CVS commit: pkgsrc/databases

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/databases
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Sun, 11 Oct 2015 10:59:20 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Sun Oct 11 10:59:20 UTC 2015

Modified Files:
        pkgsrc/databases/postgresql92: Makefile.common distinfo
        pkgsrc/databases/postgresql92-docs: PLIST
        pkgsrc/databases/postgresql92-server: PLIST

Log Message:
Changes 9.2.14:
Two security issues have been fixed in this release which affect users of specific PostgreSQL features:

CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service.

CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed.


To generate a diff of this commit:
cvs rdiff -u -r1.17 -r1.18 pkgsrc/databases/postgresql92/Makefile.common
cvs rdiff -u -r1.14 -r1.15 pkgsrc/databases/postgresql92/distinfo
cvs rdiff -u -r1.13 -r1.14 pkgsrc/databases/postgresql92-docs/PLIST
cvs rdiff -u -r1.7 -r1.8 pkgsrc/databases/postgresql92-server/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc
Next by Date: CVS commit: pkgsrc/databases
Previous by Thread: CVS commit: pkgsrc
Next by Thread: CVS commit: pkgsrc/databases
Indexes:

Home | Main Index | Thread Index | Old Index