aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorNatanael Copa <ncopa@alpinelinux.org>2014-03-05 10:26:34 +0000
committerNatanael Copa <ncopa@alpinelinux.org>2014-03-05 10:29:33 +0000
commit10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3 (patch)
tree5289e2572a6b0514f4fba7c76ba980b312f8d979
parent98c0c115fce1bf18f45a47ae7f0c86db3fb1e11f (diff)
downloadaports-10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3.tar.bz2
aports-10c1e0fcd9bd910d08f4ffa52ea2da68ac5073a3.tar.xz
main/postgresql: security upgrade to 9.2.7 (various CVEs)
fixes #2729 CVE-2014-0060 SET ROLE bypasses lack of ADMIN OPTION. CVE-2014-0061 Privilege escalation via calls to validator functions. CVE-2014-0062 Race condition in CREATE INDEX allows for privilege escalation. CVE-2014-0063 Potential buffer overruns due to integer overflow in size calculations. CVE-2014-0064 Potential buffer overruns in datetime input/output. CVE-2014-0065 Potential buffer overruns of fixed-size buffers. CVE-2014-0066 Potential null pointer dereference crash when crypt(3) returns NULL.
Diffstat
-rw-r--r--main/postgresql/APKBUILD4
1 files changed, 2 insertions, 2 deletions
diff --git a/main/postgresql/APKBUILD b/main/postgresql/APKBUILD
index 00708aa8d9..aa4f70bccc 100644
--- a/main/postgresql/APKBUILD
+++ b/main/postgresql/APKBUILD
@@ -1,6 +1,6 @@
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=postgresql
-pkgver=9.2.3
+pkgver=9.2.7
pkgrel=0
pkgdesc="A sophisticated object-relational DBMS"
url="http://www.postgresql.org/"
@@ -74,7 +74,7 @@ contrib() {
make DESTDIR="$subpkgdir" -C contrib install || return 1
}
-md5sums="59f42a93695b0186ed5eb03c2653a7d4 postgresql-9.2.3.tar.bz2
+md5sums="610354e939d3b6d8d1a620504bc25fb2 postgresql-9.2.7.tar.bz2
de29e4cea00a3318a77587fbbc7b6243 initdb.patch
01cc8d4a4cbc77a7b6f84344155232d5 postgresql.initd
ca9759d29dc86402858821d5fdec48a1 postgresql.confd
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-15 00:54:47 +0000