databases/pgpool-II-40: Upgrade from 4.0.5 to 4.0.6
Changelog:
Enhancements:
- Doc: Update "Pgpool-II + Watchdog Setup Example" to support PostgreSQL 12. (Bo Peng)
- Import some of memory manager debug facilities from PostgreSQL. (Tatsuo Ishii)
- Use pg_get_expr() instead of pg_attrdef.adsrc to support for PostgreSQL 12. (Bo Peng)
- Enhance shutdown script of pgpool_setup. (Tatsuo Ishii)
- Make shutdownall to wait for completion of shutdown of Pgpool-II.
- If environment variable CHECK_TIME_WAIT is set to true, use netstat command to confirm usage of the TCP/IP port while executing shutdown script.
- Doc: add description to pg_md5 man page how to show pool_passwd hashed string. (Tatsuo Ishii)
- Doc: add general description about failover. (Tatsuo Ishii)
- Deal pgpool_adm extension with PostgreSQL 12. (Tatsuo Ishii)
Bug fixes:
- Test: Fix test failure of extended-query-test when disable_load_balance_on_write = off/transaction/always. (Tatsuo Ishii)
- Fix "unable to bind. cannot get parse message" error. (bug 531) (Tatsuo Ishii)
- Fix online-recovery is blocked after a child process exits abnormally with replication mode and watchdog. (bug 483) (Muhammad Usama)
- Fix for keep the backend health check running on quarantined nodes. (Muhammad Usama)
- Fix for no primary on standby pgpool when primary is quarantined on master. (Muhammad Usama)
- Fix watchdog_setup command mode option to work correctly. (Takuma Hoshiai)
- Fix pgpool_setup to produce correct follow master command. (Tatsuo Ishii)
- Fix query cache module so that it checks oid array's bound. (Tatsuo Ishii)
- Fix off-by-one error in query cache module. (Tatsuo Ishii)
- Allow health check process to reload. (Tatsuo Ishii)
- Fix sefault when query cache is enabled. (bug 525) (Tatsuo Ishii)
- Down grade LOG "checking zapping sent message ..." to DEBUG5. (Tatsuo Ishii)
- Fix segfault when samenet is specified in pool_hba.conf. (Tatsuo Ishii)
- Doc: Fix documentation mistakes in follow_master.sh script and typos. (Bo Peng)
- Fix health check process is not shutting down in certain cases. (Tatsuo Ishii)
- Fix to deal with backslashes according to the config of standard_conforming_strings in native replication mode. (bug 467) (Bo Peng)
- Fix compile error on FreeBSD. (bug 512, bug 519) (Bo Peng)
- Fix memory leaks. (Tatsuo Ishii)
- Make failover in progress check more aggressively to avoid potential segfault. (Tatsuo Ishii)
Approved by: ports-secteam (joneum)
databases/pgpool-II-37: Upgrade from 3.7.10 to 3.7.11
Changelog:
Enhancements:
- Import some of memory manager debug facilities from PostgreSQL. (Tatsuo Ishii)
- Use pg_get_expr() instead of pg_attrdef.adsrc to support for PostgreSQL 12. (Bo Peng)
- Enhance shutdown script of pgpool_setup. (Tatsuo Ishii)
- Make shutdownall to wait for completion of shutdown of Pgpool-II.
- If environment variable CHECK_TIME_WAIT is set to true, use netstat command to confirm usage of the TCP/IP port while executing shutdown script.
- Doc: add description to pg_md5 man page how to show pool_passwd hashed string. (Tatsuo Ishii)
- Doc: add general description about failover. (Tatsuo Ishii)
- Deal pgpool_adm extension with PostgreSQL 12. (Tatsuo Ishii)
Bug fixes:
- Fix "unable to bind. cannot get parse message" error. (bug 531) (Tatsuo Ishii)
- Fix online-recovery is blocked after a child process exits abnormally with replication mode and watchdog. (bug 483) (Muhammad Usama)
- Fix for keep the backend health check running on quarantined nodes. (Muhammad Usama)
- Fix for no primary on standby pgpool when primary is quarantined on master. (Muhammad Usama)
- Fix watchdog_setup command mode option to work correctly. (Takuma Hoshiai)
- Fix pgpool_setup to produce correct follow master command. (Tatsuo Ishii)
- Fix query cache module so that it checks oid array's bound. (Tatsuo Ishii)
- Fix off-by-one error in query cache module. (Tatsuo Ishii)
- Allow health check process to reload. (Tatsuo Ishii)
- Fix sefault when query cache is enabled. (bug 525) (Tatsuo Ishii)
- Down grade LOG "checking zapping sent message ..." to DEBUG5. (Tatsuo Ishii)
- Fix segfault when samenet is specified in pool_hba.conf. (Tatsuo Ishii)
- Doc: Fix documentation mistakes in follow_master.sh script and typos. (Bo Peng)
- Fix health check process is not shutting down in certain cases. (Tatsuo Ishii)
- Fix to deal with backslashes according to the config of standard_conforming_strings in native replication mode. (bug 467) (Bo Peng)
- Fix compile error on FreeBSD. (bug 512, bug 519) (Bo Peng)
- Fix memory leaks. (Tatsuo Ishii)
- Make failover in progress check more aggressively to avoid potential segfault. (Tatsuo Ishii)
Approved by: ports-secteam (joneum)
databases/pgpool-II-36: Upgrade from 3.6.17 to 3.6.18
Changelog:
Enhancements:
- Import some of memory manager debug facilities from PostgreSQL. (Tatsuo Ishii)
- Use pg_get_expr() instead of pg_attrdef.adsrc to support for PostgreSQL 12. (Bo Peng)
- Enhance shutdown script of pgpool_setup. (Tatsuo Ishii)
- Make shutdownall to wait for completion of shutdown of Pgpool-II.
- If environment variable CHECK_TIME_WAIT is set to true, use netstat command to confirm usage of the TCP/IP port while executing shutdown script.
- Doc: add description to pg_md5 man page how to show pool_passwd hashed string. (Tatsuo Ishii)
- Doc: add general description about failover. (Tatsuo Ishii)
- Deal pgpool_adm extension with PostgreSQL 12. (Tatsuo Ishii)
Bug fixes:
- Fix "unable to bind. cannot get parse message" error. (bug 531) (Tatsuo Ishii)
- Fix online-recovery is blocked after a child process exits abnormally with replication mode and watchdog. (bug 483) (Muhammad Usama)
- Fix pgpool_setup to produce correct follow master command. (Tatsuo Ishii)
- Fix query cache module so that it checks oid array's bound. (Tatsuo Ishii)
- Fix off-by-one error in query cache module. (Tatsuo Ishii)
- Fix sefault when query cache is enabled. (bug 525) (Tatsuo Ishii)
- Down grade LOG "checking zapping sent message ..." to DEBUG5. (Tatsuo Ishii)
- Fix segfault when samenet is specified in pool_hba.conf. (Tatsuo Ishii)
- Fix to deal with backslashes according to the config of standard_conforming_strings in native replication mode. (bug 467) (Bo Peng)
- Fix memory leaks. (Tatsuo Ishii)
- Make failover in progress check more aggressively to avoid potential segfault. (Tatsuo Ishii)
Approved by: ports-secteam (joneum)
databases/pgpool-II-35: Update from 3.5.21 to 3.5.22
Changelog:
Enhancements:
- Import some of memory manager debug facilities from PostgreSQL. (Tatsuo Ishii)
- Use pg_get_expr() instead of pg_attrdef.adsrc to support for PostgreSQL 12. (Bo Peng)
- Enhance shutdown script of pgpool_setup. (Tatsuo Ishii)
- Make shutdownall to wait for completion of shutdown of Pgpool-II.
- If environment variable CHECK_TIME_WAIT is set to true, use netstat command to confirm usage of the TCP/IP port while executing shutdown script.
- Deal pgpool_adm extension with PostgreSQL 12. (Tatsuo Ishii)
Bug fixes:
- Fix "unable to bind. cannot get parse message" error. (bug 531) (Tatsuo Ishii)
- Fix online-recovery is blocked after a child process exits abnormally with replication mode and watchdog. (bug 483) (Muhammad Usama)
- Fix pgpool_setup to produce correct follow master command. (Tatsuo Ishii)
- Fix query cache module so that it checks oid array's bound. (Tatsuo Ishii)
- Fix off-by-one error in query cache module. (Tatsuo Ishii)
- Fix sefault when query cache is enabled. (bug 525) (Tatsuo Ishii)
- Down grade LOG "checking zapping sent message ..." to DEBUG5. (Tatsuo Ishii)
- Fix segfault when samenet is specified in pool_hba.conf. (Tatsuo Ishii)
- Fix to deal with backslashes according to the config of standard_conforming_strings in native replication mode. (bug 467) (Bo Peng)
- Fix memory leaks. (Tatsuo Ishii)
- Make failover in progress check more aggressively to avoid potential segfault. (Tatsuo Ishii)
Approved by: ports-secteam (joneum)
databases/pgpool: Update from 3.4.24 to 3.4.25
Changelog:
Enhancements:
- Import some of memory manager debug facilities from PostgreSQL. (Tatsuo Ishii)
- Use pg_get_expr() instead of pg_attrdef.adsrc to support for PostgreSQL 12. (Bo Peng)
- Enhance shutdown script of pgpool_setup. (Tatsuo Ishii)
- Make shutdownall to wait for completion of shutdown of Pgpool-II.
- If environment variable CHECK_TIME_WAIT is set to true, use netstat command to confirm usage of the TCP/IP port while executing shutdown script.
- Deal pgpool_adm extension with PostgreSQL 12. (Tatsuo Ishii)
Bug fixes:
- Fix pgpool_setup to produce correct follow master command. (Tatsuo Ishii)
- Fix query cache module so that it checks oid array's bound. (Tatsuo Ishii)
- Fix off-by-one error in query cache module. (Tatsuo Ishii)
- Fix segfault when samenet is specified in pool_hba.conf. (Tatsuo Ishii)
- Fix to deal with backslashes according to the config of standard_conforming_strings in native replication mode. (bug 467) (Bo Peng)
- Fix memory leaks. (Tatsuo Ishii)
Approved by: ports-secteam (joneum)
iThe PostgreSQL Global Development Group has released an update to all
supported versions of our database system, including 11.5, 10.10,
9.6.15, 9.5.19, and 9.4.24, as well as the third beta of PostgreSQL 12.
This release fixes two security issues in the PostgreSQL server, two
security issues found in one of the PostgreSQL Windows installers, and
over 40 bugs reported since the previous release.
Users should install these updates as soon as possible.
A Note on the PostgreSQL 12 Beta
================================
In the spirit of the open source PostgreSQL community, we strongly
encourage you to test the new features of PostgreSQL 12 in your database
systems to help us eliminate any bugs or other issues that may exist.
While we do not advise you to run PostgreSQL 12 Beta 3 in your
production environments, we encourage you to find ways to run your
typical application workloads against this beta release.
Your testing and feedback will help the community ensure that the
PostgreSQL 12 release upholds our standards of providing a stable,
reliable release of the world's most advanced open source relational
database.
Security Issues
===============
Two security vulnerabilities have been closed by this release:
* CVE-2019-10208: `TYPE` in `pg_temp` executes arbitrary SQL during
`SECURITY DEFINER` execution
Versions Affected: 9.4 - 11
Given a suitable `SECURITY DEFINER` function, an attacker can execute
arbitrary SQL under the identity of the function owner. An attack
requires `EXECUTE` permission on the function, which must itself contain
a function call having inexact argument type match. For example,
`length('foo'::varchar)` and `length('foo')` are inexact, while
`length('foo'::text)` is exact. As part of exploiting this
vulnerability, the attacker uses `CREATE DOMAIN` to create a type in a
`pg_temp` schema. The attack pattern and fix are similar to that for
CVE-2007-2138.
Writing `SECURITY DEFINER` functions continues to require following the
considerations noted in the documentation:
https://www.postgresql.org/docs/devel/sql-createfunction.html#SQL-CREATEFUNCTION-SECURITY
The PostgreSQL project thanks Tom Lane for reporting this problem.
* CVE-2019-10209: Memory disclosure in cross-type comparison for hashed
subplan
Versions Affected: 11
In a database containing hypothetical, user-defined hash equality operators, an
attacker could read arbitrary bytes of server memory. For an attack to become
possible, a superuser would need to create unusual operators. It is possible
for operators not purpose-crafted for attack to have the properties that enable
an attack, but we are not aware of specific examples.
The PostgreSQL project thanks Andreas Seltenreich for reporting this problem.
Approved by: ports-secteam@
databases/mysq56-{client, server}: Update to latest release 5.7.27
This update includes security fixes on issues that are
mentioned on upstream critical patch report.
Further info:
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html#AppendixMSQL
PR: 239271
Submitted by: Greg Veldman <freebsd@gregv.net>
Reported by: Markus Kohlmeyer <rootservice@gmail.com>
Sponsored by: Platform.sh
Approved by: ports-secteam (joneum)
databases/opendbviewer: Update to 1.1.1
* Rebase the patch for CMakeLists.txt that has changed its identation level
Changelog:
* Don't clear connection information if connection fails
* Fix icon
* Disable GUI console
PR: 239450
Submitted by: lbartoletti <lbartoletti@tuxfamily.org> (maintainer)
Approved by: ports-secteam (miwi)
Mark BROKEN on i386
../zdb/zdbpp.h:330:14: error: class member cannot be redeclared
void bind(int parameterIndex, time_t x) {
^
../zdb/zdbpp.h:318:14: note: previous definition is here
void bind(int parameterIndex, int x) {
^
Reported by: pkg-fallout
While I'm here:
* Add path to license file.
* Pet portclippy by grouping related variables together (USE_ and GO_).
Changelog:
https://github.com/oliver006/redis_exporter/releases/tag/v1.0.3
PR: 238823
Submitted by: Volodymyr Kostyrko <arcade@b1t.name> (maintainer)
Release 0.78.0:
core:
* Fix line annotation arrows for usage in dimensioning
* Handle Ink annots without an InkList but with an AP
* Fix typos preventing parsing of Movie start and duration
* Fix crash on malformed files
glib:
* Add poppler_document_create_dests_tree()
* Don't use the deprecated g_type_class_add_private()
* Document the differences between render() and render_for_printing()
* Fix introspection for poppler_document_new_from_data
* Don't create PopplerInputStream with length 0. Issue #414
* Document G_IO_ERROR as a possible error condition
* docs: Add index for API new in 0.78
build system:
* Fixes cross compilation of gir in Void Linux
* Add -Wshadow to the default warning flags
* install pkg-config pc files if pkg-config is found
PR: 238857
Exp-run by: antoine
Approved by: gnome (kwm, implicit)
This allows for port testing with lang/go-devel via GO_PORT, setting
up the Go build environment in a single place, and is step one in
simplifying Go ports that often define too complicated do-build
targets themselves.
USES=go gains new arguments 'run' to add lang/go to RUN_DEPENDS and
'no_targets' for ports with composite builds that call 'go' themselves
and do not need the do-build/do-install targets of USES=go.
PR: 238849
Submitted by: dg@syrec.org (also D20745)
Reviewed by: mat, tobik
Exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D20746
The PostgreSQL Global Development Group has released an update to all supported
versions of our database system, including 11.4, 10.9, 9.6.14, 9.5.18, and
9.4.23, as well as the second beta of PostgreSQL 12. This release fixes one
security issue and over 25 bugs since the previous cumulative update in May.
This release is made outside of the normal update release schedule as the
security vulnerability was determined to be critical enough to distribute the
fix as quickly as possible. Users who are running PostgreSQL 10, PostgreSQL 11,
or the PostgreSQL 12 beta should upgrade as soon as possible.
All other users should plan to apply this update at the next scheduled
downtime.
Release notes: https://www.postgresql.org/about/news/1949/
Security: 245629d4-991e-11e9-82aa-6cc21735f730
are unsafe by default, which is the main motivation why it was picked,
but not the very latest one) and synchronize the rest of the stack and
dependent ports with it, particularly:
- Update `devel/ocaml-ocamlbuild' to version 0.14.0 and unbreak,
register build dependency on all ports that require it (should
be part of USE_OCAML, but we do not want to make any Mk-related
changes the for time being)
- Update `devel/ocaml-camlp4' to version 4.05+2
- Update `devel/ocaml-camlp5' to version 7.07 (the project had
moved to GitHub)
- Mark `devel/ocaml-deriving-ocsigen' as BROKEN for now, it is
very outdated and requires quite a lot of work
- Update `x11-toolkits/ocaml-labltk' to version 8.06.3
PR: 218333
Exp-run by: antoine
