Thursday, 15 February 2024
Over 120 individual programs plus dozens of programmer libraries and
feature plugins are released simultaneously as part of KDE Gear.
Today they all get new bugfix source releases with updated translations,
including:
* knavalbattle: Fix test for placing a ship vertically
* konsole: Show wallpaper on non-translucent top-levels
* neochat: Fix saving images
- Patch added in CegoProcedure::cleanup to set pMasterBlock to zero.
In some cases, the setup master block lead to usage leaks for user
function calls. See check110.sql as a sample to cause this problem.
/wrkdirs/usr/ports/databases/pgrouting/work/pgrouting-3.6.0/src/cpp_common/get_check_data.cpp:365:12: error: no matching function for call to 'get_array'
return get_array(pg_array, the_size, true);
^~~~~~~~~
/wrkdirs/usr/ports/databases/pgrouting/work/pgrouting-3.6.0/src/cpp_common/get_check_data.cpp:265:1: note: candidate function not viable: no known conversion from 'uint64_t *' (aka 'unsigned long long *') to 'size_t *' (aka 'unsigned int *') for 2nd argument
get_array(ArrayType *v, size_t *arrlen, bool allow_empty) {
^
1 error generated.
The PostgreSQL Global Development Group has released an update to all
supported versions of PostgreSQL, including 16.2, 15.6, 14.11, 13.14,
and 12.18. This release fixes one security vulnerability and over 65
bugs reported over the last several months.
If you use GIN indexes, you may need to reindex after updating to this
release. Please see the release notes for more information.
URL: https://www.postgresql.org/about/news/postgresql-162-156-1411-1314-and-1218-released-2807/
Release notes: https://www.postgresql.org/docs/release/
Security: 19e6dd1b-c6a5-11ee-9cd0-6cc21735f730
- Patch added in CegoAdminThread::srvParameterInfo to list current
QUEUEDELAY value and configured scandal formats ( SCANDATETIMEFORMAT )
- Small patch on CegoDistManager::startTableSet,
improvement for exception message added
Author: Bjoern Lemke <lemke@lemke-it.com>
Changelog:
* Changed storage for vector from extended to external
* Added support for parallel index builds for HNSW
* Added validation for GUC parameters
* Improved performance of HNSW
* Reduced memory usage for HNSW index builds
* Reduced WAL generation for HNSW index builds
* Fixed error with logical replication
* Fixed invalid memory alloc request size error with HNSW index builds
* Moved Docker image to pgvector org
* Added Docker tags for each supported version of Postgres
* Dropped support for Postgres 11
PR: 276771
Reported by: wen
Similar to bug 272295, building databases/mysql80-server with clang 16
or higher can result in an error:
/wrkdirs/usr/ports/databases/mysql80-server/work/mysql-8.0.35/boost/boost_1_77_0/boost/mpl/aux_/integral_wrapper.hpp:73:31: error: integer value -1 is outside the valid range of values [0, 3] for the enumeration type 'udt_builtin_mixture_enum' [-Wenum-constexpr-conversion]
73 | typedef AUX_WRAPPER_INST( BOOST_MPL_AUX_STATIC_CAST(AUX_WRAPPER_VALUE_TYPE, (value - 1)) ) prior;
| ^
/wrkdirs/usr/ports/databases/mysql80-server/work/mysql-8.0.35/boost/boost_1_77_0/boost/mpl/aux_/static_cast.hpp:24:47: note: expanded from macro 'BOOST_MPL_AUX_STATIC_CAST'
24 | # define BOOST_MPL_AUX_STATIC_CAST(T, expr) static_cast<T>(expr)
| ^
This is because the vendored copy of boost in mysql80-server is using
undefined behavior in a possibly constexpr context.
Fix this by unconditionally enabling the "boost workaround" for aux
wrapper value types in integral_wrapper.hpp.
PR: 276749
Approved by: joneum (maintainer)
MFH: 2024Q1
Security fixes:
* (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Changelog: https://github.com/redis/redis/releases/tag/7.0.15
PR: 276255
Approved by: yasu (maintainer, timeout > 14 days), arrowd (mentor)
MFH: 2024Q1
Security fixes:
* (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory
buffers which can result in incorrect accounting of buffer sizes and lead to
heap overflow and potential remote code execution.
Bug fixes:
* Fix crashes of cluster commands clusters with mixed versions of 7.0 and 7.2 (#12805, #12832)
* Fix slot ownership not being properly handled when deleting a slot from a node (#12564)
* Fix atomicity issues with the RedisModuleEvent_Key module API event (#12733)
Changelog: https://github.com/redis/redis/releases/tag/7.2.4
PR: 276255
Approved by: yasu (maintainer, timeout > 14 days), arrowd (mentor)
MFH: 2024Q1
