Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package postgresql15 for openSUSE:Factory checked in at 2025-08-15 21:52:20 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/postgresql15 (Old) and /work/SRC/openSUSE:Factory/.postgresql15.new.1085 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "postgresql15" Fri Aug 15 21:52:20 2025 rev:24 rq:1299470 version:15.14 Changes: -------- --- /work/SRC/openSUSE:Factory/postgresql15/postgresql15.changes 2025-05-20 09:37:20.247380713 +0200 +++ /work/SRC/openSUSE:Factory/.postgresql15.new.1085/postgresql15.changes 2025-08-15 21:53:47.872454711 +0200 @@ -1,0 +2,17 @@ +Thu Aug 14 19:52:34 UTC 2025 - Marcus Rueckert <mrueck...@suse.de> + +- Upgrade to 15.14: + * https://www.postgresql.org/about/news/postgresql-176-1610-1514-1419-1322-and-18-beta-3-released-3118/ + * https://www.postgresql.org/docs/release/15.14/ + + Security Issues + * CVE-2025-8713: PostgreSQL optimizer statistics can expose + sampled data within a view, partition, or child table + (boo#1248120) + * CVE-2025-8714: PostgreSQL pg_dump lets superuser of origin + server execute arbitrary code in psql client (boo#1248122) + * CVE-2025-8715: PostgreSQL pg_dump newline in object name + executes arbitrary code in psql client and in restore target + server (boo#1248119) + +------------------------------------------------------------------- Old: ---- postgresql-15.13.tar.bz2 postgresql-15.13.tar.bz2.sha256 New: ---- postgresql-15.14.tar.bz2 postgresql-15.14.tar.bz2.sha256 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql15.spec ++++++ --- /var/tmp/diff_new_pack.7f4zuy/_old 2025-08-15 21:53:48.608485316 +0200 +++ /var/tmp/diff_new_pack.7f4zuy/_new 2025-08-15 21:53:48.608485316 +0200 @@ -1,7 +1,7 @@ # # spec file for package postgresql15 # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2025 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,7 +16,7 @@ # -%define pgversion 15.13 +%define pgversion 15.14 %define pgmajor 15 %define buildlibs 0 %define tarversion %{pgversion} ++++++ postgresql-15.13.tar.bz2 -> postgresql-15.14.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/postgresql15/postgresql-15.13.tar.bz2 /work/SRC/openSUSE:Factory/.postgresql15.new.1085/postgresql-15.14.tar.bz2 differ: char 11, line 1 ++++++ postgresql-15.13.tar.bz2.sha256 -> postgresql-15.14.tar.bz2.sha256 ++++++ --- /work/SRC/openSUSE:Factory/postgresql15/postgresql-15.13.tar.bz2.sha256 2025-05-20 09:37:20.171377396 +0200 +++ /work/SRC/openSUSE:Factory/.postgresql15.new.1085/postgresql-15.14.tar.bz2.sha256 2025-08-15 21:53:47.860454211 +0200 @@ -1 +1 @@ -4f62e133d22ea08a0401b0840920e26698644d01a80c34341fb732dd0a90ca5d postgresql-15.13.tar.bz2 +06dd75d305cd3870ee62b3932e661c624543eaf9ae2ba37cdec0a4f8edd051d2 postgresql-15.14.tar.bz2
