Hello community, here is the log from the commit of package postgresql10 for openSUSE:Factory checked in at 2018-05-23 16:07:07 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/postgresql10 (Old) and /work/SRC/openSUSE:Factory/.postgresql10.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "postgresql10" Wed May 23 16:07:07 2018 rev:7 rq:610081 version:10.4 Changes: -------- --- /work/SRC/openSUSE:Factory/postgresql10/postgresql10.changes 2018-05-07 14:52:15.528697994 +0200 +++ /work/SRC/openSUSE:Factory/.postgresql10.new/postgresql10.changes 2018-05-23 16:07:11.130193289 +0200 @@ -1,0 +2,36 @@ +Tue May 8 12:50:23 UTC 2018 - [email protected] + +- Update to 10.4: + https://www.postgresql.org/about/news/1851/ + https://www.postgresql.org/docs/current/static/release-10-4.html + + A dump/restore is not required for those running 10.X. + + However, if you use the adminpack extension, you should update + it as per the first changelog entry below. + + Also, if the function marking mistakes mentioned in the second + and third changelog entries below affect you, you will want to + take steps to correct your database catalogs. + + * CVE-2018-1115, bsc#1091610: Remove public execute privilege + from contrib/adminpack's pg_logfile_rotate() function + + pg_logfile_rotate() is a deprecated wrapper for the core + function pg_rotate_logfile(). When that function was changed + to rely on SQL privileges for access control rather than a + hard-coded superuser check, pg_logfile_rotate() should have + been updated as well, but the need for this was missed. Hence, + if adminpack is installed, any user could request a logfile + rotation, creating a minor security issue. + + After installing this update, administrators should update + adminpack by performing ALTER EXTENSION adminpack UPDATE in + each database in which adminpack is installed. + + * Fix incorrect volatility markings on a few built-in functions + + * Fix incorrect parallel-safety markings on a few built-in + functions. + +------------------------------------------------------------------- Old: ---- postgresql-10.3.tar.bz2 New: ---- postgresql-10.4.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ postgresql10.spec ++++++ --- /var/tmp/diff_new_pack.Giqsen/_old 2018-05-23 16:07:12.310150069 +0200 +++ /var/tmp/diff_new_pack.Giqsen/_new 2018-05-23 16:07:12.314149923 +0200 @@ -96,7 +96,7 @@ Summary: Basic Clients and Utilities for PostgreSQL License: PostgreSQL Group: Productivity/Databases/Tools -Version: 10.3 +Version: 10.4 Release: 0 Source0: https://ftp.postgresql.org/pub/source/v%{version}/postgresql-%{version}.tar.bz2 Source1: baselibs.conf ++++++ postgresql-10.3.tar.bz2 -> postgresql-10.4.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/postgresql10/postgresql-10.3.tar.bz2 /work/SRC/openSUSE:Factory/.postgresql10.new/postgresql-10.4.tar.bz2 differ: char 11, line 1
