freebsd-ports/databases/postgresql92-server/distinfo at 148ef2fce7a252de76a86fa419be8102de52d525 - kpriv/freebsd-ports - Disroot Forgejo: Brace yourself, merge conflicts ahead.

kpriv/freebsd-ports

Palle Girgensohn 70a06c4f2e Update PostgreSQL to latest versions.

Security Fixes for Regular Expressions, PL/Java

This release closes security hole CVE-2016-0773, an issue with regular
expression (regex) parsing. Prior code allowed users to pass in expressions
which included out-of-range Unicode characters, triggering a backend crash.
This issue is critical for PostgreSQL systems with untrusted users or which
generate regexes based on user input.

The update also fixes CVE-2016-0766, a privilege escalation issue for users of
PL/Java.  Certain custom configuration settings (GUCS) for PL/Java will now be
modifiable only by the database superuser

URL:		http://www.postgresql.org/about/news/1644/
Security:	CVE-2016-0773, CVE-2016-0766

2016-02-13 22:42:04 +00:00

4 lines

340 B

Text

Raw Blame History

 SHA256 (postgresql/postgresql-9.2.15.tar.bz2) = 7ced4807589899e83c64dd0803cf1f9782b6a20077ab545c66e868ef26543e60
 SIZE (postgresql/postgresql-9.2.15.tar.bz2) = 16480973
 SHA256 (postgresql/pg-929-icu-2015-04-18.diff.gz) = 9aff1ba25fbe5892a3868bff516df685531c85901c360548e38bf2e5fa0e14ab
 SIZE (postgresql/pg-929-icu-2015-04-18.diff.gz) = 4469