Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package postgresql16 for openSUSE:Factory checked in at 2024-02-09 23:51:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/postgresql16 (Old) and /work/SRC/openSUSE:Factory/.postgresql16.new.1815 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "postgresql16" Fri Feb 9 23:51:50 2024 rev:5 rq:1145268 version:16.2 Changes: -------- --- /work/SRC/openSUSE:Factory/postgresql16/postgresql16.changes 2023-11-10 12:29:12.583390932 +0100 +++ /work/SRC/openSUSE:Factory/.postgresql16.new.1815/postgresql16.changes 2024-02-09 23:52:01.654331842 +0100 @@ -1,0 +2,18 @@ +Thu Feb 8 13:22:49 UTC 2024 - Reinhard Max <m...@suse.com> + +- Upgrade to 16.2: + * bsc#1219679, CVE-2024-0985: Tighten security restrictions + within REFRESH MATERIALIZED VIEW CONCURRENTLY. + One step of a concurrent refresh command was run under weak + security restrictions. If a materialized view's owner could + persuade a superuser or other high-privileged user to perform a + concurrent refresh on that view, the view's owner could control + code executed with the privileges of the user running REFRESH. + Fix things so that all user-determined code is run as the + view's owner, as expected + * If you use GIN indexes, you may need to reindex after updating + to this release. + * LLVM 18 is now supported. + * https://www.postgresql.org/docs/release/16.2/ + +------------------------------------------------------------------- @@ -30 +47,0 @@ - * https://www.postgresql.org/about/news/2749 Old: ---- postgresql-16.1.tar.bz2 postgresql-16.1.tar.bz2.sha256 New: ---- postgresql-16.2.tar.bz2 postgresql-16.2.tar.bz2.sha256 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql16.spec ++++++ --- /var/tmp/diff_new_pack.8dtfwi/_old 2024-02-09 23:52:03.662404202 +0100 +++ /var/tmp/diff_new_pack.8dtfwi/_new 2024-02-09 23:52:03.666404346 +0100 @@ -1,7 +1,7 @@ # -# spec file +# spec file for package postgresql16 # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,11 +16,11 @@ # -%define pgversion 16.1 +%define pgversion 16.2 %define pgmajor 16 %define buildlibs 1 %define tarversion %{pgversion} -%define latest_supported_llvm_ver 17 +%define latest_supported_llvm_ver 18 ### CUT HERE ### %define pgname postgresql%pgmajor @@ -187,7 +187,7 @@ Provides: postgresql-implementation = %version-%release Requires: %libpq >= %version Requires(post): postgresql-noarch >= %pgmajor -Requires(postun):postgresql-noarch >= %pgmajor +Requires(postun): postgresql-noarch >= %pgmajor # At this point we changed the package layout on SLE and conflict with # older releases to get a clean cut. Conflicts: postgresql-noarch < 12.0.1 @@ -277,7 +277,7 @@ Provides: postgresql-server-devel = %version-%release Provides: postgresql-server-devel-implementation = %version-%release Requires(post): postgresql-server-devel-noarch >= %pgmajor -Requires(postun):postgresql-server-devel-noarch >= %pgmajor +Requires(postun): postgresql-server-devel-noarch >= %pgmajor Requires: %pgname-devel = %version Requires: %pgname-server = %version-%release # Installation of postgresql??-devel is exclusive @@ -335,10 +335,10 @@ Provides: postgresql-server-implementation = %version-%release Requires: %libpq >= %version Requires(pre): postgresql-server-noarch >= %pgmajor -Requires(preun):postgresql-server-noarch >= %pgmajor -Requires(postun):postgresql-server-noarch >= %pgmajor +Requires(preun): postgresql-server-noarch >= %pgmajor +Requires(postun): postgresql-server-noarch >= %pgmajor Requires(post): postgresql-noarch >= %pgmajor -Requires(postun):postgresql-noarch >= %pgmajor +Requires(postun): postgresql-noarch >= %pgmajor %description server PostgreSQL is an advanced object-relational database management system @@ -377,7 +377,7 @@ %if %{with llvm} Requires: %pgname-llvmjit = %version Requires(post): postgresql-llvmjit-devel-noarch >= %pgmajor -Requires(postun):postgresql-llvmjit-devel-noarch >= %pgmajor +Requires(postun): postgresql-llvmjit-devel-noarch >= %pgmajor %requires_file %_bindir/llc %requires_file %_bindir/clang %endif ++++++ postgresql-16.1.tar.bz2 -> postgresql-16.2.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/postgresql16/postgresql-16.1.tar.bz2 /work/SRC/openSUSE:Factory/.postgresql16.new.1815/postgresql-16.2.tar.bz2 differ: char 11, line 1 ++++++ postgresql-16.1.tar.bz2.sha256 -> postgresql-16.2.tar.bz2.sha256 ++++++ --- /work/SRC/openSUSE:Factory/postgresql16/postgresql-16.1.tar.bz2.sha256 2023-11-10 12:29:12.571390491 +0100 +++ /work/SRC/openSUSE:Factory/.postgresql16.new.1815/postgresql-16.2.tar.bz2.sha256 2024-02-09 23:52:01.586329391 +0100 @@ -1 +1 @@ -ce3c4d85d19b0121fe0d3f8ef1fa601f71989e86f8a66f7dc3ad546dd5564fec postgresql-16.1.tar.bz2 +446e88294dbc2c9085ab4b7061a646fa604b4bec03521d5ea671c2e5ad9b2952 postgresql-16.2.tar.bz2
