aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGravatar Adam Duskett <aduskett@gmail.com>2017-09-05 08:20:10 -0400
committerGravatar Peter Korsgaard <peter@korsgaard.com>2017-11-26 22:24:06 +0100
commitaa66d51954126b6471ad9e3b34083ebd76233ba3 (patch)
treeda3b3f2e19c046ccb2fd2074303ba3ad1e80ac77
parent8aadf3fdabe37ee00d900e5f0654ad44d57bf535 (diff)
downloadbuildroot-aa66d51954126b6471ad9e3b34083ebd76233ba3.tar.gz
buildroot-aa66d51954126b6471ad9e3b34083ebd76233ba3.tar.bz2
postgresql: security bump to version 9.6.5
Fixes the following security issues (9.6.4): CVE-2017-7546: Empty password accepted in some authentication methods CVE-2017-7547: The "pg_user_mappings" catalog view discloses passwords to users lacking server privileges CVE-2017-7548: lo_put() function ignores ACLs For more info, see https://www.postgresql.org/about/news/1772/ [Peter: extend commit message with security fixes info] Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 95e284bd2732390eb34cb72c798032fd7ac8920c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
-rw-r--r--package/postgresql/postgresql.hash4
-rw-r--r--package/postgresql/postgresql.mk2
2 files changed, 3 insertions, 3 deletions
diff --git a/package/postgresql/postgresql.hash b/package/postgresql/postgresql.hash
index c65edf71da..62ce9a7407 100644
--- a/package/postgresql/postgresql.hash
+++ b/package/postgresql/postgresql.hash
@@ -1,2 +1,2 @@
-# From https://ftp.postgresql.org/pub/source/v9.6.3/postgresql-9.6.3.tar.bz2.sha256
-sha256 1645b3736901f6d854e695a937389e68ff2066ce0cde9d73919d6ab7c995b9c6 postgresql-9.6.3.tar.bz2
+# From https://ftp.postgresql.org/pub/source/v9.6.5/postgresql-9.6.5.tar.bz2.sha256
+sha256 06da12a7e3dddeb803962af8309fa06da9d6989f49e22865335f0a14bad0744c postgresql-9.6.5.tar.bz2
diff --git a/package/postgresql/postgresql.mk b/package/postgresql/postgresql.mk
index 62b41cbeaa..7adb957cf0 100644
--- a/package/postgresql/postgresql.mk
+++ b/package/postgresql/postgresql.mk
@@ -4,7 +4,7 @@
#
################################################################################
-POSTGRESQL_VERSION = 9.6.3
+POSTGRESQL_VERSION = 9.6.5
POSTGRESQL_SOURCE = postgresql-$(POSTGRESQL_VERSION).tar.bz2
POSTGRESQL_SITE = http://ftp.postgresql.org/pub/source/v$(POSTGRESQL_VERSION)
POSTGRESQL_LICENSE = PostgreSQL