databases/postgresql??-*: Update to latest versions
PostgreSQL 16.3, 15.7, 14.12, 13.15, and 12.19 Released!
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 16.3, 15.7, 14.12, 13.15,
and 12.19. This release fixes one security vulnerability and over 55
bugs reported over the last several months.
Please note that the fix in this release for CVE-2024-4317 only fixes
fresh PostgreSQL installations, namely those that are created with the
initdb utility after this fix is applied. If you have a current
PostgreSQL installation and are concerned about this issue, please
follow the additional updating instructions provided in the
CVE-2024-4317 description or the release notes for the remediation. [1]
The script is installed as /usr/local/share/postgresql/fix-CVE-2024-4317.sql
PostgreSQL 12 will stop receiving fixes on November 14, 2024. If you are
running PostgreSQL 12 in a production environment, we suggest that you
[9 lines not shown]
net-mgmt/net-snmp: Let snmpd run as a non-root user
- Compile without /dev/kmem access. This requires a small patch which
opens libkvm in a dummy mode which uses sysctls to implement most of
its interfaces rather than /dev/kmem access. This way we can drop the
dependency on /dev/kmem without rewriting existing code.
- Add a new snmpd user. Configure snmpd to drop privileges once it's
finished initialization.
- Remove the JAIL option. Now that snmpd avoids using /dev/kmem,
there's no need to have a special mode for running snmpd in jails.
The patch has been proposed upstream here:
https://sourceforge.net/p/net-snmp/mailman/net-snmp-coders/thread/ZjEwNV5BiTOQ-Adi%40nuc/#msg58766857
Approved by: zi
Sponsored by: Klara, Inc.
Sponsored by: Stormshield
Differential Revision: https://reviews.freebsd.org/D45031
net-mgmt/net-snmp: Fix the IPV6 MIB implementation
The implementations of var_tcp6() and var_udp6() on FreeBSD don't work
and fail to compile. var_tcp6() also makes uses of kmem access, which
I'm trying to disable in snmpd. Provide a patch to fix these problems.
This has been committed to the 5.9 branch upstream.
Readd mibII/ipv6 since it now compiles and works in my manual testing.
Also, simply remove the IPV6 option. It has no effect, as --enable-ipv6
is the default.
Approved by: zi
Sponsored by: Klara, Inc.
Sponsored by: Stormshield
Differential Revision: https://reviews.freebsd.org/D45030
net-mgmt/net-snmp: Fix freebsd15.h
It was copied from freebsd14.h without updating it.
Also remove some bogus copying in the port makefile. 5.9.4 provides
freebsdN.h for N up to 14, and we have a patch which adds freebsd15.h.
So, get rid of the copying too.
Approved by: zi
Sponsored by: Klara, Inc.
Sponsored by: Stormshield
Differential Revision: https://reviews.freebsd.org/D45029
japanese/font-bizuid-mincho: Add new port
BIZ UD Mincho is a universal design typeface designed to be easy to read
and ideal for education and business documentation.
PR: 278727
