CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2026/02/26 23:38:52
Modified files:
databases/postgresql: Makefile distinfo
databases/postgresql/pkg: PLIST-docs
Log message:
Update to PostgreSQL 18.3
Fixes:
CVE-2026-2003: PostgreSQL oidvector discloses a few bytes of memory
CVE-2026-2004: PostgreSQL intarray missing validation of type of input
to selectivity estimator executes arbitrary code
CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes
arbitrary code
CVE-2026-2006: PostgreSQL missing validation of multibyte character
length executes arbitrary code
CVE-2026-2007: PostgreSQL pg_trgm heap buffer overflow writes pattern
onto server memory
OK landry@
