From db3626cf936cea665368c7f3a5bd02fbed7322c4 Mon Sep 17 00:00:00 2001 From: "Richard W.M. Jones" Date: Fri, 16 Oct 2009 10:19:01 +0000 Subject: [PATCH] - New upstream version 1.12.3. - This contains a SECURITY fix for: https://bugzilla.redhat.com/show_bug.cgi?id=529325 CVE-2009-2943 ocaml-postgresql: Missing escape function (DSA-1909-1) HOWEVER you are not protected until you change your code to use the new connection#escape_string method. --- .cvsignore | 2 +- ocaml-postgresql.spec | 12 ++++++++++-- sources | 2 +- 3 files changed, 12 insertions(+), 4 deletions(-) diff --git a/.cvsignore b/.cvsignore index 1ec9af3..941057b 100644 --- a/.cvsignore +++ b/.cvsignore @@ -1 +1 @@ -release-1.11.1.tar.bz2 +release-1.12.3.tar.bz2 diff --git a/ocaml-postgresql.spec b/ocaml-postgresql.spec index 79a4622..308552b 100644 --- a/ocaml-postgresql.spec +++ b/ocaml-postgresql.spec @@ -2,8 +2,8 @@ %define debug_package %{nil} Name: ocaml-postgresql -Version: 1.11.1 -Release: 2%{?dist} +Version: 1.12.3 +Release: 1%{?dist} Summary: OCaml library for accessing PostgreSQL databases Group: Development/Libraries @@ -92,6 +92,14 @@ rm -rf $RPM_BUILD_ROOT %changelog +* Fri Oct 16 2009 Richard W.M. Jones - 1.12.3-1 +- New upstream version 1.12.3. +- This contains a SECURITY fix for: + https://bugzilla.redhat.com/show_bug.cgi?id=529325 + CVE-2009-2943 ocaml-postgresql: Missing escape function (DSA-1909-1) + HOWEVER you are not protected until you change your code to + use the new connection#escape_string method. + * Sat Jul 25 2009 Fedora Release Engineering - 1.11.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild diff --git a/sources b/sources index 2724751..8a8b074 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -d293714bd15824db031a47d1c42c1f36 release-1.11.1.tar.bz2 +64d6fdc1a23dc3315c61771f1d28f592 release-1.12.3.tar.bz2