The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 9.5.2, 9.4.7, 9.3.12, 9.2.16, and 9.1.21. This release fixes two security issues and one index corruption issue in version 9.5. It also contains a variety of bug fixes for earlier versions. Users of PostgreSQL 9.5.0 or 9.5.1 should update as soon as possible.

This release closes security hole CVE-2016-2193, where a query plan might get reused for more than one ROLE in the same session. This could cause the wrong set of Row Level Security (RLS) policies to be used for the query.

The update also fixes CVE-2016-3065, a server crash bug triggered by using pageinspect with BRIN index pages. Since an attacker might be able to expose a few bytes of server memory, this crash is being treated as a security issue.

1 files changed, 1 insertions, 2 deletions

diff --git a/databases/postgresql92-plpython/Makefile b/databases/postgresql92-plpython/Makefile
index 6f2bc92671d..ad347eb659c 100644
--- a/databases/postgresql92-plpython/Makefile
+++ b/databases/postgresql92-plpython/Makefile
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.9 2016/03/05 11:28:15 jperkin Exp $
+# $NetBSD: Makefile,v 1.10 2016/04/09 12:51:46 adam Exp $
 
 PKGNAME=	${DISTNAME:C/-/92-plpython-/}
-PKGREVISION=	1
 COMMENT=	PL/Python procedural language for the PostgreSQL backend
 
 DEPENDS+=	postgresql92-server>=${PKGVERSION_NOREV}:../../databases/postgresql92-server