summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorPeter Korsgaard <peter@korsgaard.com>2018-11-08 19:54:42 (GMT)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>2018-11-08 19:55:19 (GMT)
commitf680e57e48c8e1f909b781a6d1789e99a6457db8 (patch)
tree88b07fe7c8256bd01114afb7ebaa647273ad52ce
parent745132abc05e9cb81b0015a1303a602437f0a06f (diff)
downloadbuildroot-f680e57e48c8e1f909b781a6d1789e99a6457db8.tar.gz
buildroot-f680e57e48c8e1f909b781a6d1789e99a6457db8.tar.bz2
postgresql: security bump to version 11.1
Fixes the following security issue: CVE-2018-16850: SQL injection in pg_upgrade and pg_dump, via CREATE TRIGGER ... REFERENCING For more details, see the advisory: https://www.postgresql.org/about/news/1905/ Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
-rw-r--r--package/postgresql/postgresql.hash8
-rw-r--r--package/postgresql/postgresql.mk2
2 files changed, 5 insertions, 5 deletions
diff --git a/package/postgresql/postgresql.hash b/package/postgresql/postgresql.hash
index 40c128c..28d4a98 100644
--- a/package/postgresql/postgresql.hash
+++ b/package/postgresql/postgresql.hash
@@ -1,7 +1,7 @@
-# From https://ftp.postgresql.org/pub/source/v11.0/postgresql-11.0.tar.bz2.md5
-md5 338ede84c0443db02ff6e8c4c8cbc5e9 postgresql-11.0.tar.bz2
-# From https://ftp.postgresql.org/pub/source/v11.0/postgresql-11.0.tar.bz2.sha256
-sha256 bf9bba03d0c3902c188af12e454b35343c4a9bf9e377ec2fe50132efb44ef36b postgresql-11.0.tar.bz2
+# From https://ftp.postgresql.org/pub/source/v11.1/postgresql-11.1.tar.bz2.md5
+md5 5e45f6d5b859cc76b5d62f1e328e9711 postgresql-11.1.tar.bz2
+# From https://ftp.postgresql.org/pub/source/v11.1/postgresql-11.1.tar.bz2.sha256
+sha256 90815e812874831e9a4bf6e1136bf73bc2c5a0464ef142e2dfea40cda206db08 postgresql-11.1.tar.bz2
# License file, Locally calculated
sha256 24cfc70cf16b3a23242c49ffce39510683bdd48cbedb8a46fe03976ee5f5c21e COPYRIGHT
diff --git a/package/postgresql/postgresql.mk b/package/postgresql/postgresql.mk
index 2754526..c4ba0da 100644
--- a/package/postgresql/postgresql.mk
+++ b/package/postgresql/postgresql.mk
@@ -4,7 +4,7 @@
#
################################################################################
-POSTGRESQL_VERSION = 11.0
+POSTGRESQL_VERSION = 11.1
POSTGRESQL_SOURCE = postgresql-$(POSTGRESQL_VERSION).tar.bz2
POSTGRESQL_SITE = http://ftp.postgresql.org/pub/source/v$(POSTGRESQL_VERSION)
POSTGRESQL_LICENSE = PostgreSQL