The NetBSD Project

CVS log for pkgsrc/databases/postgresql10-server/Attic/PLIST

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / databases / postgresql10-server

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.12, Mon Mar 6 08:27:01 2023 UTC (12 months, 3 weeks ago) by adam
Branch: MAIN
CVS Tags: HEAD
Changes since 1.11: +1 -1 lines
FILE REMOVED

postgresql10: removed; end of life

Revision 1.11 / (download) - annotate - [select for diffs], Sun Nov 13 09:34:25 2022 UTC (16 months, 2 weeks ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2022Q4-base, pkgsrc-2022Q4
Changes since 1.10: +2 -1 lines
Diff to previous 1.10 (colored) to selected 1.7 (colored)

postgresql1[0-5]: Updated to 15.1, 14.6, 13.9, 12.13, 11.18, and 10.23

PostgreSQL 15.1, 14.6, 13.9, 12.13, 11.18, and 10.23 Released!

Bug Fixes and Improvements

This update fixes over 25 bugs that were reported in the last several months. The issues listed below affect PostgreSQL 15. Some of these issues may also affect other supported versions of PostgreSQL.

Included in this release:

Fix for updatable views for INSERT statements that include multi-row VALUES clauses with a DEFAULT set.
Disallow rules named _RETURN that are not ON SELECT rules.
Disallow use of MERGE on a partitioned table that has foreign-table partitions.
Fix for construction of per-partition foreign key constraints while doing ALTER TABLE ... ATTACH PARTITION, where previously incorrect or duplicate constraints could be built.
Fix for a planner failure with extended statistics on partitioned or inherited tables.
Fix bugs in logical decoding that could lead to memory leaks when replay starts from a point between the beginning of a transaction and the beginning of its subtransaction.
Fix issues with slow shutdown of replication workers by allowing interrupts in more places.
Disallow logical replication into foreign-table partitions.
Prevent crash in replication works after a SQL or PL/pgSQL function syntax error.
psql -c now exits with a nonzero status if the query is canceled.
Allow cross-platform tablespace relocation in pg_basebackup.
Fix pg_dump to include comments attached to some CHECK constraints.

Revision 1.9.12.1 / (download) - annotate - [select for diffs], Wed Nov 24 14:31:19 2021 UTC (2 years, 4 months ago) by tm
Branch: pkgsrc-2021Q3
Changes since 1.9: +2 -1 lines
Diff to previous 1.9 (colored) next main 1.10 (colored) to selected 1.7 (colored)

Pullup ticket #6535 - requested by bsiegert
databases/postgresql: security fix

Revisions pulled up:
- databases/postgresql10-docs/PLIST                             1.20
- databases/postgresql10-server/PLIST                           1.10
- databases/postgresql10/Makefile                               1.27
- databases/postgresql10/Makefile.common                        1.31
- databases/postgresql10/distinfo                               1.25
- databases/postgresql11-docs/PLIST                             1.15
- databases/postgresql11-server/PLIST                           1.5
- databases/postgresql11/Makefile.common                        1.24
- databases/postgresql11/distinfo                               1.20
- databases/postgresql12-docs/PLIST                             1.10
- databases/postgresql12-server/PLIST                           1.6
- databases/postgresql12/Makefile                               1.18
- databases/postgresql12/Makefile.common                        1.17
- databases/postgresql12/distinfo                               1.14
- databases/postgresql13-client/PLIST                           1.5
- databases/postgresql13-docs/PLIST                             1.6
- databases/postgresql13-server/PLIST                           1.4
- databases/postgresql13/Makefile                               1.9
- databases/postgresql13/Makefile.common                        1.10
- databases/postgresql13/distinfo                               1.10
- databases/postgresql96-docs/PLIST                             1.24
- databases/postgresql96-server/PLIST                           1.9
- databases/postgresql96/Makefile                               1.16
- databases/postgresql96/Makefile.common                        1.36
- databases/postgresql96/distinfo                               1.29

---
   Module Name:    pkgsrc
   Committed By:   adam
   Date:           Tue Nov 16 10:14:39 UTC 2021

   Modified Files:
           pkgsrc/databases/postgresql10: Makefile.common distinfo
           pkgsrc/databases/postgresql10-docs: PLIST
           pkgsrc/databases/postgresql10-server: PLIST
           pkgsrc/databases/postgresql11: Makefile.common distinfo
           pkgsrc/databases/postgresql11-docs: PLIST
           pkgsrc/databases/postgresql11-server: PLIST
           pkgsrc/databases/postgresql12: Makefile.common distinfo
           pkgsrc/databases/postgresql12-docs: PLIST
           pkgsrc/databases/postgresql12-server: PLIST
           pkgsrc/databases/postgresql13: Makefile.common distinfo
           pkgsrc/databases/postgresql13-client: PLIST
           pkgsrc/databases/postgresql13-docs: PLIST
           pkgsrc/databases/postgresql13-server: PLIST
           pkgsrc/databases/postgresql96: Makefile.common distinfo
           pkgsrc/databases/postgresql96-docs: PLIST
           pkgsrc/databases/postgresql96-server: PLIST

   Log Message:
   postgresql: updated to 13.5, 12.9, 11.14, 10.19, 9.6.24

   PostgreSQL 13.5, 12.9, 11.14, 10.19, and 9.6.24

   Security Issues

   CVE-2021-23214: Server processes unencrypted bytes from man-in-the-middle

   Versions Affected: 9.6 - 14. The security team typically does not test
   unsupported versions, but this problem is quite old.

   When the server is configured to use trust authentication with a
   clientcert requirement or to use cert authentication, a
   man-in-the-middle attacker can inject arbitrary SQL queries when a
   connection is first established, despite the use of SSL certificate
   verification and encryption.

   The PostgreSQL project thanks Jacob Champion for reporting this problem.

   CVE-2021-23222: libpq processes unencrypted bytes from man-in-the-middle

   Versions Affected: 9.6 - 14. The security team typically does not test
   unsupported versions, but this problem is quite old.

   A man-in-the-middle attacker can inject false responses to the
   client's first few queries, despite the use of SSL certificate
   verification and encryption.

   If more preconditions hold, the attacker can exfiltrate the client's
   password or other confidential data that might be transmitted early in
   a session. The attacker must have a way to trick the client's intended
   server into making the confidential data accessible to the attacker. A
   known implementation having that property is a PostgreSQL
   configuration vulnerable to CVE-2021-23214.

   As with any exploitation of CVE-2021-23214, the server must be using
   trust authentication with a clientcert requirement or using cert
   authentication. To disclose a password, the client must be in
   possession of a password, which is atypical when using an
   authentication configuration vulnerable to CVE-2021-23214. The
   attacker must have some other way to access the server to retrieve the
   exfiltrated data (a valid, unprivileged login account would be
   sufficient).

   The PostgreSQL project thanks Jacob Champion for reporting this problem.

   Bug Fixes and Improvements

   This update fixes over 40 bugs that were reported in the last several
   months. The issues listed below affect PostgreSQL 14. Some of these
   issues may also affect other supported versions of PostgreSQL.

   Some of these fixes include:

   Fix physical replication for cases where the primary crashes after
   shipping a WAL segment that ends with a partial WAL record. When
   applying this update, update your standby servers before the primary
   so that they will be ready to handle the fix if the primary happens to
   crash.
   Fix parallel VACUUM so that it will process indexes below the
   min_parallel_index_scan_size threshold if the table has at least two
   indexes that are above that size. This problem does not affect
   autovacuum. If you are affected by this issue, you should reindex any
   manually-vacuumed tables.
   Fix causes of CREATE INDEX CONCURRENTLY and REINDEX CONCURRENTLY
   writing corrupt indexes. You should reindex any concurrently-built
   indexes.
   Fix for attaching/detaching a partition that could allow certain
   INSERT/UPDATE queries to misbehave in active sessions.
   Fix for creating a new range type with CREATE TYPE that could cause
   problems for later event triggers or subsequent executions of the
   CREATE TYPE command.
   Fix updates of element fields in arrays of a domain that is a part of
   a composite.
   Disallow the combination of FETCH FIRST WITH TIES and FOR UPDATE SKIP LOCKED.
   Fix corner-case loss of precision in the numeric power() function.
   Fix restoration of a Portal's snapshot inside a subtransaction, which
   could lead to a crash. For example, this could occur in PL/pgSQL when
   a COMMIT is immediately followed by a BEGIN ... EXCEPTION block that
   performs a query.
   Clean up correctly if a transaction fails after exporting its
   snapshot. This could occur if a replication slot was created then
   rolled back, and then another replication slot was created in the same
   session.
   Fix for "overflowed-subtransaction" wraparound tracking on standby
   servers that could lead to performance degradation.
   Ensure that prepared transactions are properly accounted for during
   promotion of a standby server.
   Ensure that the correct lock level is used when renaming a table.
   Avoid crash when dropping a role that owns objects being dropped concurrently.
   Disallow setting huge_pages to on when shared_memory_type is sysv
   Fix query type checking in the PL/pgSQL RETURN QUERY.
   Several fixes for pg_dump, including the ability to dump non-global
   default privileges correctly.
   Use the CLDR project's data to map Windows time zone names to IANA time zones.
   This update also contains tzdata release 2021e for DST law changes in
   Fiji, Jordan, Palestine, and Samoa, plus historical corrections for
   Barbados, Cook Islands, Guyana, Niue, Portugal, and Tonga.

   Also, the Pacific/Enderbury zone has been renamed to Pacific/Kanton.
   Also, the following zones have been merged into nearby, more-populous
   zones whose clocks have agreed with them since 1970: Africa/Accra,
   America/Atikokan, America/Blanc-Sablon, America/Creston,
   America/Curacao, America/Nassau, America/Port_of_Spain,
   Antarctica/DumontDUrville, and Antarctica/Syowa. In all these cases,
   the previous zone name remains as an alias.

---
   Module Name:    pkgsrc
   Committed By:   adam
   Date:           Tue Nov 16 10:17:40 UTC 2021

   Modified Files:
           pkgsrc/databases/postgresql10: Makefile
           pkgsrc/databases/postgresql12: Makefile
           pkgsrc/databases/postgresql13: Makefile
           pkgsrc/databases/postgresql96: Makefile

   Log Message:
   postgresqlNN: reset revision

Revision 1.10 / (download) - annotate - [select for diffs], Tue Nov 16 10:14:37 2021 UTC (2 years, 4 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2022Q3-base, pkgsrc-2022Q3, pkgsrc-2022Q2-base, pkgsrc-2022Q2, pkgsrc-2022Q1-base, pkgsrc-2022Q1, pkgsrc-2021Q4-base, pkgsrc-2021Q4
Changes since 1.9: +2 -1 lines
Diff to previous 1.9 (colored) to selected 1.7 (colored)

postgresql: updated to 14.1, 13.5, 12.9, 11.14, 10.19, 9.6.24

PostgreSQL 14.1, 13.5, 12.9, 11.14, 10.19, and 9.6.24

Security Issues

CVE-2021-23214: Server processes unencrypted bytes from man-in-the-middle

Versions Affected: 9.6 - 14. The security team typically does not test unsupported versions, but this problem is quite old.

When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.

The PostgreSQL project thanks Jacob Champion for reporting this problem.

CVE-2021-23222: libpq processes unencrypted bytes from man-in-the-middle

Versions Affected: 9.6 - 14. The security team typically does not test unsupported versions, but this problem is quite old.

A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.

If more preconditions hold, the attacker can exfiltrate the client's password or other confidential data that might be transmitted early in a session. The attacker must have a way to trick the client's intended server into making the confidential data accessible to the attacker. A known implementation having that property is a PostgreSQL configuration vulnerable to CVE-2021-23214.

As with any exploitation of CVE-2021-23214, the server must be using trust authentication with a clientcert requirement or using cert authentication. To disclose a password, the client must be in possession of a password, which is atypical when using an authentication configuration vulnerable to CVE-2021-23214. The attacker must have some other way to access the server to retrieve the exfiltrated data (a valid, unprivileged login account would be sufficient).

The PostgreSQL project thanks Jacob Champion for reporting this problem.

Bug Fixes and Improvements

This update fixes over 40 bugs that were reported in the last several months. The issues listed below affect PostgreSQL 14. Some of these issues may also affect other supported versions of PostgreSQL.

Some of these fixes include:

Fix physical replication for cases where the primary crashes after shipping a WAL segment that ends with a partial WAL record. When applying this update, update your standby servers before the primary so that they will be ready to handle the fix if the primary happens to crash.
Fix parallel VACUUM so that it will process indexes below the min_parallel_index_scan_size threshold if the table has at least two indexes that are above that size. This problem does not affect autovacuum. If you are affected by this issue, you should reindex any manually-vacuumed tables.
Fix causes of CREATE INDEX CONCURRENTLY and REINDEX CONCURRENTLY writing corrupt indexes. You should reindex any concurrently-built indexes.
Fix for attaching/detaching a partition that could allow certain INSERT/UPDATE queries to misbehave in active sessions.
Fix for creating a new range type with CREATE TYPE that could cause problems for later event triggers or subsequent executions of the CREATE TYPE command.
Fix updates of element fields in arrays of a domain that is a part of a composite.
Disallow the combination of FETCH FIRST WITH TIES and FOR UPDATE SKIP LOCKED.
Fix corner-case loss of precision in the numeric power() function.
Fix restoration of a Portal's snapshot inside a subtransaction, which could lead to a crash. For example, this could occur in PL/pgSQL when a COMMIT is immediately followed by a BEGIN ... EXCEPTION block that performs a query.
Clean up correctly if a transaction fails after exporting its snapshot. This could occur if a replication slot was created then rolled back, and then another replication slot was created in the same session.
Fix for "overflowed-subtransaction" wraparound tracking on standby servers that could lead to performance degradation.
Ensure that prepared transactions are properly accounted for during promotion of a standby server.
Ensure that the correct lock level is used when renaming a table.
Avoid crash when dropping a role that owns objects being dropped concurrently.
Disallow setting huge_pages to on when shared_memory_type is sysv
Fix query type checking in the PL/pgSQL RETURN QUERY.
Several fixes for pg_dump, including the ability to dump non-global default privileges correctly.
Use the CLDR project's data to map Windows time zone names to IANA time zones.
This update also contains tzdata release 2021e for DST law changes in Fiji, Jordan, Palestine, and Samoa, plus historical corrections for Barbados, Cook Islands, Guyana, Niue, Portugal, and Tonga.

Also, the Pacific/Enderbury zone has been renamed to Pacific/Kanton. Also, the following zones have been merged into nearby, more-populous zones whose clocks have agreed with them since 1970: Africa/Accra, America/Atikokan, America/Blanc-Sablon, America/Creston, America/Curacao, America/Nassau, America/Port_of_Spain, Antarctica/DumontDUrville, and Antarctica/Syowa. In all these cases, the previous zone name remains as an alias.

Revision 1.9 / (download) - annotate - [select for diffs], Fri May 15 20:45:36 2020 UTC (3 years, 10 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2021Q3-base, pkgsrc-2021Q2-base, pkgsrc-2021Q2, pkgsrc-2021Q1-base, pkgsrc-2021Q1, pkgsrc-2020Q4-base, pkgsrc-2020Q4, pkgsrc-2020Q3-base, pkgsrc-2020Q3, pkgsrc-2020Q2-base, pkgsrc-2020Q2
Branch point for: pkgsrc-2021Q3
Changes since 1.8: +2 -1 lines
Diff to previous 1.8 (colored) to selected 1.7 (colored)

postgresql10-server: fix PLIST

Revision 1.8 / (download) - annotate - [select for diffs], Fri Oct 25 12:01:19 2019 UTC (4 years, 5 months ago) by triaxx
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base, pkgsrc-2020Q1, pkgsrc-2019Q4-base, pkgsrc-2019Q4
Changes since 1.7: +27 -27 lines
Diff to previous 1.7 (colored)

postgresql10: make nls support optional

Revision 1.7 / (download) - annotate - [selected], Sun Feb 17 08:26:11 2019 UTC (5 years, 1 month ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base, pkgsrc-2019Q3, pkgsrc-2019Q2-base, pkgsrc-2019Q2, pkgsrc-2019Q1-base, pkgsrc-2019Q1
Changes since 1.6: +2 -1 lines
Diff to previous 1.6 (colored)

postgresqlNN: updated to 11.2, 10.7, 9.6.12, 9.5.16, and 9.4.21

PostgreSQL 11.2, 10.7, 9.6.12, 9.5.16, and 9.4.21 Released!
This release changes the behavior in how PostgreSQL interfaces with fsync() and includes fixes for partitioning and over 70 other bugs that were reported over the past three months.

Fix handling of unique indexes with INCLUDE columns on partitioned tables
Ensure that NOT NULL constraints of a partitioned table are honored within its partitions
Several fixes for constraints on partitioned tables
Fix problems with applying ON COMMIT DROP and ON COMMIT DELETE ROWS to partitioned tables and tables with inheritance children
Disallow COPY FREEZE on partitioned tables
Several fixes for the ALTER TABLE .. ADD COLUMN with a non-nullable default feature, including a possible index corruption case
Several fixes in GIN indexes, including avoiding a deadlock with vacuuming and concurrent index insertions (which partially reverts a performance improvement introduced in PostgreSQL 10)
Fix possible crashes in logical replication when index expressions or predicates are in use
Several fixes for the write-ahead log (WAL)
Fix possible crash in UPDATE with a multiple SET clause using a sub-SELECT
Fix crash when zero rows are provided to json[b]_populate_recordset() or json[b]_to_recordset()
Several fixes related to collation handling, including the parsing of collation-sensitive expressions in the arguments of a CALL statement
Several fixes for the query planner, including an improvement to planning speed for large inheritance or partitioning table groups
Several fixes for TRUNCATE
Ensure ALTER TABLE ONLY ADD COLUMN IF NOT EXISTS is processed correctly
Allow UNLISTEN in hot-standby (replica) mode
Fix parsing of space-separated lists of host names in the ldapserver parameter of LDAP authentication entries in pg_hba.conf
Several fixes for ecpg
Several fixes for psql, including having \g target work with COPY TO STDOUT
The random number generation for pgbench is now fully deterministic and platform-independent when --random-seed=N is specified
Fix pg_basebackup and pg_verify_checksums to appropriately ignore temporary files
Several fixes for pg_dump, including having ALTER INDEX SET STATISTICS commands present
Prevent false index-corruption reports from contrib/amcheck caused by inline-compressed data
Support new Makefile variables to help with building extensions

Revision 1.6 / (download) - annotate - [select for diffs], Tue Aug 14 16:52:04 2018 UTC (5 years, 7 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2018Q4-base, pkgsrc-2018Q4, pkgsrc-2018Q3-base, pkgsrc-2018Q3
Changes since 1.5: +2 -1 lines
Diff to previous 1.5 (colored) to selected 1.7 (colored)

postgresql10-server: also build pgoutput plugin; bump revision

Revision 1.5 / (download) - annotate - [select for diffs], Sat Jun 2 13:14:30 2018 UTC (5 years, 9 months ago) by prlw1
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base, pkgsrc-2018Q2
Changes since 1.4: +2 -1 lines
Diff to previous 1.4 (colored) to selected 1.7 (colored)

Fix PLIST

Revision 1.4 / (download) - annotate - [select for diffs], Fri Mar 2 17:11:12 2018 UTC (6 years ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2018Q1-base, pkgsrc-2018Q1
Changes since 1.3: +2 -1 lines
Diff to previous 1.3 (colored) to selected 1.7 (colored)

postgresqlNN: updated to 10.3, 9.6.8, 9.5.12, 9.4.17, 9.3.22

PostgreSQL 10.3, 9.6.8, 9.5.12, 9.4.17, and 9.3.22:
The purpose of this release is to address CVE-2018-1058, which describes how a user can create like-named objects in different schemas that can change the behavior of other users' queries and cause unexpected or malicious behavior, also known as a "trojan-horse" attack. Most of this release centers around added documentation that describes the issue and how to take steps to mitigate the impact on PostgreSQL databases.

Revision 1.3 / (download) - annotate - [select for diffs], Thu Feb 8 20:53:56 2018 UTC (6 years, 1 month ago) by adam
Branch: MAIN
Changes since 1.2: +3 -2 lines
Diff to previous 1.2 (colored) to selected 1.7 (colored)

postgresql: updated to 10.2, 9.6.7, 9.5.11, 9.4.16, and 9.3.21

This release fixes two security issues. This release also fixes issues with VACUUM, GIN indexes, and hash indexes that could lead to data corruption, as well as fixes for using parallel queries and logical replication.

Security Issues
* CVE-2018-1052: Fix the processing of partition keys containing multiple expressions
* CVE-2018-1053: Ensure that all temporary files made with "pg_upgrade" are non-world-readable

Bug Fixes and Improvements
* Fix crash and potential disclosure of backend memory when processing partition keys containing multiple expressions
* Fix potential disclosure of temporary files containing database passwords created by pg_upgrade by not allowing these files to be world-accessible
* Fix cases where VACUUM would not remove dead rows if they were updated while "key-share" locked, leading to potential data corruption
* Fix for GIN indexes to prevent bloat by ensuring the pending-insertions list is cleaned up by VACUUM
* Fix potential index corruption with hash indexes due to failure to mark metapages as dirty
* Fix several potential crash scenarios for parallel queries, including when a bitmap heap scan cannot allocate memory
* Fix several potential hang-ups in parallel queries, including when a parallel worker fails to start
* Fix collection of EXPLAIN statistics from parallel workers
* Prevent fake deadlock failures when multiple sessions are running CREATE INDEX CONCURRENTLY
* Fix for trigger behavior when using logical replication
* Several fixes for "walsender" functionality to improve stability as well as visibility into the replication process
* Fix logical decoding to correctly clean up disk files for crashed transactions
* Several fixes for identity columns, including disallowing identity columns on tables derived from composite types and partitions
* Fix handling of list partitioning constraints for partition keys of boolean and array types
* Fix incorrectly generated plans for UPDATE and DELETE queries when a table has a mix of inherited regular and foreign child tables
* Fix incorrect query results from cases involving GROUPING SETS when used with flattened subqueries
* Fix UNION/INTERSECT/EXCEPT over zero columns, e.g. "SELECT UNION SELECT;"
* Several fixes for subqueries within a LATERAL subquery
* Several improvements for query planning estimation
* Allow a client that supports SCRAM channel binding, such as a future version of PostgreSQL or libpq, to connect to a PostgreSQL 10 server
* Fix sample INSTR() functions used to help transition from Oracle(r) PL/SQL to PostgreSQL PL/pgSQL to correctly match Oracle functional behavior
* Fix pg_dump to make permissions (ACL), security label, and comment entries reliably identifiable in archive outputs
* Modify behavior for contrib/cube's "cube ~> int" operator to make it compatible with KNN search. This is a backwards incompatible change and any expression indexes or materialized views using this operator will need to be reindexed and refreshed, respectively.
* Several fixes in contrib/postgres_fdw to prevent query planner errors
* Added modern examples of auto-start scripts for PostgreSQL on macOS in the contrib/start-scripts/macos directory
* Several fixes for Windows, including postmaster startup and compatibility with libperl
* Spinlock fixes and support for Motorola 68K and 88K architectures

Revision 1.2 / (download) - annotate - [select for diffs], Mon Nov 13 09:33:31 2017 UTC (6 years, 4 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base, pkgsrc-2017Q4
Changes since 1.1: +1 -2 lines
Diff to previous 1.1 (colored) to selected 1.7 (colored)

postgresql: updated to the latest

The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 10.1, 9.6.6, 9.5.10, 9.4.15, 9.3.20, and 9.2.24. This release fixes three security issues. This release also fixes issues found in BRIN indexing, logical replication and other bugs reported over the past three months.

All users using the affected versions of PostgreSQL should update as soon as possible. If you use BRIN indexes or contrib/start-scripts, please see the release notes for additional post-upgrade steps.

Security Issues

Three security vulnerabilities have been fixed by this release:

CVE-2017-12172: Start scripts permit database administrator to modify root-owned files
CVE-2017-15098: Memory disclosure in JSON functions
CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges


Bug Fixes and Improvements

This update also fixes a number of bugs reported in the last few months. Some of these issues affect only version 10, but many affect all supported versions:

Fix a race condition in BRIN indexing that could cause some rows to not be included in the indexing.
Fix crash when logical decoding is invoked from a PL language function.
Several fixes for logical replication.
Restored behavior for CTEs attached to INSERT/UPDATE/DELETE statements to pre-version 10.
Prevent low-probability crash in processing of nested trigger firings.
Do not evaluate an aggregate function's argument expressions when the conditions in the FILTER clause evaluate to FALSE. This complies with SQL-standard behavior.
Fix incorrect query results when multiple GROUPING SETS columns contain the same simple variable.
Fix memory leak over the lifespan of a query when evaluating a set-returning function from the target list in a SELECT.
Several fixes for parallel query execution, including fixing a crash in the parallel execution of certain queries that contain a certain type of bitmap scan.
Fix json_build_array(), json_build_object(), jsonb_build_array(), and jsonb_build_object() to handle explicit VARIADIC arguments correctly.
Prevent infinite float values from being casted to the numeric type.
Fix autovacuum's ãà×Øork itemãàlogic to prevent possible crashes and silent loss of work items.
Several fixes for VIEWs around adding columns to the end of a view.
Fix for hashability detection of range data types that are created by a user.
Improvements on using extended statistics on columns for the purposes of query planning.
Prevent idle_in_transaction_session_timeout from being ignored when a statement_timeout occurred earlier.
Fix low-probability loss of NOTIFY messages due more than 2 billion transactions processing before any queries are executed in the session.
Several file system interaction fixes.
Correctly restore the umask setting when file creation fails in COPY or lo_export().
Fix pg_dump to ensure that it emits GRANT commands in a valid order.
Fix pg_basebackup's matching of tablespace paths to canonicalize both paths before comparing to help improve Windows compatibility.
Fix libpq to not require user's home directory to exist when trying to read the "~/.pgpass" file.
Several fixes for ecpg.

Revision 1.1 / (download) - annotate - [select for diffs], Mon Oct 23 20:33:50 2017 UTC (6 years, 5 months ago) by adam
Branch: MAIN
Diff to selected 1.7 (colored)

postgresql10: added version 10.0

Major enhancements in PostgreSQL 10 include:

Logical replication using publish/subscribe
Declarative table partitioning
Improved query parallelism
Significant general performance improvements
Stronger password authentication based on SCRAM-SHA-256
Improved monitoring and control
The above items are explained in more detail in the sections below.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>