Package Release Info

postgresql12-12.9-8.26.1

Update Info: SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3758
Available in Package Hub : 15 SP3 Subpackages Updates

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

postgresql12-llvmjit

postgresql12-test

Change Logs

* Wed Nov 10 2021 max@suse.com

- bsc#1192516: Upgrade to version 12.9:
  * Make the server reject extraneous data after an SSL or GSS
    encryption handshake (CVE-2021-23214).
  * Make libpq reject extraneous data after an SSL or GSS
    encryption handshake (CVE-2021-23222).
  * https://www.postgresql.org/docs/12/release-12-0.html

* Mon Sep 27 2021 max@suse.com

- Let genlists skip non-existing binaries to avoid lots of version
  conditionals in the file lists.
- Remove postgresql-testsuite-int8.sql.patch, because its purpose
  is unclear. This affects only the test subpackage.

* Tue Aug 31 2021 max@suse.com

- bsc#1185952: fix build with llvm12 on s390x.
  0001-jit-Workaround-potential-datalayout-mismatch-on-s390.patch
- bsc#1179945: Re-enable icu for PostgreSQL 10.

* Tue Aug 24 2021 mrueckert@suse.de

- Upgrade to version 12.8:
  * https://www.postgresql.org/docs/12/release-12-8.html
  * CVE-2021-3677 (boo#1189748)
    The planner could create an incorrect plan in cases where two
    ProjectionPaths were stacked on top of each other. The only
    known way to trigger that situation involves parallel sort
    operations, but there may be other instances. The result would
    be crashes or incorrect query results. Disclosure of server
    memory contents is also possible.

* Fri Jul 02 2021 max@suse.com

- bsc#1187751: Make the dependency of postgresqlXX-server-devel on
  llvm and clang optional (postgresql-llvm-optional.patch).

* Wed May 19 2021 max@suse.com

- bsc#1185952: llvm12 breaks PostgreSQL 11 and 12 on s390x.
  Use llvm11 as a workaround.

* Tue May 11 2021 max@suse.com

- Upgrade to version 12.7:
  * https://www.postgresql.org/docs/12/release-12-7.html
  * CVE-2021-32027, bsc#1185924:
    Prevent integer overflows in array subscripting calculations.
  * CVE-2021-32028, bsc#1185925: Fix mishandling of ?junk?
    columns in INSERT ... ON CONFLICT ... UPDATE target lists.
  * CVE-2021-32029, bsc#1185926: Fix possibly-incorrect
    computation of UPDATE ... RETURNING
    "pg_psql_temporary_savepoint" does not exist?.
- Don't use %_stop_on_removal, because it was meant to be private
  and got removed from openSUSE. %_restart_on_update is also
  private, but still supported and needed for now (bsc#1183168).

* Mon Mar 15 2021 max@suse.com

- Re-enable build of the llvmjit subpackage on SLE, but it will
  only be delivered on PackageHub for now (boo#1183118).

* Tue Mar 09 2021 max@suse.com

- Remove leftover PreReq on chkconfig, we stopped using it long
  time ago.

* Fri Feb 19 2021 max@suse.com

- boo#1179945: Disable icu for PostgreSQL 10 (and older) on TW.

* Wed Feb 10 2021 max@suse.com

Upgrade to version 12.6:
  * https://www.postgresql.org/docs/12/release-12-6.html
  * Reindexing might be needed after applying this update.
  * CVE-2021-3393, bsc#1182040: Fix information leakage in
    constraint-violation error messages.
  * Obsoletes postgresql-icu68.patch.

* Mon Dec 14 2020 gmbr3@opensuse.org

- Add postgresql-icu68.patch: fix build with ICU 68

* Fri Nov 20 2020 max@suse.com

- bsc#1178961: %ghost the symlinks to pg_config and ecpg.
- boo#1179765: BuildRequire libpq5 and libecpg6 when not building
  them to avoid dangling symlinks in the devel package.

* Wed Nov 11 2020 max@suse.com

- Upgrade to version 12.5:
  * CVE-2020-25695, bsc#1178666: Block DECLARE CURSOR ... WITH HOLD
    and firing of deferred triggers within index expressions and
    materialized view queries.
  * CVE-2020-25694, bsc#1178667:
    a) Fix usage of complex connection-string parameters in pg_dump,
    pg_restore, clusterdb, reindexdb, and vacuumdb.
    b) When psql's \connect command re-uses connection parameters,
    ensure that all non-overridden parameters from a previous
    connection string are re-used.
  * CVE-2020-25696, bsc#1178668: Prevent psql's \gset command from
    modifying specially-treated variables.
  * Fix recently-added timetz test case so it works when the USA
    is not observing daylight savings time.
    (obsoletes postgresql-timetz.patch)
  * https://www.postgresql.org/about/news/2111/
  * https://www.postgresql.org/docs/12/release-12-5.html

* Tue Nov 03 2020 max@suse.com

- Fix a DST problem in the test suite: postgresql-timetz.patch
  https://postgr.es/m/16689-57701daa23b377bf@postgresql.org

* Fri Sep 25 2020 max@suse.com

- Stop building the mini and lib packages as they are now coming
  from postgresql13.

* Thu Aug 13 2020 max@suse.com

- update to 12.4:
  * CVE-2020-14349, bsc#1175193: Set a secure search_path in
    logical replication walsenders and apply workers
  * CVE-2020-14350, bsc#1175194: Make contrib modules' installation
    scripts more secure.
  * https://www.postgresql.org/docs/12/release-12-4.html
- Remove postgresql-regress.patch, it does not apply anymore and
  it does not seem to be needed anymore.
- Pack the /usr/lib/postgresql symlink only into the main package.

* Tue Jun 16 2020 max@suse.com

- Let postgresqlXX conflict with postgresql-noarch < 12.0.1 to get
  a clean and complete cutover to the new packaging schema.

* Wed Jun 03 2020 max@suse.com

- update to 12.3 (bsc#1171924).
  https://www.postgresql.org/about/news/2038/
  https://www.postgresql.org/docs/12/release-12-3.html
- Unify the spec file to work across all current PostgreSQL
  versions to simplify future maintenance.
- Move from the "libs" build flavour to a "mini" package that will
  only be used inside the build service and not get shipped, to
  avoid confusion with the debuginfo packages (bsc#1148643).

* Fri May 15 2020 z1trus@gmx.com

- update to 12.3
  https://www.postgresql.org/about/news/2038/
  https://www.postgresql.org/docs/12/release-12-3.html

Version: 12.13-150200.8.38.1

* Thu Nov 10 2022 max@suse.com

- bsc#1205300: Update to 12.13:
  * https://www.postgresql.org/about/news/2543/
  * https://www.postgresql.org/docs/12/release-12-13.html
- Sync spec file with postgresql15.

* Thu Sep 22 2022 aaronpuchert@alice-dsl.net

- Create mechanism to specify the latest supported LLVM version.
  Automatically pin to that version if the distribution has a newer
  unsupported default version.

* Tue Sep 13 2022 max@suse.com

- Sync spec file with postgresql15.

* Mon Sep 12 2022 schwab@suse.de

- Disable LLVM JIT on riscv64

Version: 12.12-150200.8.35.1

* Fri Aug 12 2022 max@suse.com

- - Update to 12.12:
  * bsc#1202368, CVE-2022-2625: Extension scripts replace objects
    not belonging to the extension.
  * https://www.postgresql.org/docs/release/12.12/

* Wed Apr 13 2022 max@suse.com

- bsc#1198166: Pin to llvm13 until the next patchlevel update.

Version: 12.11-150200.8.32.1

* Thu May 12 2022 max@suse.com

- Update to 12.11:
  * bsc#1199475, CVE-2022-1552: Confine additional operations
    within "security restricted operation" sandboxes.
  * https://www.postgresql.org/docs/12/release-12-11.html

Version: 12.10-8.29.1

* Tue Feb 08 2022 max@suse.com

- bsc#1195680: Upgrade to 12.10:
  * https://www.postgresql.org/docs/12/release-12-10.html
  * Reindexing might be needed after applying this upgrade, so
    please read the release notes carefully.
- boo#1190740: Add constraints file with 12GB of memory for s390x
  as a workaround

* Thu Nov 25 2021 max@suse.com

- Add a llvmjit-devel subpackage to pull in the right versions
  of clang and llvm for building extensions.
- Fix some mistakes in the interdependencies between the
  implementation packages and their noarch counterpart.
- Update the BuildIgnore section.