CVS commit: pkgsrc/databases

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/databases
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Sat, 10 Oct 2015 12:26:10 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Sat Oct 10 12:26:10 UTC 2015

Modified Files:
        pkgsrc/databases/postgresql93: Makefile.common distinfo
        pkgsrc/databases/postgresql93-docs: PLIST
        pkgsrc/databases/postgresql93-server: PLIST

Log Message:
Changes 9.3.10:
Two security issues have been fixed in this release which affect users of specific PostgreSQL features:

CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service.

CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed.


To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/postgresql93/Makefile.common \
    pkgsrc/databases/postgresql93/distinfo
cvs rdiff -u -r1.10 -r1.11 pkgsrc/databases/postgresql93-docs/PLIST
cvs rdiff -u -r1.5 -r1.6 pkgsrc/databases/postgresql93-server/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/print/ghostscript-agpl
Next by Date: CVS commit: pkgsrc/mk/platform
Previous by Thread: CVS commit: pkgsrc/print/ghostscript-agpl
Next by Thread: CVS commit: pkgsrc/mk/platform
Indexes:

Home | Main Index | Thread Index | Old Index