All of lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
@ 2019-08-09 15:59 Bernd Kuhls
  2019-08-09 20:06 ` Thomas Petazzoni
  2019-09-02 11:15 ` Peter Korsgaard
  0 siblings, 2 replies; 7+ messages in thread
From: Bernd Kuhls @ 2019-08-09 15:59 UTC (permalink / raw)
  To: buildroot

Release notes: https://www.postgresql.org/about/news/1960/

Switch POSTGRESQL_SITE to https.

Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
---
 package/postgresql/postgresql.hash | 8 ++++----
 package/postgresql/postgresql.mk   | 4 ++--
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/package/postgresql/postgresql.hash b/package/postgresql/postgresql.hash
index d70ed7428d..7a427e629e 100644
--- a/package/postgresql/postgresql.hash
+++ b/package/postgresql/postgresql.hash
@@ -1,7 +1,7 @@
-# From https://ftp.postgresql.org/pub/source/v11.4/postgresql-11.4.tar.bz2.md5
-md5 dab5eed8a5f9204bf2f03a209eead4c3  postgresql-11.4.tar.bz2
-# From https://ftp.postgresql.org/pub/source/v11.4/postgresql-11.4.tar.bz2.sha256
-sha256 02802ddffd1590805beddd1e464dd28a46a41a5f1e1df04bab4f46663195cc8b  postgresql-11.4.tar.bz2
+# From https://ftp.postgresql.org/pub/source/v11.5/postgresql-11.5.tar.bz2.md5
+md5 580da94f6d85046ff2a228785ab2cc89  postgresql-11.5.tar.bz2
+# From https://ftp.postgresql.org/pub/source/v11.5/postgresql-11.5.tar.bz2.sha256
+sha256 7fdf23060bfc715144cbf2696cf05b0fa284ad3eb21f0c378591c6bca99ad180  postgresql-11.5.tar.bz2
 
 # License file, Locally calculated
 sha256	c4c86d683970b22b9fab53320ee1b3a30ef4e8223122b4fb6be53ea62ecee8b3  COPYRIGHT
diff --git a/package/postgresql/postgresql.mk b/package/postgresql/postgresql.mk
index ae4b525a6e..6ce8b3b6ce 100644
--- a/package/postgresql/postgresql.mk
+++ b/package/postgresql/postgresql.mk
@@ -4,9 +4,9 @@
 #
 ################################################################################
 
-POSTGRESQL_VERSION = 11.4
+POSTGRESQL_VERSION = 11.5
 POSTGRESQL_SOURCE = postgresql-$(POSTGRESQL_VERSION).tar.bz2
-POSTGRESQL_SITE = http://ftp.postgresql.org/pub/source/v$(POSTGRESQL_VERSION)
+POSTGRESQL_SITE = https://ftp.postgresql.org/pub/source/v$(POSTGRESQL_VERSION)
 POSTGRESQL_LICENSE = PostgreSQL
 POSTGRESQL_LICENSE_FILES = COPYRIGHT
 POSTGRESQL_INSTALL_STAGING = YES
-- 
2.20.1

^ permalink raw reply related	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-08-09 15:59 [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5 Bernd Kuhls
@ 2019-08-09 20:06 ` Thomas Petazzoni
  2019-09-02 11:15 ` Peter Korsgaard
  1 sibling, 0 replies; 7+ messages in thread
From: Thomas Petazzoni @ 2019-08-09 20:06 UTC (permalink / raw)
  To: buildroot

On Fri,  9 Aug 2019 17:59:41 +0200
Bernd Kuhls <bernd.kuhls@t-online.de> wrote:

> Release notes: https://www.postgresql.org/about/news/1960/
> 
> Switch POSTGRESQL_SITE to https.
> 
> Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.
> 
> Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
> ---
>  package/postgresql/postgresql.hash | 8 ++++----
>  package/postgresql/postgresql.mk   | 4 ++--
>  2 files changed, 6 insertions(+), 6 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com

^ permalink raw reply	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-08-09 15:59 [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5 Bernd Kuhls
  2019-08-09 20:06 ` Thomas Petazzoni
@ 2019-09-02 11:15 ` Peter Korsgaard
  2019-09-02 13:52   ` Baruch Siach
  1 sibling, 1 reply; 7+ messages in thread
From: Peter Korsgaard @ 2019-09-02 11:15 UTC (permalink / raw)
  To: buildroot

>>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:

 > Release notes: https://www.postgresql.org/about/news/1960/
 > Switch POSTGRESQL_SITE to https.

 > Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.

 > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>

Committed to 2019.02.x and 2019.05.x, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-09-02 11:15 ` Peter Korsgaard
@ 2019-09-02 13:52   ` Baruch Siach
  2019-09-02 16:44     ` Peter Korsgaard
  0 siblings, 1 reply; 7+ messages in thread
From: Baruch Siach @ 2019-09-02 13:52 UTC (permalink / raw)
  To: buildroot

Hi Peter,

On Mon, Sep 02, 2019 at 01:15:09PM +0200, Peter Korsgaard wrote:
> >>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
> 
>  > Release notes: https://www.postgresql.org/about/news/1960/
>  > Switch POSTGRESQL_SITE to https.
> 
>  > Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.
> 
>  > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
> 
> Committed to 2019.02.x and 2019.05.x, thanks.

Not in 2019.05.x as of 5d77d83bd3db.

baruch

-- 
     http://baruch.siach.name/blog/                  ~. .~   Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
   - baruch at tkos.co.il - tel: +972.2.679.5364, http://www.tkos.co.il -

^ permalink raw reply	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-09-02 13:52   ` Baruch Siach
@ 2019-09-02 16:44     ` Peter Korsgaard
  2019-09-02 18:00       ` Baruch Siach
  0 siblings, 1 reply; 7+ messages in thread
From: Peter Korsgaard @ 2019-09-02 16:44 UTC (permalink / raw)
  To: buildroot

>>>>> "Baruch" == Baruch Siach <baruch@tkos.co.il> writes:

 > Hi Peter,
 > On Mon, Sep 02, 2019 at 01:15:09PM +0200, Peter Korsgaard wrote:
 >> >>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
 >> 
 >> > Release notes: https://www.postgresql.org/about/news/1960/
 >> > Switch POSTGRESQL_SITE to https.
 >> 
 >> > Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.
 >> 
 >> > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
 >> 
 >> Committed to 2019.02.x and 2019.05.x, thanks.

 > Not in 2019.05.x as of 5d77d83bd3db.

Sorry, I didn't push right away as I was considering if the wpewebkit
patches were worthwhile to backport for 2019.05.x.

I've pushed now.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-09-02 16:44     ` Peter Korsgaard
@ 2019-09-02 18:00       ` Baruch Siach
  2019-09-02 20:18         ` Peter Korsgaard
  0 siblings, 1 reply; 7+ messages in thread
From: Baruch Siach @ 2019-09-02 18:00 UTC (permalink / raw)
  To: buildroot

Hi Peter,

On Mon, Sep 02 2019, Peter Korsgaard wrote:
>>>>>> "Baruch" == Baruch Siach <baruch@tkos.co.il> writes:
>  > On Mon, Sep 02, 2019 at 01:15:09PM +0200, Peter Korsgaard wrote:
>  >> >>>>> "Bernd" == Bernd Kuhls <bernd.kuhls@t-online.de> writes:
>  >>
>  >> > Release notes: https://www.postgresql.org/about/news/1960/
>  >> > Switch POSTGRESQL_SITE to https.
>  >>
>  >> > Fixes CVE-2019-10208, CVE-2019-10209, CVE-2019-10210 & CVE-2019-10211.
>  >>
>  >> > Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
>  >>
>  >> Committed to 2019.02.x and 2019.05.x, thanks.
>
>  > Not in 2019.05.x as of 5d77d83bd3db.
>
> Sorry, I didn't push right away as I was considering if the wpewebkit
> patches were worthwhile to backport for 2019.05.x.
>
> I've pushed now.

But this postgresql bump is still not in 2019.05.x, which is now at
a236e8fb3647.

baruch

--
     http://baruch.siach.name/blog/                  ~. .~   Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
   - baruch at tkos.co.il - tel: +972.52.368.4656, http://www.tkos.co.il -

^ permalink raw reply	[flat|nested] 7+ messages in thread
* [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5
  2019-09-02 18:00       ` Baruch Siach
@ 2019-09-02 20:18         ` Peter Korsgaard
  0 siblings, 0 replies; 7+ messages in thread
From: Peter Korsgaard @ 2019-09-02 20:18 UTC (permalink / raw)
  To: buildroot

>>>>> "Baruch" == Baruch Siach <baruch@tkos.co.il> writes:

Hi,

 >> > Not in 2019.05.x as of 5d77d83bd3db.
 >> 
 >> Sorry, I didn't push right away as I was considering if the wpewebkit
 >> patches were worthwhile to backport for 2019.05.x.
 >> 
 >> I've pushed now.

 > But this postgresql bump is still not in 2019.05.x, which is now at
 > a236e8fb3647.

Hmm, you are right. Fixed now, thanks!

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 7+ messages in thread
end of thread, other threads:[~2019-09-02 20:18 UTC | newest]

Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-08-09 15:59 [Buildroot] [PATCH 1/1] package/postgresql: security bump version to 11.5 Bernd Kuhls
2019-08-09 20:06 ` Thomas Petazzoni
2019-09-02 11:15 ` Peter Korsgaard
2019-09-02 13:52   ` Baruch Siach
2019-09-02 16:44     ` Peter Korsgaard
2019-09-02 18:00       ` Baruch Siach
2019-09-02 20:18         ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.