IP4R is a PostgreSQL extension which supports 6 data types allowing
you to store IPv4 & IPv6 addresses in a PostgreSQL table:
ip4 - a single IPv4 address
ip4r - an arbitrary range of IPv4 addresses
ip6 - a single IPv6 address
ip6r - an arbitrary range of IPv6 addresses
ipaddress - a single IPv4 or IPv6 address
iprange - an arbitrary range of IPv4 or IPv6 addresses
While PostgreSQL already has builtin types 'inet' and 'cidr', the
authors of this module found that they had a number of requirements
that were not addressed by the builtin types.
Essentially a bugfix release. Biggest issue is :
BUGFIX: vmagent[2]: properly process passwords and secrets specified
in the file pointed by -promscrape.config command-line flag. All the
passwords and secrets were mistakenly replaced with <secret> string
in v1.77.0.
Changelog at https://github.com/VictoriaMetrics/VictoriaMetrics/releases/tag/v1.77.1
see https://sqlite.org/releaselog/3_38_3.html
"Fix a case of the query planner be overly aggressive with optimizing
automatic-index and Bloom-filter construction, using inappropriate ON
clause terms to restrict the size of the automatic-index or Bloom
filter, and resulting in missing rows in the output."
This fixes:
(CVE-2022-24736) An attacker attempting to load a specially crafted
Lua script can cause NULL pointer dereference which will result with
a crash of the redis-server process. This issue affects all versions
of Redis.
(CVE-2022-24735) By exploiting weaknesses in the Lua script
execution environment, an attacker with access to Redis can inject
Lua code that will execute with the (potentially higher) privileges
of another Redis user.
ok tb
the changelog list various bugfixes and improvements, but it also fixes
the error
/usr/local/share/lua/5.3/DBI.lua:31: attempt to call a nil value (field
'maxn'
when running the lua53 flavor (e.g. when using luadbi for prosody'
mod_storage_sql)
ok sthen@
or strongly suspected to support at least 8.0. (7.4 is currently on security
support only, and that finishes in November, so I intend to switch the "ports
default" version to 8.0).
some of these ports _may_ work with 8.0 already, some have pull requests or
support in newer upstream code (not always in a release), others definitely
need 7.4.
uses a different name or a subdirectory for the file.
Adjust some ports to use it: p5-DBI (different name), p5-Template (xs
subdirectory). There are others that could use this.
OK bluhm@
