This update includes Oracle Critical Patch Advisory published on July 2018
More info:
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixMSQL
Also:
Delete upstreamed hunks of patches.
Change local patches regarding upstream changes.
PR: 229861
Reported by: Markus Kohlmeyer <rootservice@gmail.com>
Sponsored by: The FreeBSD Foundation
PR: 230527
Submitted by: Markus Kohlmeyer <rootservice@gmail.com>
Reported by: Markus Kohlmeyer <rootservice@gmail.com>
Sponsored by: The FreeBSD Foundation
versions of our database system, including 10.5, 9.6.10, 9.5.14, 9.4.19,
9.3.24. This release fixes two security issues as well as bugs reported over
the last three months.
If you have untrusted users accessing your system and you are either running
PostgreSQL 9.5 or a newer version OR have installed the "dblink" or
"postgres_fdw" extensions, you must apply this update as soon as possible. All
other users can upgrade at the next convenient downtime.
Please note that PostgreSQL changed its versioning scheme with the release of
version 10.0, so updating to version 10.5 from any 10.x release is considered a
minor update.
The PostgreSQL Global Development Group also announces that the third beta
release of PostgreSQL 11 is now available for download. This release contains
previews of all features that will be available in the final release of
PostgreSQL 11 (though some details of the release could change before then) as
well as bug fixes that were reported during the second beta.
This release also changes the default option for the server packages to *not*
include XML support per default. If you need this, please check the XML option
knob and build the port.
Releasenotes: https://www.postgresql.org/about/news/1878/
PR: 229523, 198588
Security: 96eab874-9c79-11e8-b34b-6cc21735f730
Security: CVE-2018-10915, CVE-2018-10925
There is a perl script embedded in the binary which can be found at
storage/innobase/xtrabackup/src/version_check.pl. This script can be
ignored if you pass the argument --no-version-check. It could be
possible to replace this with a simple shell script to achieve the same
results and eliminate the dependency on a specific external
libmysqlclient library inherited from DBD::MySQL. This will be
investigated to eliminate this issue.
Pointyhat: me
MFH: 2018Q3
In file included from src/third_party/asio-master/asio/src/asio.cpp:11:
In file included from src/third_party/asio-master/asio/include/asio/impl/src.hpp:44:
In file included from src/third_party/asio-master/asio/include/asio/detail/impl/reactive_descriptor_service.ipp:25:
In file included from src/third_party/asio-master/asio/include/asio/detail/reactive_descriptor_service.hpp:24:
In file included from src/third_party/asio-master/asio/include/asio/buffer.hpp:27:
In file included from src/third_party/asio-master/asio/include/asio/detail/string_view.hpp:23:
/usr/include/c++/v1/experimental/string_view:11:2: error: "<experimental/string_view> has been removed. Use <string_view> instead."
PR: 230401
<ChangeLog>
Upgrade urgency
HIGH: Many non critical but important issues fixed.
CRITICAL for Stream users: Many important bugs fixed.
Fixes:
* A number of fixes related to Streams: stability and correctnes.
* Fix dbRandomKey() potential infinite loop.
* Improve eviction LFU/LRU when keys are created by INCR commands family.
* Active defragmentation is now working on Redis 5.
* Fix corner case in Redis CLuster / Sentinel failover, by resetting the
disconnection time with master in a more appropriate place.
* Use a private version of localtime() to avoid potential deadlocks.
* Different redis-cli non critical fixes.
* Fix rare replication stream corruption with disk-based replication.
Improvements:
* Sentinel: add an option to deny online script reconfiguration.
* Improved RESTORE command.
* Sentinel command renaming: allows to use Sentinel with Redis instances
that have non standard command names.
* CLIENT ID and CLIENT UNBLOCK.
* CLIENT LIST now supports a TYPE option.
* redis-cli --cluster now supports authentication.
* redis-trib is now deprecated (use redis-cli --cluster).
* Better slaves output buffers efficiency.
* Faster INFO when there are many clients connected.
* Dynamic HZ feature.
* Improvements in what the MEMORY command is able to report.
* Add year in log. (WARNING: may be incompatible with log scraping tools)
* Lazy freeing now works even when values are overwritten (for instance SET).
* Faster ZADD when elements scores are updated.
* Improvements to the test suite, including many new options.
</ChangeLog>
<ChangeLog>
Upgrade urgency HIGH: not critical but very important bugs fixed.
Dear users, this is just a bugfix release of Redis 4. All new work
is now focused on Redis 5, however we backported a number of bug fixes here:
* The disconnection time between the master and slave was reset in an
incorrect place, sometimes a good slave will not be able to failover
because it claims it was disconnected for too much time from the master.
* A replication bug, rare to trigger but non impossible, is in Redis for
years. It was lately discovered at Redis Labs and fixed by Oran Agra.
It may cause disconnections, desynchronizations and other issues.
* RANDOMKEY may go in infinite loop on rare situations. Now fixed.
* EXISTS now works in a more consistent way on slaves.
* Sentinel: backport of an option to deny a potential security problem
when the SENTINEL command is used to configure an arbitrary script
to execute.
Many of these issues are there for a very long time, however upgrading
is a good idea.
</ChangeLog>
Enable DBM API. [1]
Reorder license information of db5/Makefile to fix portlint warning. [1]
Bump PORTREVISON. [1]
Add command creating symbolic link such as ${PREFIX}/lib/libdb-6.so to
post-install target of db6/Makefile. [1]
Instead of USE_GCC, patch src/dbinc/db.in to not expose the store() macro under C++.
Mark db6 broken on MIPS64 for now, we do not have a workable MUTEX implementation.
Unbreak build on AARCH64, where the db6 autoconfiguration chooses the wrong MUTEX.
PR: 230191
Submitted by: Yasuhiro Kimura
2018-07-31 databases/rubygem-redis-namespace15: Obsoleted by update of www/gitlab-ce. Please use databases/rubygem-redis-namespace instead.
2018-08-01 security/py-python-social-auth: Upstream Deprecated
2018-08-01 www/py-django-social-auth: no support for new django
2018-07-31 net/rubygem-gitaly-proto096: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 security/tripwire12: unfetchable
2018-07-31 security/rubygem-rbnacl4: Obsoleted by update of www/gitlab-ce. Please use security/rubygem-rbnacl instead.
2018-07-31 www/rubygem-gon61: Obsoleted by update of www/gitlab-ce. Please use www/rubygem-gon instead.
2018-07-31 databases/pgpool-II-33: Will be deprecated by upstream, please switch to newer pgpool versions
2018-07-31 devel/rubygem-grape-entity060: Obsoleted by update of www/gitlab-ce. Please use devel/rubygem-grape-entity instead.
2018-07-31 net/rubygem-gitaly-proto099: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-gitaly-proto095: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-gitaly-proto instead.
2018-07-31 net/rubygem-omniauth-github11: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-omniauth-github instead.
2018-07-31 net/rubygem-asset_sync220: Obsoleted by update of www/gitlab-ce. Please use net/rubygem-asset_sync instead.
2018-07-31 www/rubygem-gollum-lib-gitlab: Obsoleted by update of www/gitlab-ce. Please use www/rubygem-gitlab-gollum-lib instead.
2018-08-01 www/py-django-threaded-multihost: Project development unmaintained
2018-08-01 www/py-django-keyedcache: Project development abandoned
2018-08-01 www/py-django-signals-ahoy: Project development unmaintained
in the ports tree (via Mk/bsd.default-versions.mk and lang/gcc) which
has now moved from GCC 6 to GCC 7 by default.
This includes ports
- featuring USE_GCC=yes or USE_GCC=any,
- featuring USES=fortran,
- using Mk/bsd.octave.mk which in turn features USES=fortran, and those
- with USES=compiler specifying one of openmp, nestedfct, c11, c++0x,
c++11-lib, c++11-lang, c++14-lang, c++17-lang, or gcc-c++11-lib.
PR: 222542
implementation is tightly integrated in the RDBMS in the sense that it defines
operators so instead of the traditional operators (= and <>) you can use ~~~
and ! (any of these operators represents a similarity function).
pg_similarity has three main components:
* Functions: a set of functions that implements similarity algorithms available
in the literature. These functions can be used as UDFs and, will be the base
for implementing the similarity operators;
* Operators: a set of operators defined at the top of similarity functions. They
use similarity functions to obtain the similarity threshold and, compare its
value to a user-defined threshold to decide if it is a match or not;
* Session Variables: a set of variables that store similarity function
parameters. Theses variables can be defined at run time.
WWW: http://pgsimilarity.projects.pgfoundry.org
PR: 220428
Submitted by: Jov <amutu@amutu.com>
Sponsored by: iXsystems Inc.
Side-by-side comparison of the old and new distfiles shows that
upstream have apparently rerolled the distfile, with changes to the
content. However these changes are innocuous and consist of updating
some autoconf related files changing an embedded version string from
7.5devel to 7.5.0
Affected files:
% diff -qr pg_citus.{orig,newest}
Files pg_citus.orig/citus-7.5.0/configure and pg_citus.newest/citus-7.5.0/configure differ
Files pg_citus.orig/citus-7.5.0/configure.in and pg_citus.newest/citus-7.5.0/configure.in differ
Files pg_citus.orig/citus-7.5.0/src/test/regress/expected/multi_extension.out and pg_citus.newest/citus-7.5.0/src/test/regress/expected/multi_extension.out differ
Reported by: olgeni, pkg-fallout
Commit important part of PR missed in previous commit.
PR: 229602
Submitted by: Ronald Klop <ronald-lists@klop.ws>
Reported by: Ronald Klop <ronald-lists@klop.ws>
Approved by: eric@camachat.org (maintainer timeout, > 2 weeks)
Pointyhat to: swills
Changelog:
https://sqlitestudio.pl/index.rvt?act=changelog
Port changes:
* Use DISTVERSION
* Update LICENSE_FILE
* Add options group
* Simplify option handling such that the plugins list is in only one place
* New plugin was added: MultiEditorImage
* Remove USE_LDCONFIG, not needed
This enables "make test" in every extension and eases
the test of changes to PHP.
I did ignore PHP 7.0 intentionally since it only receives
security updates and will EOL at the end of the year. Therefore
no great amount of work is expected for 7.0.
