From fcf953abba486bef48eb5c4b045729f7250838c7 Mon Sep 17 00:00:00 2001
From: AlmaLinux RelEng Bot <eabdullin@almalinux.org>
Date: Wed, 22 Apr 2026 04:36:04 -0400
Subject: [PATCH] import CS git postgresql-18.3-1.el9

---
 .gitignore                              |  4 ++--
 .postgresql.metadata                    |  4 ++--
 SOURCES/postgresql-16.11.tar.bz2.sha256 |  1 -
 SOURCES/postgresql-16.13.tar.bz2.sha256 |  1 +
 SOURCES/postgresql-18.1.tar.bz2.sha256  |  1 -
 SOURCES/postgresql-18.3.tar.bz2.sha256  |  1 +
 SPECS/postgresql.spec                   | 16 +++++++++++++---
 7 files changed, 19 insertions(+), 9 deletions(-)
 delete mode 100644 SOURCES/postgresql-16.11.tar.bz2.sha256
 create mode 100644 SOURCES/postgresql-16.13.tar.bz2.sha256
 delete mode 100644 SOURCES/postgresql-18.1.tar.bz2.sha256
 create mode 100644 SOURCES/postgresql-18.3.tar.bz2.sha256

diff --git a/.gitignore b/.gitignore
index daec505..bfa9270 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,3 @@
-SOURCES/postgresql-16.11.tar.bz2
-SOURCES/postgresql-18.1.tar.bz2
+SOURCES/postgresql-16.13.tar.bz2
+SOURCES/postgresql-18.3.tar.bz2
 SOURCES/postgresql-setup-8.9.tar.gz
diff --git a/.postgresql.metadata b/.postgresql.metadata
index 7067703..09fda59 100644
--- a/.postgresql.metadata
+++ b/.postgresql.metadata
@@ -1,3 +1,3 @@
-7c93e10c6d400e76b0e2ab29334efde7d58cd0ba SOURCES/postgresql-16.11.tar.bz2
-641b6111da2e6edb88fdf811c5591e53ec23c64e SOURCES/postgresql-18.1.tar.bz2
+b66b3bf5bf717f37371dc3fd8de8831d1f26dd40 SOURCES/postgresql-16.13.tar.bz2
+715414a7dcf6ca491588b1c243610f11acdc501b SOURCES/postgresql-18.3.tar.bz2
 25a05ef36218b1de80d8eeb55f4b4e0b723bd7f6 SOURCES/postgresql-setup-8.9.tar.gz
diff --git a/SOURCES/postgresql-16.11.tar.bz2.sha256 b/SOURCES/postgresql-16.11.tar.bz2.sha256
deleted file mode 100644
index 11193b8..0000000
--- a/SOURCES/postgresql-16.11.tar.bz2.sha256
+++ /dev/null
@@ -1 +0,0 @@
-6deb08c23d03d77d8f8bd1c14049eeef64aef8968fd8891df2dfc0b42f178eac  postgresql-16.11.tar.bz2
diff --git a/SOURCES/postgresql-16.13.tar.bz2.sha256 b/SOURCES/postgresql-16.13.tar.bz2.sha256
new file mode 100644
index 0000000..017f6bc
--- /dev/null
+++ b/SOURCES/postgresql-16.13.tar.bz2.sha256
@@ -0,0 +1 @@
+dc2ddbbd245c0265a689408e3d2f2f3f9ba2da96bd19318214b313cdd9797287  postgresql-16.13.tar.bz2
diff --git a/SOURCES/postgresql-18.1.tar.bz2.sha256 b/SOURCES/postgresql-18.1.tar.bz2.sha256
deleted file mode 100644
index 8d560ab..0000000
--- a/SOURCES/postgresql-18.1.tar.bz2.sha256
+++ /dev/null
@@ -1 +0,0 @@
-ff86675c336c46e98ac991ebb306d1b67621ece1d06787beaade312c2c915d54  postgresql-18.1.tar.bz2
diff --git a/SOURCES/postgresql-18.3.tar.bz2.sha256 b/SOURCES/postgresql-18.3.tar.bz2.sha256
new file mode 100644
index 0000000..44943e1
--- /dev/null
+++ b/SOURCES/postgresql-18.3.tar.bz2.sha256
@@ -0,0 +1 @@
+d95663fbbf3a80f81a9d98d895266bdcb74ba274bcc04ef6d76630a72dee016f  postgresql-18.3.tar.bz2
diff --git a/SPECS/postgresql.spec b/SPECS/postgresql.spec
index 755f208..4acd203 100755
--- a/SPECS/postgresql.spec
+++ b/SPECS/postgresql.spec
@@ -38,7 +38,7 @@
 %{!?external_libpq:%global external_libpq 0}
 %{!?upgrade:%global upgrade 1}
 %{!?plpython3:%global plpython3 1}
-%{!?pltcl:%global pltcl 0}
+%{!?pltcl:%global pltcl 1}
 %{!?plperl:%global plperl 1}
 %{!?ssl:%global ssl 1}
 %{!?icu:%global icu 1}
@@ -62,7 +62,7 @@
 Summary: PostgreSQL client programs
 Name: postgresql
 %global majorversion 18
-Version: %{majorversion}.1
+Version: %{majorversion}.3
 Release: 1%{?dist}
 
 # The PostgreSQL license is very similar to other MIT licenses, but the OSI
@@ -75,7 +75,7 @@ Url: http://www.postgresql.org/
 # that this be kept up with the latest minor release of the previous series;
 # but update when bugs affecting pg_dump output are fixed.
 %global prevmajorversion 16
-%global prevversion %{prevmajorversion}.11
+%global prevversion %{prevmajorversion}.13
 %global prev_prefix %{_libdir}/pgsql/postgresql-%{prevmajorversion}
 %global precise_version %{?epoch:%epoch:}%version-%release
 
@@ -452,6 +452,7 @@ EOF
 cat > postgresql.tmpfiles.conf <<EOF
 d /run/postgresql 0755 postgres postgres -
 d /var/lib/pgsql 0700 postgres postgres -
+f /var/lib/pgsql/.bash_profile 0644 postgres postgres - "[ -f /etc/profile ] && source /etc/profile\nPGDATA=/var/lib/pgsql/data\nexport PGDATA"
 EOF
 
 
@@ -1234,6 +1235,15 @@ make -C postgresql-setup-%{setup_version} check
 
 
 %changelog
+* Thu Mar 05 2026 Filip Janus <fjanus@redhat.com> - 18.3-1
+- Update to 18.3
+- Enable pltcl
+- bash-profile fix for imagemode
+- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
+- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
+- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length executes arbitrary code
+- Fix CVE-2026-2007: PostgreSQL libpq read out-of-bound buffer error
+
 * Tue Nov 18 2025 Filip Janus <fjanus@redhat.com> - 18.1-1
 - Update to 18.1