From f42bc9c9a112da868edf745f877118ff6f359be4 Mon Sep 17 00:00:00 2001
From: Filip Janus <fjanus@redhat.com>
Date: Mon, 16 Feb 2026 15:08:29 +0000
Subject: [PATCH] Update to 18.3

- Enable pltcl
- Update gating configuration
- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length executes arbitrary code
- Fix CVE-2026-2007: PostgreSQL libpq read out-of-bound buffer error

Resolves: RHEL-149366
---
 .gitignore               |  2 ++
 gating.yaml              |  3 +--
 plans.fmf                | 10 ++++++++++
 plans/tier1-internal.fmf |  8 --------
 postgresql18.spec        | 19 ++++++++++++++-----
 sources                  |  8 ++++----
 6 files changed, 31 insertions(+), 19 deletions(-)
 create mode 100644 plans.fmf
 delete mode 100644 plans/tier1-internal.fmf

diff --git a/.gitignore b/.gitignore
index 02e898e..5374a8b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -14,3 +14,5 @@
 /postgresql-18.1.tar.bz2.sha256
 /postgresql-16.11.tar.bz2
 /postgresql-16.11.tar.bz2.sha256
+/postgresql-18.2.tar.bz2
+/postgresql-18.2.tar.bz2.sha256
diff --git a/gating.yaml b/gating.yaml
index 3f09d73..120f6d6 100644
--- a/gating.yaml
+++ b/gating.yaml
@@ -1,7 +1,6 @@
-# Gating rhel
 --- !Policy
 product_versions:
   - rhel-*
 decision_context: osci_compose_gate
 rules:
-  - !PassingTestCaseRule {test_case_name: osci.brew-build./plans/tier1-internal.functional}
+  - !PassingTestCaseRule {test_case_name: osci.brew-build./plans/rhel-gating.functional}
diff --git a/plans.fmf b/plans.fmf
new file mode 100644
index 0000000..939cfe8
--- /dev/null
+++ b/plans.fmf
@@ -0,0 +1,10 @@
+/rhel-gating:
+  plan:
+    import:
+      url: https://pkgs.devel.redhat.com/git/tests/postgresql
+      name: /plans/versioned/postgresql18/gating
+/rhel-no-gating:
+  plan:
+    import:
+      url: https://pkgs.devel.redhat.com/git/tests/postgresql
+      name: /plans/versioned/postgresql18/no-gating
diff --git a/plans/tier1-internal.fmf b/plans/tier1-internal.fmf
deleted file mode 100644
index c9a9e11..0000000
--- a/plans/tier1-internal.fmf
+++ /dev/null
@@ -1,8 +0,0 @@
-summary: internal tier1 beakerlib tests
-discover:
-    how: fmf
-    url: https://pkgs.devel.redhat.com/git/tests/postgresql
-    filter: 'tier: 1'
-execute:
-    how: tmt
-
diff --git a/postgresql18.spec b/postgresql18.spec
index 05210c6..f435ee1 100644
--- a/postgresql18.spec
+++ b/postgresql18.spec
@@ -16,7 +16,7 @@
 %{!?external_libpq:%global external_libpq 0}
 %{!?upgrade:%global upgrade 1}
 %{!?plpython3:%global plpython3 1}
-%{!?pltcl:%global pltcl 0}
+%{!?pltcl:%global pltcl 1}
 %{!?plperl:%global plperl 1}
 %{!?ssl:%global ssl 1}
 %{!?icu:%global icu 1}
@@ -47,8 +47,8 @@
 
 Summary: PostgreSQL client programs
 Name: %{majorname}%{majorversion}
-Version: 18.1
-Release: 2%{?dist}
+Version: 18.3
+Release: 1%{?dist}
 
 # The PostgreSQL license is very similar to other MIT licenses, but the OSI
 # recognizes it as an independent license, so we do as well.
@@ -60,7 +60,7 @@ Url: http://www.postgresql.org/
 # that this be kept up with the latest minor release of the previous series;
 # but update when bugs affecting pg_dump output are fixed.
 %global prevmajorversion 16
-%global prevversion %{prevmajorversion}.11
+%global prevversion %{prevmajorversion}.13
 %global prev_prefix %{_libdir}/pgsql/postgresql-%{prevmajorversion}
 %global precise_version %{?epoch:%epoch:}%version-%release
 
@@ -1364,7 +1364,16 @@ make -C postgresql-setup-%{setup_version} check
 
 
 %changelog
-* Wed Jan 28 2026 Filip Janus <fjanus@redhat.com> - 18.1-2
+* Fri Feb 27 2026 Filip Janus <fjanus@redhat.com> - 18.3-1
+- Update to 18.3
+- Enable pltcl
+- Update gating configuration
+- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
+- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
+- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length executes arbitrary code
+- Fix CVE-2026-2007: PostgreSQL libpq read out-of-bound buffer error
+
+* Wed Jan 28 2026 Filip Janus <fjanus@redhat.com> - 18.1-2
 - create user and group using useradd/groupadd
 
 * Wed Dec 03 2025 Filip Janus <fjanus@redhat.com> - 18.1-1
diff --git a/sources b/sources
index f51ce2c..a278cf5 100644
--- a/sources
+++ b/sources
@@ -1,5 +1,5 @@
-SHA512 (postgresql-18.1.tar.bz2) = bac8a9bfb12c0c70b5870d92c6f322edbfd559e9ac939e841f16d8271b5c2bc4fb2628e053b407aed71b4032e9f4cba55f1e0a8dc6a3bd4933c2b701fe69ec08
-SHA512 (postgresql-18.1.tar.bz2.sha256) = 2be4c9be8ee2e029b6fff6d06505167d43e89e850231d47c6062a4c22a5297f9f328fd74fe5e0df91dd2f872ed5f0af0c610c1caa51ac2258c4f896ceed344eb
-SHA512 (postgresql-16.11.tar.bz2) = f11f8f3e5855cfce27108a1bd2122c5a7a1ff37c6d9366d7a96a041aab67a4e4a31e54f0757b6b97c72d841acdcaa97d3eaa765213d4899b2cf7047c549012b8
-SHA512 (postgresql-16.11.tar.bz2.sha256) = 3c07dc85608f8cee5071bd7d404feff1c767afb468a8f41225b73d5df05334dca9a3465e16307a3b5b21c1a44684deab0c496fbd03b9d061e4a9559684876671
+SHA512 (postgresql-18.3.tar.bz2) = fdbe6d726f46738cf14acab96e5c05f7d65aefe78563281b416bb14a27c7c42e4df921e26b32816a5030ddbe506b95767e2c74a35afc589916504df38d1cb11c
+SHA512 (postgresql-18.3.tar.bz2.sha256) = f60993818b7b0feb1f4172ecb641ebbe670d18e4f62bb275706625bb05a281e201a7c6ddb2194c611b650814db1b0ffa499428369b00b8a0840f25f8ad0e5100
+SHA512 (postgresql-16.13.tar.bz2) = 3ea11b81ce55be5c3c169f0c94ddfa9debae6b3cbe7407086ba3a602fad7668900c2838d4d4488c671b2ccc670a9cd288ece90e42ecf8de953df6b4e103d286d
+SHA512 (postgresql-16.13.tar.bz2.sha256) = 0be6cc3fc1f0d358b63288f0f8029932ad90c1fc8d98867cc07e9d832c14228835d66f747c2105db7a7455976f5654a8592bb0b1de3baf91163fa108d8325ea6
 SHA512 (postgresql-setup-8.9.tar.gz) = 118e9ebf858722a38b0e90324bc1b49fc7058cda601ca0a7e78c94e7b95e89d6dbbc46f377626364b068614ced3cde3cb4733973ad2d71bf17892ad773657ef7