import UBI postgresql16-16.13-1.el10_1

2026-03-05 11:06:58 -05:00 · 2026-03-05 11:06:58 -05:00 · 5c4b1b1b36
commit 5c4b1b1b36
parent 9aba227175
7 changed files with 15 additions and 8 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,3 +1,3 @@
-postgresql-13.22.tar.bz2
-postgresql-16.11.tar.bz2
+postgresql-13.23.tar.bz2
+postgresql-16.13.tar.bz2
 postgresql-setup-8.9.tar.gz
--- a/postgresql-13.22.tar.bz2.sha256
+++ b/postgresql-13.22.tar.bz2.sha256
@ -1 +0,0 @@
-d36d83dc89e625502cf6fb1d0529642ba1266bd614b4e4a41cefd1dddcf09080  postgresql-13.22.tar.bz2
--- a/postgresql-13.23.tar.bz2.sha256
+++ b/postgresql-13.23.tar.bz2.sha256
@ -0,0 +1 @@
+6ec3c82726af92b7dec873fa1cdf881eca92a4219787dfad05acb6b10e041fd6  postgresql-13.23.tar.bz2
--- a/postgresql-16.11.tar.bz2.sha256
+++ b/postgresql-16.11.tar.bz2.sha256
@ -1 +0,0 @@
-6deb08c23d03d77d8f8bd1c14049eeef64aef8968fd8891df2dfc0b42f178eac  postgresql-16.11.tar.bz2
--- a/postgresql-16.13.tar.bz2.sha256
+++ b/postgresql-16.13.tar.bz2.sha256
@ -0,0 +1 @@
+dc2ddbbd245c0265a689408e3d2f2f3f9ba2da96bd19318214b313cdd9797287  postgresql-16.13.tar.bz2
--- a/postgresql16.spec
+++ b/postgresql16.spec
@ -47,7 +47,7 @@

 Summary: PostgreSQL client programs
 Name: %{majorname}%{majorversion}
-Version: %{majorversion}.11
+Version: %{majorversion}.13
 Release: 1%{?dist}

 # The PostgreSQL license is very similar to other MIT licenses, but the OSI
@ -60,7 +60,7 @@ Url: http://www.postgresql.org/
 # that this be kept up with the latest minor release of the previous series;
 # but update when bugs affecting pg_dump output are fixed.
 %global prevmajorversion 13
-%global prevversion %{prevmajorversion}.22
+%global prevversion %{prevmajorversion}.23
 %global prev_prefix %{_libdir}/pgsql/postgresql-%{prevmajorversion}
 %global precise_version %{?epoch:%epoch:}%version-%release

@ -1348,6 +1348,13 @@ make -C postgresql-setup-%{setup_version} check


 %changelog
+* Fri Feb 27 2026 Filip Janus <fjanus@redhat.com> - 16.13-1
+- Update to 16.13
+- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input
+- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow
+- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length
+- Resolves: RHEL-149364 RHEL-149398 RHEL-149332
+
 * Mon Dec 01 2025 Filip Janus <fjanus@redhat.com> - 16.11-1
 - Update to 16.11

--- a/4
+++ b/4
@ -1,3 +1,3 @@
-SHA512 (postgresql-13.22.tar.bz2) = 0f578526aad852285de001369dd1c8308f03479c8f4f6c1a1d066b6b77103e340df95b9ab41df3f959c4e17d4fb0c0441b02a04d3e6c01cfcd40a2632c3ac7eb
-SHA512 (postgresql-16.11.tar.bz2) = f11f8f3e5855cfce27108a1bd2122c5a7a1ff37c6d9366d7a96a041aab67a4e4a31e54f0757b6b97c72d841acdcaa97d3eaa765213d4899b2cf7047c549012b8
+SHA512 (postgresql-13.23.tar.bz2) = 9589fe26d874eb91244b7325d997d5e54e93d61a13f63b7e9ef247c0ca6c8ade420487303295010b0c45d7775b64da076a2af14bdcb7a03702d06b5edf159c39
+SHA512 (postgresql-16.13.tar.bz2) = 3ea11b81ce55be5c3c169f0c94ddfa9debae6b3cbe7407086ba3a602fad7668900c2838d4d4488c671b2ccc670a9cd288ece90e42ecf8de953df6b4e103d286d
 SHA512 (postgresql-setup-8.9.tar.gz) = 118e9ebf858722a38b0e90324bc1b49fc7058cda601ca0a7e78c94e7b95e89d6dbbc46f377626364b068614ced3cde3cb4733973ad2d71bf17892ad773657ef7
				`@ -1 +0,0 @@`
				`d36d83dc89e625502cf6fb1d0529642ba1266bd614b4e4a41cefd1dddcf09080 postgresql-13.22.tar.bz2`
				`@ -0,0 +1 @@`
				`6ec3c82726af92b7dec873fa1cdf881eca92a4219787dfad05acb6b10e041fd6 postgresql-13.23.tar.bz2`
				`@ -1 +0,0 @@`
				`6deb08c23d03d77d8f8bd1c14049eeef64aef8968fd8891df2dfc0b42f178eac postgresql-16.11.tar.bz2`
				`@ -0,0 +1 @@`
				`dc2ddbbd245c0265a689408e3d2f2f3f9ba2da96bd19318214b313cdd9797287 postgresql-16.13.tar.bz2`