Sun Oct 11 11:24:59 2015 UTC ()
Changes 9.1.19:
Two security issues have been fixed in this release which affect users of specific PostgreSQL features:

CVE-2015-5289: json or jsonb input values constructed from arbitrary user input can crash the PostgreSQL server and cause a denial of service.

CVE-2015-5288: The crypt() function included with the optional pgCrypto extension could be exploited to read a few additional bytes of memory. No working exploit for this issue has been developed.


(adam)
diff -r1.26 -r1.27 pkgsrc/databases/postgresql91/Makefile.common
diff -r1.24 -r1.25 pkgsrc/databases/postgresql91/distinfo
diff -r1.20 -r1.21 pkgsrc/databases/postgresql91-docs/PLIST
diff -r1.11 -r1.12 pkgsrc/databases/postgresql91-server/PLIST
cvs diff -r1.26 -r1.27 pkgsrc/databases/postgresql91/Attic/Makefile.common (expand / switch to unified diff)

--- pkgsrc/databases/postgresql91/Attic/Makefile.common 2015/06/18 14:46:14 1.26
+++ pkgsrc/databases/postgresql91/Attic/Makefile.common 2015/10/11 11:24:58 1.27
@@ -1,39 +1,39 @@ @@ -1,39 +1,39 @@
1# $NetBSD: Makefile.common,v 1.26 2015/06/18 14:46:14 adam Exp $ 1# $NetBSD: Makefile.common,v 1.27 2015/10/11 11:24:58 adam Exp $
2# 2#
3# This Makefile fragment is included by all PostgreSQL packages built from 3# This Makefile fragment is included by all PostgreSQL packages built from
4# the main sources of the PostgreSQL distribution except jdbc-postgresql. 4# the main sources of the PostgreSQL distribution except jdbc-postgresql.
5# 5#
6# The PostgreSQL package naming scheme, aside from the obvious piecewise 6# The PostgreSQL package naming scheme, aside from the obvious piecewise
7# packages, is as follows: 7# packages, is as follows:
8# <lang>-postgresql client-side interface to PostgreSQL 8# <lang>-postgresql client-side interface to PostgreSQL
9# postgresql-<lang> server-side module for PostgreSQL backend 9# postgresql-<lang> server-side module for PostgreSQL backend
10# 10#
11# used by databases/postgresql91-adminpack/Makefile 11# used by databases/postgresql91-adminpack/Makefile
12# used by databases/postgresql91-client/Makefile 12# used by databases/postgresql91-client/Makefile
13# used by databases/postgresql91-datatypes/Makefile 13# used by databases/postgresql91-datatypes/Makefile
14# used by databases/postgresql91-dblink/Makefile 14# used by databases/postgresql91-dblink/Makefile
15# used by databases/postgresql91-docs/Makefile 15# used by databases/postgresql91-docs/Makefile
16# used by databases/postgresql91-fuzzystrmatch/Makefile 16# used by databases/postgresql91-fuzzystrmatch/Makefile
17# used by databases/postgresql91-monitoring/Makefile 17# used by databases/postgresql91-monitoring/Makefile
18# used by databases/postgresql91-pgcrypto/Makefile 18# used by databases/postgresql91-pgcrypto/Makefile
19# used by databases/postgresql91-plperl/Makefile 19# used by databases/postgresql91-plperl/Makefile
20# used by databases/postgresql91-plpython/Makefile 20# used by databases/postgresql91-plpython/Makefile
21# used by databases/postgresql91-pltcl/Makefile 21# used by databases/postgresql91-pltcl/Makefile
22# used by databases/postgresql91-replicationtools/Makefile 22# used by databases/postgresql91-replicationtools/Makefile
23# used by databases/postgresql91-server/Makefile 23# used by databases/postgresql91-server/Makefile
24# used by databases/postgresql91-upgrade/Makefile 24# used by databases/postgresql91-upgrade/Makefile
25 25
26DISTNAME= postgresql-9.1.18 26DISTNAME= postgresql-9.1.19
27CATEGORIES= databases 27CATEGORIES= databases
28MASTER_SITES= ${MASTER_SITE_PGSQL:=source/v${PKGVERSION_NOREV}/} 28MASTER_SITES= ${MASTER_SITE_PGSQL:=source/v${PKGVERSION_NOREV}/}
29EXTRACT_SUFX= .tar.bz2 29EXTRACT_SUFX= .tar.bz2
30 30
31MAINTAINER?= adam@NetBSD.org 31MAINTAINER?= adam@NetBSD.org
32HOMEPAGE= http://www.postgresql.org/ 32HOMEPAGE= http://www.postgresql.org/
33LICENSE= postgresql-license 33LICENSE= postgresql-license
34 34
35CONFLICTS+= postgresql-[0-9]* 35CONFLICTS+= postgresql-[0-9]*
36CONFLICTS+= postgresql[0-8][0-9]-[0-9]* 36CONFLICTS+= postgresql[0-8][0-9]-[0-9]*
37CONFLICTS+= postgresql9[02-9]-[0-9]* 37CONFLICTS+= postgresql9[02-9]-[0-9]*
38 38
39.if !empty(PKGNAME:M*-*-*) 39.if !empty(PKGNAME:M*-*-*)
cvs diff -r1.24 -r1.25 pkgsrc/databases/postgresql91/Attic/distinfo (expand / switch to unified diff)

--- pkgsrc/databases/postgresql91/Attic/distinfo 2015/06/18 14:46:14 1.24
+++ pkgsrc/databases/postgresql91/Attic/distinfo 2015/10/11 11:24:58 1.25
@@ -1,18 +1,18 @@ @@ -1,18 +1,18 @@
1$NetBSD: distinfo,v 1.24 2015/06/18 14:46:14 adam Exp $ 1$NetBSD: distinfo,v 1.25 2015/10/11 11:24:58 adam Exp $
2 2
3SHA1 (postgresql-9.1.18.tar.bz2) = f17aa02514bb1a079179e9ca555ac0c19e21c14c 3SHA1 (postgresql-9.1.19.tar.bz2) = d3a2b031f87f5cb5285cf038df8d91a6e3279d86
4RMD160 (postgresql-9.1.18.tar.bz2) = 4c1b75903149a47e18995a5fe9f87c14bf0e22dc 4RMD160 (postgresql-9.1.19.tar.bz2) = 49675a3ae61ced65260b9b9f7f78d0b8436c72a3
5Size (postgresql-9.1.18.tar.bz2) = 15822081 bytes 5Size (postgresql-9.1.19.tar.bz2) = 15843978 bytes
6SHA1 (patch-config_perl.m4) = c7e5aaff1c47d2e33df7692a412ef984c77ffcc0 6SHA1 (patch-config_perl.m4) = c7e5aaff1c47d2e33df7692a412ef984c77ffcc0
7SHA1 (patch-configure) = dab79533dac06a79a5aa8439d6b15830d8d2fba7 7SHA1 (patch-configure) = dab79533dac06a79a5aa8439d6b15830d8d2fba7
8SHA1 (patch-contrib_dblink_Makefile) = 4960ad57d42465fae203870548e4c53f8a32ce04 8SHA1 (patch-contrib_dblink_Makefile) = 4960ad57d42465fae203870548e4c53f8a32ce04
9SHA1 (patch-contrib_dblink_dblink.c) = 4d7c40d107d4c13c63ef2908d9a02be319863657 9SHA1 (patch-contrib_dblink_dblink.c) = 4d7c40d107d4c13c63ef2908d9a02be319863657
10SHA1 (patch-src_Makefile.shlib) = 2370e3c4260ba7f947b0c15b9bdc43e4820e01a4 10SHA1 (patch-src_Makefile.shlib) = 2370e3c4260ba7f947b0c15b9bdc43e4820e01a4
11SHA1 (patch-src_backend_Makefile) = 76ddd3015d93b19cdd6000eaffc4f53cbd4965b5 11SHA1 (patch-src_backend_Makefile) = 76ddd3015d93b19cdd6000eaffc4f53cbd4965b5
12SHA1 (patch-src_backend_utils_adt_datetime.c) = 9d3c6c23b5af92c17ea643ed986b5648f3381cb4 12SHA1 (patch-src_backend_utils_adt_datetime.c) = 9d3c6c23b5af92c17ea643ed986b5648f3381cb4
13SHA1 (patch-src_interfaces_ecpg_pgtypeslib_interval.c) = b9c340552b0a0838229cffdada2efad12ba51d56 13SHA1 (patch-src_interfaces_ecpg_pgtypeslib_interval.c) = b9c340552b0a0838229cffdada2efad12ba51d56
14SHA1 (patch-src_makefiles_Makefile.solaris) = 0168f5bc105ffc89d5db40907a08966d8465f5a0 14SHA1 (patch-src_makefiles_Makefile.solaris) = 0168f5bc105ffc89d5db40907a08966d8465f5a0
15SHA1 (patch-src_pl_plperl_GNUmakefile) = 2b7448d6dd8550e2ea61f40728a2780068b93d07 15SHA1 (patch-src_pl_plperl_GNUmakefile) = 2b7448d6dd8550e2ea61f40728a2780068b93d07
16SHA1 (patch-src_pl_plperl_plperl.h) = bd663fa80a47f7b82ce689060750fa6e631fbc61 16SHA1 (patch-src_pl_plperl_plperl.h) = bd663fa80a47f7b82ce689060750fa6e631fbc61
17SHA1 (patch-src_timezone_localtime.c) = a73769cf05223d2ee06249c9e69c85038c2cd936 17SHA1 (patch-src_timezone_localtime.c) = a73769cf05223d2ee06249c9e69c85038c2cd936
18SHA1 (patch-src_timezone_private.h) = 85dac95e40efc16270885087f868aeb76e1b9214 18SHA1 (patch-src_timezone_private.h) = 85dac95e40efc16270885087f868aeb76e1b9214
cvs diff -r1.20 -r1.21 pkgsrc/databases/postgresql91-docs/Attic/PLIST (expand / switch to unified diff)

--- pkgsrc/databases/postgresql91-docs/Attic/PLIST 2015/06/18 14:46:14 1.20
+++ pkgsrc/databases/postgresql91-docs/Attic/PLIST 2015/10/11 11:24:58 1.21
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.20 2015/06/18 14:46:14 adam Exp $ 1@comment $NetBSD: PLIST,v 1.21 2015/10/11 11:24:58 adam Exp $
2man/man1/clusterdb.1 2man/man1/clusterdb.1
3man/man1/createdb.1 3man/man1/createdb.1
4man/man1/createlang.1 4man/man1/createlang.1
5man/man1/createuser.1 5man/man1/createuser.1
6man/man1/dropdb.1 6man/man1/dropdb.1
7man/man1/droplang.1 7man/man1/droplang.1
8man/man1/dropuser.1 8man/man1/dropuser.1
9man/man1/ecpg.1 9man/man1/ecpg.1
10man/man1/initdb.1 10man/man1/initdb.1
11man/man1/pg_basebackup.1 11man/man1/pg_basebackup.1
12man/man1/pg_config.1 12man/man1/pg_config.1
13man/man1/pg_controldata.1 13man/man1/pg_controldata.1
14man/man1/pg_ctl.1 14man/man1/pg_ctl.1
@@ -658,26 +658,27 @@ share/doc/postgresql/html/ltree.html @@ -658,26 +658,27 @@ share/doc/postgresql/html/ltree.html
658share/doc/postgresql/html/maintenance.html 658share/doc/postgresql/html/maintenance.html
659share/doc/postgresql/html/manage-ag-config.html 659share/doc/postgresql/html/manage-ag-config.html
660share/doc/postgresql/html/manage-ag-createdb.html 660share/doc/postgresql/html/manage-ag-createdb.html
661share/doc/postgresql/html/manage-ag-dropdb.html 661share/doc/postgresql/html/manage-ag-dropdb.html
662share/doc/postgresql/html/manage-ag-overview.html 662share/doc/postgresql/html/manage-ag-overview.html
663share/doc/postgresql/html/manage-ag-tablespaces.html 663share/doc/postgresql/html/manage-ag-tablespaces.html
664share/doc/postgresql/html/manage-ag-templatedbs.html 664share/doc/postgresql/html/manage-ag-templatedbs.html
665share/doc/postgresql/html/managing-databases.html 665share/doc/postgresql/html/managing-databases.html
666share/doc/postgresql/html/monitoring-locks.html 666share/doc/postgresql/html/monitoring-locks.html
667share/doc/postgresql/html/monitoring-ps.html 667share/doc/postgresql/html/monitoring-ps.html
668share/doc/postgresql/html/monitoring-stats.html 668share/doc/postgresql/html/monitoring-stats.html
669share/doc/postgresql/html/monitoring.html 669share/doc/postgresql/html/monitoring.html
670share/doc/postgresql/html/multibyte.html 670share/doc/postgresql/html/multibyte.html
 671share/doc/postgresql/html/mvcc-caveats.html
671share/doc/postgresql/html/mvcc-intro.html 672share/doc/postgresql/html/mvcc-intro.html
672share/doc/postgresql/html/mvcc.html 673share/doc/postgresql/html/mvcc.html
673share/doc/postgresql/html/nls-programmer.html 674share/doc/postgresql/html/nls-programmer.html
674share/doc/postgresql/html/nls-translator.html 675share/doc/postgresql/html/nls-translator.html
675share/doc/postgresql/html/nls.html 676share/doc/postgresql/html/nls.html
676share/doc/postgresql/html/non-durability.html 677share/doc/postgresql/html/non-durability.html
677share/doc/postgresql/html/notation.html 678share/doc/postgresql/html/notation.html
678share/doc/postgresql/html/oid2name.html 679share/doc/postgresql/html/oid2name.html
679share/doc/postgresql/html/overview.html 680share/doc/postgresql/html/overview.html
680share/doc/postgresql/html/pageinspect.html 681share/doc/postgresql/html/pageinspect.html
681share/doc/postgresql/html/parser-stage.html 682share/doc/postgresql/html/parser-stage.html
682share/doc/postgresql/html/passwordcheck.html 683share/doc/postgresql/html/passwordcheck.html
683share/doc/postgresql/html/performance-tips.html 684share/doc/postgresql/html/performance-tips.html
@@ -991,44 +992,46 @@ share/doc/postgresql/html/release-9-0-10 @@ -991,44 +992,46 @@ share/doc/postgresql/html/release-9-0-10
991share/doc/postgresql/html/release-9-0-11.html 992share/doc/postgresql/html/release-9-0-11.html
992share/doc/postgresql/html/release-9-0-12.html 993share/doc/postgresql/html/release-9-0-12.html
993share/doc/postgresql/html/release-9-0-13.html 994share/doc/postgresql/html/release-9-0-13.html
994share/doc/postgresql/html/release-9-0-14.html 995share/doc/postgresql/html/release-9-0-14.html
995share/doc/postgresql/html/release-9-0-15.html 996share/doc/postgresql/html/release-9-0-15.html
996share/doc/postgresql/html/release-9-0-16.html 997share/doc/postgresql/html/release-9-0-16.html
997share/doc/postgresql/html/release-9-0-17.html 998share/doc/postgresql/html/release-9-0-17.html
998share/doc/postgresql/html/release-9-0-18.html 999share/doc/postgresql/html/release-9-0-18.html
999share/doc/postgresql/html/release-9-0-19.html 1000share/doc/postgresql/html/release-9-0-19.html
1000share/doc/postgresql/html/release-9-0-2.html 1001share/doc/postgresql/html/release-9-0-2.html
1001share/doc/postgresql/html/release-9-0-20.html 1002share/doc/postgresql/html/release-9-0-20.html
1002share/doc/postgresql/html/release-9-0-21.html 1003share/doc/postgresql/html/release-9-0-21.html
1003share/doc/postgresql/html/release-9-0-22.html 1004share/doc/postgresql/html/release-9-0-22.html
 1005share/doc/postgresql/html/release-9-0-23.html
1004share/doc/postgresql/html/release-9-0-3.html 1006share/doc/postgresql/html/release-9-0-3.html
1005share/doc/postgresql/html/release-9-0-4.html 1007share/doc/postgresql/html/release-9-0-4.html
1006share/doc/postgresql/html/release-9-0-5.html 1008share/doc/postgresql/html/release-9-0-5.html
1007share/doc/postgresql/html/release-9-0-6.html 1009share/doc/postgresql/html/release-9-0-6.html
1008share/doc/postgresql/html/release-9-0-7.html 1010share/doc/postgresql/html/release-9-0-7.html
1009share/doc/postgresql/html/release-9-0-8.html 1011share/doc/postgresql/html/release-9-0-8.html
1010share/doc/postgresql/html/release-9-0-9.html 1012share/doc/postgresql/html/release-9-0-9.html
1011share/doc/postgresql/html/release-9-0.html 1013share/doc/postgresql/html/release-9-0.html
1012share/doc/postgresql/html/release-9-1-1.html 1014share/doc/postgresql/html/release-9-1-1.html
1013share/doc/postgresql/html/release-9-1-10.html 1015share/doc/postgresql/html/release-9-1-10.html
1014share/doc/postgresql/html/release-9-1-11.html 1016share/doc/postgresql/html/release-9-1-11.html
1015share/doc/postgresql/html/release-9-1-12.html 1017share/doc/postgresql/html/release-9-1-12.html
1016share/doc/postgresql/html/release-9-1-13.html 1018share/doc/postgresql/html/release-9-1-13.html
1017share/doc/postgresql/html/release-9-1-14.html 1019share/doc/postgresql/html/release-9-1-14.html
1018share/doc/postgresql/html/release-9-1-15.html 1020share/doc/postgresql/html/release-9-1-15.html
1019share/doc/postgresql/html/release-9-1-16.html 1021share/doc/postgresql/html/release-9-1-16.html
1020share/doc/postgresql/html/release-9-1-17.html 1022share/doc/postgresql/html/release-9-1-17.html
1021share/doc/postgresql/html/release-9-1-18.html 1023share/doc/postgresql/html/release-9-1-18.html
 1024share/doc/postgresql/html/release-9-1-19.html
1022share/doc/postgresql/html/release-9-1-2.html 1025share/doc/postgresql/html/release-9-1-2.html
1023share/doc/postgresql/html/release-9-1-3.html 1026share/doc/postgresql/html/release-9-1-3.html
1024share/doc/postgresql/html/release-9-1-4.html 1027share/doc/postgresql/html/release-9-1-4.html
1025share/doc/postgresql/html/release-9-1-5.html 1028share/doc/postgresql/html/release-9-1-5.html
1026share/doc/postgresql/html/release-9-1-6.html 1029share/doc/postgresql/html/release-9-1-6.html
1027share/doc/postgresql/html/release-9-1-7.html 1030share/doc/postgresql/html/release-9-1-7.html
1028share/doc/postgresql/html/release-9-1-8.html 1031share/doc/postgresql/html/release-9-1-8.html
1029share/doc/postgresql/html/release-9-1-9.html 1032share/doc/postgresql/html/release-9-1-9.html
1030share/doc/postgresql/html/release-9-1.html 1033share/doc/postgresql/html/release-9-1.html
1031share/doc/postgresql/html/release.html 1034share/doc/postgresql/html/release.html
1032share/doc/postgresql/html/resources.html 1035share/doc/postgresql/html/resources.html
1033share/doc/postgresql/html/role-attributes.html 1036share/doc/postgresql/html/role-attributes.html
1034share/doc/postgresql/html/role-membership.html 1037share/doc/postgresql/html/role-membership.html
cvs diff -r1.11 -r1.12 pkgsrc/databases/postgresql91-server/Attic/PLIST (expand / switch to unified diff)

--- pkgsrc/databases/postgresql91-server/Attic/PLIST 2015/02/14 12:06:49 1.11
+++ pkgsrc/databases/postgresql91-server/Attic/PLIST 2015/10/11 11:24:59 1.12
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.11 2015/02/14 12:06:49 adam Exp $ 1@comment $NetBSD: PLIST,v 1.12 2015/10/11 11:24:59 adam Exp $
2bin/postgres 2bin/postgres
3bin/postmaster 3bin/postmaster
4lib/postgresql/ascii_and_mic.so 4lib/postgresql/ascii_and_mic.so
5lib/postgresql/cyrillic_and_mic.so 5lib/postgresql/cyrillic_and_mic.so
6lib/postgresql/dict_snowball.so 6lib/postgresql/dict_snowball.so
7lib/postgresql/euc2004_sjis2004.so 7lib/postgresql/euc2004_sjis2004.so
8lib/postgresql/euc_cn_and_mic.so 8lib/postgresql/euc_cn_and_mic.so
9lib/postgresql/euc_jp_and_sjis.so 9lib/postgresql/euc_jp_and_sjis.so
10lib/postgresql/euc_kr_and_mic.so 10lib/postgresql/euc_kr_and_mic.so
11lib/postgresql/euc_tw_and_big5.so 11lib/postgresql/euc_tw_and_big5.so
12lib/postgresql/latin2_and_win1250.so 12lib/postgresql/latin2_and_win1250.so
13lib/postgresql/latin_and_mic.so 13lib/postgresql/latin_and_mic.so
14lib/postgresql/libpqwalreceiver.so 14lib/postgresql/libpqwalreceiver.so
@@ -170,26 +170,27 @@ share/postgresql/timezone/America/Costa_ @@ -170,26 +170,27 @@ share/postgresql/timezone/America/Costa_
170share/postgresql/timezone/America/Creston 170share/postgresql/timezone/America/Creston
171share/postgresql/timezone/America/Cuiaba 171share/postgresql/timezone/America/Cuiaba
172share/postgresql/timezone/America/Curacao 172share/postgresql/timezone/America/Curacao
173share/postgresql/timezone/America/Danmarkshavn 173share/postgresql/timezone/America/Danmarkshavn
174share/postgresql/timezone/America/Dawson 174share/postgresql/timezone/America/Dawson
175share/postgresql/timezone/America/Dawson_Creek 175share/postgresql/timezone/America/Dawson_Creek
176share/postgresql/timezone/America/Denver 176share/postgresql/timezone/America/Denver
177share/postgresql/timezone/America/Detroit 177share/postgresql/timezone/America/Detroit
178share/postgresql/timezone/America/Dominica 178share/postgresql/timezone/America/Dominica
179share/postgresql/timezone/America/Edmonton 179share/postgresql/timezone/America/Edmonton
180share/postgresql/timezone/America/Eirunepe 180share/postgresql/timezone/America/Eirunepe
181share/postgresql/timezone/America/El_Salvador 181share/postgresql/timezone/America/El_Salvador
182share/postgresql/timezone/America/Ensenada 182share/postgresql/timezone/America/Ensenada
 183share/postgresql/timezone/America/Fort_Nelson
183share/postgresql/timezone/America/Fort_Wayne 184share/postgresql/timezone/America/Fort_Wayne
184share/postgresql/timezone/America/Fortaleza 185share/postgresql/timezone/America/Fortaleza
185share/postgresql/timezone/America/Glace_Bay 186share/postgresql/timezone/America/Glace_Bay
186share/postgresql/timezone/America/Godthab 187share/postgresql/timezone/America/Godthab
187share/postgresql/timezone/America/Goose_Bay 188share/postgresql/timezone/America/Goose_Bay
188share/postgresql/timezone/America/Grand_Turk 189share/postgresql/timezone/America/Grand_Turk
189share/postgresql/timezone/America/Grenada 190share/postgresql/timezone/America/Grenada
190share/postgresql/timezone/America/Guadeloupe 191share/postgresql/timezone/America/Guadeloupe
191share/postgresql/timezone/America/Guatemala 192share/postgresql/timezone/America/Guatemala
192share/postgresql/timezone/America/Guayaquil 193share/postgresql/timezone/America/Guayaquil
193share/postgresql/timezone/America/Guyana 194share/postgresql/timezone/America/Guyana
194share/postgresql/timezone/America/Halifax 195share/postgresql/timezone/America/Halifax
195share/postgresql/timezone/America/Havana 196share/postgresql/timezone/America/Havana