« back to all changes in this revision
Viewing changes to contrib/pgcrypto/openssl.c
- Committer: Package Import Robot
- Date: 2014-07-24 16:13:59 UTC
- mfrom: (1.1.8)
- Revision ID: package-import@ubuntu.com-20140724161359-uk325qfv03euxuuh
* New upstream bug fix release: (LP: #1348176)
- pg_upgrade: Users who upgraded to version 9.3 using pg_upgrade may have
an issue with transaction information which causes VACUUM to eventually
fail. These users should run the script provided in the release notes to
determine if their installation is affected, and then take the remedy
steps outlined there.
- Various data integrity and other bug fixes.
- Secure Unix-domain sockets of temporary postmasters started during make
check.
Any local user able to access the socket file could connect as the
server's bootstrap superuser, then proceed to execute arbitrary code as
the operating-system user running the test, as we previously noted in
CVE-2014-0067. This change defends against that risk by placing the
server's socket in a temporary, mode 0700 subdirectory of /tmp.
- See release notes for details:
http://www.postgresql.org/about/news/1534/
* Remove pg_regress patches to support --host=/path, obsolete with above
upstream changes and not applicable any more.
* Drop tcl8.6 patch, applied upstream.
* Add missing logrotate test dependency.
- pg_upgrade: Users who upgraded to version 9.3 using pg_upgrade may have
an issue with transaction information which causes VACUUM to eventually
fail. These users should run the script provided in the release notes to
determine if their installation is affected, and then take the remedy
steps outlined there.
- Various data integrity and other bug fixes.
- Secure Unix-domain sockets of temporary postmasters started during make
check.
Any local user able to access the socket file could connect as the
server's bootstrap superuser, then proceed to execute arbitrary code as
the operating-system user running the test, as we previously noted in
CVE-2014-0067. This change defends against that risk by placing the
server's socket in a temporary, mode 0700 subdirectory of /tmp.
- See release notes for details:
http://www.postgresql.org/about/news/1534/
* Remove pg_regress patches to support --host=/path, obsolete with above
upstream changes and not applicable any more.
* Drop tcl8.6 patch, applied upstream.
* Add missing logrotate test dependency.
- files added:
- config/test_quiet_include.h
- files removed:
- .pc/04-configure-tcl8.6
- .pc/04-configure-tcl8.6/config
- .pc/60-pg_regress_socketdir.patch
- .pc/60-pg_regress_socketdir.patch/src
- .pc/60-pg_regress_socketdir.patch/src/test
- .pc/60-pg_regress_socketdir.patch/src/test/regress
- .pc/61-extra_regress_opts
- .pc/61-extra_regress_opts/contrib
- .pc/61-extra_regress_opts/contrib/pg_upgrade
- .pc/61-extra_regress_opts/src
- .pc/61-extra_regress_opts/src/test
- .pc/61-extra_regress_opts/src/test/isolation
- .pc/62-pg_upgrade-test-in-tmp
- .pc/62-pg_upgrade-test-in-tmp/contrib
- .pc/62-pg_upgrade-test-in-tmp/contrib/pg_upgrade
- .pc/63-pg_upgrade-test-bindir
- .pc/63-pg_upgrade-test-bindir/contrib
- .pc/63-pg_upgrade-test-bindir/contrib/pg_upgrade
added
removed
contrib/pgcrypto/openssl.c
