diff options
author | Natanael Copa <ncopa@alpinelinux.org> | 2014-03-05 10:26:34 +0000 |
---|---|---|
committer | Natanael Copa <ncopa@alpinelinux.org> | 2014-03-05 10:29:33 +0000 |
commit | 10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3 (patch) | |
tree | 5289e2572a6b0514f4fba7c76ba980b312f8d979 | |
parent | 98c0c115fce1bf18f45a47ae7f0c86db3fb1e11f (diff) | |
download | aports-10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3.tar.bz2 aports-10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3.tar.xz |
main/postgresql: security upgrade to 9.2.7 (various CVEs)
fixes #2729
CVE-2014-0060 SET ROLE bypasses lack of ADMIN OPTION.
CVE-2014-0061 Privilege escalation via calls to validator functions.
CVE-2014-0062 Race condition in CREATE INDEX allows for privilege
escalation.
CVE-2014-0063 Potential buffer overruns due to integer overflow in
size calculations.
CVE-2014-0064 Potential buffer overruns in datetime input/output.
CVE-2014-0065 Potential buffer overruns of fixed-size buffers.
CVE-2014-0066 Potential null pointer dereference crash when crypt(3)
returns NULL.
-rw-r--r-- | main/postgresql/APKBUILD | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/main/postgresql/APKBUILD b/main/postgresql/APKBUILD index 00708aa8d9..aa4f70bccc 100644 --- a/main/postgresql/APKBUILD +++ b/main/postgresql/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=postgresql -pkgver=9.2.3 +pkgver=9.2.7 pkgrel=0 pkgdesc="A sophisticated object-relational DBMS" url="http://www.postgresql.org/" @@ -74,7 +74,7 @@ contrib() { make DESTDIR="$subpkgdir" -C contrib install || return 1 } -md5sums="59f42a93695b0186ed5eb03c2653a7d4 postgresql-9.2.3.tar.bz2 +md5sums="610354e939d3b6d8d1a620504bc25fb2 postgresql-9.2.7.tar.bz2 de29e4cea00a3318a77587fbbc7b6243 initdb.patch 01cc8d4a4cbc77a7b6f84344155232d5 postgresql.initd ca9759d29dc86402858821d5fdec48a1 postgresql.confd |