postgresql-setup: fix CVE-2017-15097

Fixed by updating the postgresql-setup tarball. Resolves: CVE-2017-15097 Version: 9.6.5-2
2017-11-08 07:01:14 +01:00 · 2017-11-08 07:01:14 +01:00 · ab7166f5e3
commit ab7166f5e3
parent 1fa73e0a7b
3 changed files with 9 additions and 4 deletions
--- a/.gitignore
+++ b/.gitignore
@ -2,5 +2,5 @@
 /postgresql-9.5.9.tar.bz2.sha256
 /postgresql-9.6.5.tar.bz2
 /postgresql-9.6.5.tar.bz2.sha256
-/postgresql-setup-5.1.tar.gz
+/postgresql-setup-6.0.tar.gz
 /postgresql-9.6.5-US.pdf
--- a/postgresql.spec
+++ b/postgresql.spec
@ -63,7 +63,7 @@ Summary: PostgreSQL client programs
 Name: postgresql
 %global majorversion 9.6
 Version: 9.6.5
-Release: 1%{?dist}
+Release: 2%{?dist}

 # The PostgreSQL license is very similar to other MIT licenses, but the OSI
 # recognizes it as an independent license, so we do as well.
@ -78,7 +78,7 @@ Url: http://www.postgresql.org/
 %global prevversion 9.5.9
 %global prevmajorversion 9.5

-%global setup_version 5.1
+%global setup_version 6.0

 %global service_name postgresql.service
 Source0: https://ftp.postgresql.org/pub/source/v%{version}/postgresql-%{version}.tar.bz2
@ -1088,8 +1088,10 @@ make -C postgresql-setup-%{setup_version} check
 %{_mandir}/man1/pg_resetxlog.*
 %{_mandir}/man1/pg_rewind.*
 %{_mandir}/man1/postgres.*
+%{_mandir}/man1/postgresql-new-systemd-unit.*
 %{_mandir}/man1/postgresql-setup.*
 %{_mandir}/man1/postmaster.*
+%{_sbindir}/postgresql-new-systemd-unit
 %{_tmpfilesdir}/postgresql.conf
 %{_unitdir}/*postgresql*.service
 %attr(700,postgres,postgres) %dir %{?_localstatedir}/lib/pgsql
@ -1161,6 +1163,9 @@ make -C postgresql-setup-%{setup_version} check
 %endif

 %changelog
+* Wed Nov 08 2017 Pavel Raiskup <praiskup@redhat.com> - 9.6.5-2
+- rebase to new postgresql-setup 6.0 version, to fix CVE-2017-15097
+
 * Tue Aug 29 2017 Pavel Raiskup <praiskup@redhat.com> - 9.6.5-1
 - update to 9.6.5 per release notes:
  https://www.postgresql.org/docs/9.6/static/release-9-6-5.html
--- a/2
+++ b/2
@ -2,5 +2,5 @@ SHA512 (postgresql-9.5.9.tar.bz2) = 2c6a887b80a4b1d1da18282f443419db2279d8fe6182
 SHA512 (postgresql-9.5.9.tar.bz2.sha256) = 2e41c8a4e4a702c621cde35adc9b3496a67190597673e3c725f4c03313dce22691896aae13813039dfbe46d9e131216bcd657210823a55840ddad110fc0d8cc7
 SHA512 (postgresql-9.6.5.tar.bz2) = ad35c27ea55b18005ea61b49d6994718df86519b3f99addd0ecb17ece1f1c34764eb5194f8961c45cfa75703d810baf54433f8538cfd43a70bd908e1e5878df9
 SHA512 (postgresql-9.6.5.tar.bz2.sha256) = 8cfe5bfb00689ae30b6a3ddbccb8c74c0be244e2317ffa33dc89e56838d8b06a81a59cef0a204fff4f8ef23f7cffd7579b96b2d9207a5efb069e2160c2381a05
-SHA512 (postgresql-setup-5.1.tar.gz) = f901c2f5f0b60a51a46fce1abf3a9854b97d1f1337a4659d73d3e2930518a35eef94de400d259f2a799652ac6acef9575b9d474cc929641f2659aed195254981
+SHA512 (postgresql-setup-6.0.tar.gz) = 4fa02b35d3b2d1d79193fd3a6af02532b5a6736dbae23cad485492acd4eb0c5f25159f36eb445a63eac0097ec4c52f57c58b0960fa012577c24daac5a032b243
 SHA512 (postgresql-9.6.5-US.pdf) = 1f9243275239d99a593690a0a04b3b61c36394993e6e9d55b585750e89e4e80391aa9fdeff8d7a5bbc93c0c8bca5989a46e382f531bbc2905866c093afedf6b9