Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package postgresql17 for openSUSE:Factory checked in at 2026-05-18 17:49:14 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/postgresql17 (Old) and /work/SRC/openSUSE:Factory/.postgresql17.new.1966 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "postgresql17" Mon May 18 17:49:14 2026 rev:19 rq:1353818 version:17.10 Changes: -------- --- /work/SRC/openSUSE:Factory/postgresql17/postgresql17.changes 2026-05-05 15:17:55.125419441 +0200 +++ /work/SRC/openSUSE:Factory/.postgresql17.new.1966/postgresql17.changes 2026-05-18 17:50:26.070297555 +0200 @@ -1,0 +2,26 @@ +Wed May 13 08:26:21 UTC 2026 - Reinhard Max <[email protected]> + +- Update to version 17.10: + * bsc#1265172, CVE-2026-6472: ensure the user has CREATE + privilege on the schema specified + * bsc#1265173, CVE-2026-6473: integer overflows in + memory-allocation calculations + * bsc#1265174, CVE-2026-6474: Guard against malicious time zone + names + * bsc#1265175, CVE-2026-6475: Prevent path traversal in + pg_basebackup and pg_rewind + * bsc#1265176, CVE-2026-6476: Properly quote subscription names + in pg_createsubscriber + * bsc#1265177, CVE-2026-6477: Mark PQfn() as unsafe, and avoid + using it within libpq + * bsc#1265178, CVE-2026-6478: Use timing-safe string comparisons + in authentication code + * bsc#1265179, CVE-2026-6479: Prevent unbounded recursion while + processing startup packets + * bsc#1265181, CVE-2026-6637: Prevent SQL injection and buffer + overruns in contrib/spi + * bsc#1265182, CVE-2026-6638: Properly quote object names in + logical replication origin checks + * https://www.postgresql.org/docs/release/17.10/ + +------------------------------------------------------------------- Old: ---- postgresql-17.9.tar.bz2 postgresql-17.9.tar.bz2.sha256 New: ---- postgresql-17.10.tar.bz2 postgresql-17.10.tar.bz2.sha256 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql17.spec ++++++ --- /var/tmp/diff_new_pack.trEoIE/_old 2026-05-18 17:50:27.122341132 +0200 +++ /var/tmp/diff_new_pack.trEoIE/_new 2026-05-18 17:50:27.130341463 +0200 @@ -17,7 +17,7 @@ %define pgmajor 17 -%define pgminor 9 +%define pgminor 10 ### CUT HERE ### %define pgname postgresql%pgmajor ++++++ postgresql-17.9.tar.bz2 -> postgresql-17.10.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/postgresql17/postgresql-17.9.tar.bz2 /work/SRC/openSUSE:Factory/.postgresql17.new.1966/postgresql-17.10.tar.bz2 differ: char 11, line 1 ++++++ postgresql-17.9.tar.bz2.sha256 -> postgresql-17.10.tar.bz2.sha256 ++++++ --- /work/SRC/openSUSE:Factory/postgresql17/postgresql-17.9.tar.bz2.sha256 2026-03-02 18:47:03.057182554 +0100 +++ /work/SRC/openSUSE:Factory/.postgresql17.new.1966/postgresql-17.10.tar.bz2.sha256 2026-05-18 17:50:26.058297059 +0200 @@ -1 +1 @@ -3b9a62538a8da151e807a3ddb1198e8605f2032544d78f403ae883d27ecf1ee4 postgresql-17.9.tar.bz2 +078a03516dcdbdb705fecaf415ea3d13a956c589e46f09fed68a06fb00598c90 postgresql-17.10.tar.bz2
