Update to 18.3

- Enable pltcl - Update gating configuration - Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code - Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code - Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length executes arbitrary code - Fix CVE-2026-2007: PostgreSQL libpq read out-of-bound buffer error Resolves: RHEL-149366
2026-02-16 15:08:29 +00:00 · 2026-02-16 15:08:29 +00:00 · f42bc9c9a1
commit f42bc9c9a1
parent fe212b946c
6 changed files with 31 additions and 19 deletions
--- a/.gitignore
+++ b/.gitignore
@ -14,3 +14,5 @@
 /postgresql-18.1.tar.bz2.sha256
 /postgresql-16.11.tar.bz2
 /postgresql-16.11.tar.bz2.sha256
+/postgresql-18.2.tar.bz2
+/postgresql-18.2.tar.bz2.sha256
--- a/gating.yaml
+++ b/gating.yaml
@ -1,7 +1,6 @@
-# Gating rhel
 --- !Policy
 product_versions:
  - rhel-*
 decision_context: osci_compose_gate
 rules:
-  - !PassingTestCaseRule {test_case_name: osci.brew-build./plans/tier1-internal.functional}
+  - !PassingTestCaseRule {test_case_name: osci.brew-build./plans/rhel-gating.functional}
--- a/plans.fmf
+++ b/plans.fmf
@ -0,0 +1,10 @@
+/rhel-gating:
+  plan:
+    import:
+      url: https://pkgs.devel.redhat.com/git/tests/postgresql
+      name: /plans/versioned/postgresql18/gating
+/rhel-no-gating:
+  plan:
+    import:
+      url: https://pkgs.devel.redhat.com/git/tests/postgresql
+      name: /plans/versioned/postgresql18/no-gating
--- a/plans/tier1-internal.fmf
+++ b/plans/tier1-internal.fmf
@ -1,8 +0,0 @@
-summary: internal tier1 beakerlib tests
-discover:
-    how: fmf
-    url: https://pkgs.devel.redhat.com/git/tests/postgresql
-    filter: 'tier: 1'
-execute:
-    how: tmt
-
--- a/postgresql18.spec
+++ b/postgresql18.spec
@ -16,7 +16,7 @@
 %{!?external_libpq:%global external_libpq 0}
 %{!?upgrade:%global upgrade 1}
 %{!?plpython3:%global plpython3 1}
-%{!?pltcl:%global pltcl 0}
+%{!?pltcl:%global pltcl 1}
 %{!?plperl:%global plperl 1}
 %{!?ssl:%global ssl 1}
 %{!?icu:%global icu 1}
@ -47,8 +47,8 @@

 Summary: PostgreSQL client programs
 Name: %{majorname}%{majorversion}
-Version: 18.1
-Release: 2%{?dist}
+Version: 18.3
+Release: 1%{?dist}

 # The PostgreSQL license is very similar to other MIT licenses, but the OSI
 # recognizes it as an independent license, so we do as well.
@ -60,7 +60,7 @@ Url: http://www.postgresql.org/
 # that this be kept up with the latest minor release of the previous series;
 # but update when bugs affecting pg_dump output are fixed.
 %global prevmajorversion 16
-%global prevversion %{prevmajorversion}.11
+%global prevversion %{prevmajorversion}.13
 %global prev_prefix %{_libdir}/pgsql/postgresql-%{prevmajorversion}
 %global precise_version %{?epoch:%epoch:}%version-%release

@ -1364,7 +1364,16 @@ make -C postgresql-setup-%{setup_version} check


 %changelog
-* Wed Jan 28 2026 Filip Janus <fjanus@redhat.com> - 18.1-2
+* Fri Feb 27 2026 Filip Janus <fjanus@redhat.com> - 18.3-1
+- Update to 18.3
+- Enable pltcl
+- Update gating configuration
+- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
+- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
+- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length executes arbitrary code
+- Fix CVE-2026-2007: PostgreSQL libpq read out-of-bound buffer error
+
+* Wed Jan 28 2026 Filip Janus <fjanus@redhat.com> - 18.1-2
 - create user and group using useradd/groupadd

 * Wed Dec 03 2025 Filip Janus <fjanus@redhat.com> - 18.1-1
--- a/8
+++ b/8
@ -1,5 +1,5 @@
-SHA512 (postgresql-18.1.tar.bz2) = bac8a9bfb12c0c70b5870d92c6f322edbfd559e9ac939e841f16d8271b5c2bc4fb2628e053b407aed71b4032e9f4cba55f1e0a8dc6a3bd4933c2b701fe69ec08
-SHA512 (postgresql-18.1.tar.bz2.sha256) = 2be4c9be8ee2e029b6fff6d06505167d43e89e850231d47c6062a4c22a5297f9f328fd74fe5e0df91dd2f872ed5f0af0c610c1caa51ac2258c4f896ceed344eb
-SHA512 (postgresql-16.11.tar.bz2) = f11f8f3e5855cfce27108a1bd2122c5a7a1ff37c6d9366d7a96a041aab67a4e4a31e54f0757b6b97c72d841acdcaa97d3eaa765213d4899b2cf7047c549012b8
-SHA512 (postgresql-16.11.tar.bz2.sha256) = 3c07dc85608f8cee5071bd7d404feff1c767afb468a8f41225b73d5df05334dca9a3465e16307a3b5b21c1a44684deab0c496fbd03b9d061e4a9559684876671
+SHA512 (postgresql-18.3.tar.bz2) = fdbe6d726f46738cf14acab96e5c05f7d65aefe78563281b416bb14a27c7c42e4df921e26b32816a5030ddbe506b95767e2c74a35afc589916504df38d1cb11c
+SHA512 (postgresql-18.3.tar.bz2.sha256) = f60993818b7b0feb1f4172ecb641ebbe670d18e4f62bb275706625bb05a281e201a7c6ddb2194c611b650814db1b0ffa499428369b00b8a0840f25f8ad0e5100
+SHA512 (postgresql-16.13.tar.bz2) = 3ea11b81ce55be5c3c169f0c94ddfa9debae6b3cbe7407086ba3a602fad7668900c2838d4d4488c671b2ccc670a9cd288ece90e42ecf8de953df6b4e103d286d
+SHA512 (postgresql-16.13.tar.bz2.sha256) = 0be6cc3fc1f0d358b63288f0f8029932ad90c1fc8d98867cc07e9d832c14228835d66f747c2105db7a7455976f5654a8592bb0b1de3baf91163fa108d8325ea6
 SHA512 (postgresql-setup-8.9.tar.gz) = 118e9ebf858722a38b0e90324bc1b49fc7058cda601ca0a7e78c94e7b95e89d6dbbc46f377626364b068614ced3cde3cb4733973ad2d71bf17892ad773657ef7