Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package postgresql16 for openSUSE:Factory checked in at 2026-05-18 17:49:12 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/postgresql16 (Old) and /work/SRC/openSUSE:Factory/.postgresql16.new.1966 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "postgresql16" Mon May 18 17:49:12 2026 rev:24 rq:1353817 version:16.14 Changes: -------- --- /work/SRC/openSUSE:Factory/postgresql16/postgresql16.changes 2026-05-05 15:17:56.161462400 +0200 +++ /work/SRC/openSUSE:Factory/.postgresql16.new.1966/postgresql16.changes 2026-05-18 17:50:23.842205267 +0200 @@ -1,0 +2,24 @@ +Wed May 13 08:28:21 UTC 2026 - Reinhard Max <[email protected]> + +- Update to version 16.13: + * bsc#1265172, CVE-2026-6472: ensure the user has CREATE + privilege on the schema specified + * bsc#1265173, CVE-2026-6473: integer overflows in + memory-allocation calculations + * bsc#1265174, CVE-2026-6474: Guard against malicious time zone + names + * bsc#1265175, CVE-2026-6475: Prevent path traversal in + pg_basebackup and pg_rewind + * bsc#1265177, CVE-2026-6477: Mark PQfn() as unsafe, and avoid + using it within libpq + * bsc#1265178, CVE-2026-6478: Use timing-safe string comparisons + in authentication code + * bsc#1265179, CVE-2026-6479: Prevent unbounded recursion while + processing startup packets + * bsc#1265181, CVE-2026-6637: Prevent SQL injection and buffer + overruns in contrib/spi + * bsc#1265182, CVE-2026-6638: Properly quote object names in + logical replication origin checks + * https://www.postgresql.org/docs/release/16.13/ + +------------------------------------------------------------------- Old: ---- postgresql-16.13.tar.bz2 postgresql-16.13.tar.bz2.sha256 New: ---- postgresql-16.14.tar.bz2 postgresql-16.14.tar.bz2.sha256 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql16.spec ++++++ --- /var/tmp/diff_new_pack.yps0Vm/_old 2026-05-18 17:50:25.110257790 +0200 +++ /var/tmp/diff_new_pack.yps0Vm/_new 2026-05-18 17:50:25.114257956 +0200 @@ -17,7 +17,7 @@ %define pgmajor 16 -%define pgminor 13 +%define pgminor 14 ### CUT HERE ### %define pgname postgresql%pgmajor ++++++ postgresql-16.13.tar.bz2 -> postgresql-16.14.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/postgresql16/postgresql-16.13.tar.bz2 /work/SRC/openSUSE:Factory/.postgresql16.new.1966/postgresql-16.14.tar.bz2 differ: char 11, line 1 ++++++ postgresql-16.13.tar.bz2.sha256 -> postgresql-16.14.tar.bz2.sha256 ++++++ --- /work/SRC/openSUSE:Factory/postgresql16/postgresql-16.13.tar.bz2.sha256 2026-03-02 18:46:59.149020661 +0100 +++ /work/SRC/openSUSE:Factory/.postgresql16.new.1966/postgresql-16.14.tar.bz2.sha256 2026-05-18 17:50:23.822204438 +0200 @@ -1 +1 @@ -dc2ddbbd245c0265a689408e3d2f2f3f9ba2da96bd19318214b313cdd9797287 postgresql-16.13.tar.bz2 +f6d077142737920858ce958ccdb75c6ee137a63b5b0853c70693d401ac7e3471 postgresql-16.14.tar.bz2
