The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 9.5.2, 9.4.7, 9.3.12, 9.2.16, and 9.1.21. This release fixes two security issues and one index corruption issue in version 9.5. It also contains a variety of bug fixes for earlier versions. Users of PostgreSQL 9.5.0 or 9.5.1 should update as soon as possible.

This release closes security hole CVE-2016-2193, where a query plan might get reused for more than one ROLE in the same session. This could cause the wrong set of Row Level Security (RLS) policies to be used for the query.

The update also fixes CVE-2016-3065, a server crash bug triggered by using pageinspect with BRIN index pages. Since an attacker might be able to expose a few bytes of server memory, this crash is being treated as a security issue.

1 files changed, 1 insertions, 2 deletions

diff --git a/databases/postgresql95-pltcl/Makefile b/databases/postgresql95-pltcl/Makefile
index d8cf6aa7924..1373fd600eb 100644
--- a/databases/postgresql95-pltcl/Makefile
+++ b/databases/postgresql95-pltcl/Makefile
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.2 2016/03/05 11:28:18 jperkin Exp $
+# $NetBSD: Makefile,v 1.3 2016/04/09 12:51:50 adam Exp $
 
 PKGNAME=	${DISTNAME:C/-/95-pltcl-/}
-PKGREVISION=	1
 COMMENT=	PL/Tcl procedural language for the PostgreSQL backend
 
 DEPENDS+=	postgresql95-server>=${PKGVERSION_NOREV}:../../databases/postgresql95-server