
  is unclear. This affects only the test subpackage.

Dominique Leuenberger (dimstar_suse) accepted request 917541 from

Reinhard Max (rmax) about 3 years ago (revision 17)

- bsc#1185952: fix build with llvm12 on s390x.
  0001-jit-Workaround-potential-datalayout-mismatch-on-s390.patch 
- bsc#1179945: Re-enable icu for PostgreSQL 10.

- Upgrade to version 12.8:
  * https://www.postgresql.org/docs/12/release-12-8.html
  * CVE-2021-3677 (boo#1189748)
    The planner could create an incorrect plan in cases where two
    ProjectionPaths were stacked on top of each other. The only
    known way to trigger that situation involves parallel sort
    operations, but there may be other instances. The result would
    be crashes or incorrect query results. Disclosure of server
    memory contents is also possible.

- bsc#1187751: Make the dependency of postgresqlXX-server-devel on
  llvm and clang optional (postgresql-llvm-optional.patch).

Displaying revisions 1 - 20 of 36

Places

Revisions of postgresql12

Places