karasz/package-update
1
0
Fork 0
Code Issues Releases Activity
4,750 Commits 46 Branches 0 Tags
99bfc3447f9ee27414e4e772cf48dcf02a9ea57f
Commit Graph

17 Commits

Author SHA1 Message Date
amery 82db94d973 postgresql: Updated (8.2.12 -> 8.2.13) 2009-08-10 14:08:31 -04:00
amery a7d6fb58f8 postgresql: enhanced .conf to build without readline if not installed 2009-08-10 14:08:30 -04:00
amery dfe18e2c42 postgresql: cleaned --with-foo config code 2009-08-10 14:08:30 -04:00
Alejandro Mery 7ac7d13b32 postgresql: Updated (8.2.6 -> 8.2.12) 2009-03-07 16:51:42 +02:00
Aldas Nabazas 237f08f912 Updated postgresql (8.2.3 -> 8.2.6) : SECURITY - CRITICAL 
CVE-2007-2138 (Medium) :
Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x
before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users,
when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner,
related to "search_path settings."

CVE-2007-4769 (Medium) :
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1
before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to
cause a denial of service (backend crash) via an out-of-bounds backref number.

CVE-2007-4772 (Medium) :
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1
before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to
cause a denial of service (infinite loop) via a crafted regular expression.

CVE-2007-6067 (Medium) :
Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as
used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19,
allows remote authenticated users to cause a denial of service (memory consumption) via a
crafted "complex" regular expression with doubly-nested states.

CVE-2007-6600 (Medium) :
PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3
before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2)
ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION
AUTHORIZATION within index functions, which allows remote authenticated users to gain
privileges.

CVE-2007-6601 (High) :
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4
before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows
remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of
an incomplete fix for CVE-2007-3278.
 2008-02-26 21:18:06 +01:00
Alejandro Mery d8cf15a66c Regenerated copyright notes broadly, without renewing them. 2008-02-04 22:52:39 -03:00
Alejandro Mery d15769f41d Removed trailing spaces massively, hoping to not break anything. Copyright notes not renewed 2008-02-04 21:00:25 -03:00
Alejandro Mery 0b9e401255 Removed #! lines from .conf files 2007-08-20 20:50:15 -04:00
Nagy Karoly Gabriel 6676042d35 * removed obsolete "-S" switch from postgresql.init 
affected database/postgresql/postgresql.init


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@21225 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-06-04 16:45:51 +00:00
Nagy Karoly Gabriel 216aaf9836 * removed --with-CXX from postgresql.conf. On August 22 2002 libpq++ 
was removed from the PostgreSQL backend, and became a separate project
	the --with-CXX switch only served to build libpq++
	http://developer.postgresql.org/cvsweb.cgi/pgsql/configure.diff?r1=1.204;r2=1.205;f=h


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20603 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-03-30 23:36:46 +00:00
Christian Wiese 51d8aea1bc * improved postgresql to enable thread-safety for libpq and ecpg by 
default


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20602 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-03-30 23:16:09 +00:00
Christian Wiese 24ef24057e * polished postgresql.conf by adding some comments 
git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20601 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-03-30 23:12:41 +00:00
Christian Wiese 5cc30828e9 * improved postgresql to not build with hard-wired perl and openssl 
support and introduced a check for openssl to build with ssl support
	  if possible


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20328 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-03-14 15:26:50 +00:00
Nagy Karoly Gabriel 83a1331a5c * updated postgresql (8.2.2 -> 8.2.3) 8.2.2 was withdrawn as it 
contained a nasty but not that obvious bug.


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20148 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-02-07 19:12:17 +00:00
Nagy Karoly Gabriel 19ba5dfaa3 * updated postgresql (8.2.1 -> 8.2.2) security update and minor enhancements 
git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20100 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-02-06 13:58:11 +00:00
Nagy Karoly Gabriel 27b6c453e9 * updated postgresql (8.1.6 -> 8.2.1), updated build_contrib.diff to 
apply again. 


git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20089 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-02-01 00:22:58 +00:00
Alejandro Mery 12b79fecfa * relocated current package database to the trunk of the package sub-project 
git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
 2007-01-27 18:03:57 +00:00