diff --git a/doc/src/sgml/release-7.4.sgml b/doc/src/sgml/release-7.4.sgml
index 913e505bf92..17758234030 100644
--- a/doc/src/sgml/release-7.4.sgml
+++ b/doc/src/sgml/release-7.4.sgml
@@ -1,6 +1,126 @@
-
+
+
+ Release 7.4.27
+
+
+ Release date
+ 2009-12-14
+
+
+
+ This release contains a variety of fixes from 7.4.26.
+ For information about new features in the 7.4 major release, see
+ .
+
+
+
+ Migration to Version 7.4.27
+
+
+ A dump/restore is not required for those running 7.4.X.
+ However, if you are upgrading from a version earlier than 7.4.26,
+ see the release notes for 7.4.26.
+
+
+
+
+
+ Changes
+
+
+
+
+
+ Protect against indirect security threats caused by index functions
+ changing session-local state (Gurjeet Singh, Tom)
+
+
+
+ This change prevents allegedly-immutable index functions from possibly
+ subverting a superuser's session (CVE-2009-4136).
+
+
+
+
+
+ Reject SSL certificates containing an embedded null byte in the common
+ name (CN) field (Magnus)
+
+
+
+ This prevents unintended matching of a certificate to a server or client
+ name during SSL validation (CVE-2009-4034).
+
+
+
+
+
+ Fix possible crash during backend-startup-time cache initialization (Tom)
+
+
+
+
+
+ Prevent signals from interrupting VACUUM at unsafe times
+ (Alvaro)
+
+
+
+ This fix prevents a PANIC if a VACUUM FULL is cancelled
+ after it's already committed its tuple movements, as well as transient
+ errors if a plain VACUUM is interrupted after having
+ truncated the table.
+
+
+
+
+
+ Fix possible crash due to integer overflow in hash table size
+ calculation (Tom)
+
+
+
+ This could occur with extremely large planner estimates for the size of
+ a hashjoin's result.
+
+
+
+
+
+ Fix very rare crash in inet/cidr comparisons (Chris
+ Mikkelson)
+
+
+
+
+
+ Fix PAM password processing to be more robust (Tom)
+
+
+
+ The previous code is known to fail with the combination of the Linux
+ pam_krb5 PAM module with Microsoft Active Directory as the
+ domain controller. It might have problems elsewhere too, since it was
+ making unjustified assumptions about what arguments the PAM stack would
+ pass to it.
+
+
+
+
+
+ Make the postmaster ignore any application_name parameter in
+ connection request packets, to improve compatibility with future libpq
+ versions (Tom)
+
+
+
+
+
+
+
+
Release 7.4.26
diff --git a/doc/src/sgml/release-8.0.sgml b/doc/src/sgml/release-8.0.sgml
index 62a255c19f6..de2468f9cea 100644
--- a/doc/src/sgml/release-8.0.sgml
+++ b/doc/src/sgml/release-8.0.sgml
@@ -1,6 +1,161 @@
-
+
+
+ Release 8.0.23
+
+
+ Release date
+ 2009-12-14
+
+
+
+ This release contains a variety of fixes from 8.0.22.
+ For information about new features in the 8.0 major release, see
+ .
+
+
+
+ Migration to Version 8.0.23
+
+
+ A dump/restore is not required for those running 8.0.X.
+ However, if you are upgrading from a version earlier than 8.0.22,
+ see the release notes for 8.0.22.
+
+
+
+
+
+ Changes
+
+
+
+
+
+ Protect against indirect security threats caused by index functions
+ changing session-local state (Gurjeet Singh, Tom)
+
+
+
+ This change prevents allegedly-immutable index functions from possibly
+ subverting a superuser's session (CVE-2009-4136).
+
+
+
+
+
+ Reject SSL certificates containing an embedded null byte in the common
+ name (CN) field (Magnus)
+
+
+
+ This prevents unintended matching of a certificate to a server or client
+ name during SSL validation (CVE-2009-4034).
+
+
+
+
+
+ Fix possible crash during backend-startup-time cache initialization (Tom)
+
+
+
+
+
+ Prevent signals from interrupting VACUUM at unsafe times
+ (Alvaro)
+
+
+
+ This fix prevents a PANIC if a VACUUM FULL is cancelled
+ after it's already committed its tuple movements, as well as transient
+ errors if a plain VACUUM is interrupted after having
+ truncated the table.
+
+
+
+
+
+ Fix possible crash due to integer overflow in hash table size
+ calculation (Tom)
+
+
+
+ This could occur with extremely large planner estimates for the size of
+ a hashjoin's result.
+
+
+
+
+
+ Fix very rare crash in inet/cidr comparisons (Chris
+ Mikkelson)
+
+
+
+
+
+ Fix premature drop of temporary files used for a cursor that is accessed
+ within a subtransaction (Heikki)
+
+
+
+
+
+ Fix PAM password processing to be more robust (Tom)
+
+
+
+ The previous code is known to fail with the combination of the Linux
+ pam_krb5 PAM module with Microsoft Active Directory as the
+ domain controller. It might have problems elsewhere too, since it was
+ making unjustified assumptions about what arguments the PAM stack would
+ pass to it.
+
+
+
+
+
+ Fix rare crash in exception processing in PL/Python (Peter)
+
+
+
+
+
+ Ensure psql's flex module is compiled with the correct
+ system header definitions (Tom)
+
+
+
+ This fixes build failures on platforms where
+ --enable-largefile causes incompatible changes in the
+ generated code.
+
+
+
+
+
+ Make the postmaster ignore any application_name parameter in
+ connection request packets, to improve compatibility with future libpq
+ versions (Tom)
+
+
+
+
+
+ Update time zone data files to tzdata release 2009s
+ for DST law changes in Antarctica, Argentina, Bangladesh, Fiji,
+ Novokuznetsk, Pakistan, Palestine, Samoa, Syria; also historical
+ corrections for Hong Kong.
+
+
+
+
+
+
+
+
Release 8.0.22
diff --git a/doc/src/sgml/release-8.1.sgml b/doc/src/sgml/release-8.1.sgml
index 145b16a39e8..d332626aa77 100644
--- a/doc/src/sgml/release-8.1.sgml
+++ b/doc/src/sgml/release-8.1.sgml
@@ -1,6 +1,187 @@
-
+
+
+ Release 8.1.19
+
+
+ Release date
+ 2009-12-14
+
+
+
+ This release contains a variety of fixes from 8.1.18.
+ For information about new features in the 8.1 major release, see
+ .
+
+
+
+ Migration to Version 8.1.19
+
+
+ A dump/restore is not required for those running 8.1.X.
+ However, if you are upgrading from a version earlier than 8.1.18,
+ see the release notes for 8.1.18.
+
+
+
+
+
+ Changes
+
+
+
+
+
+ Protect against indirect security threats caused by index functions
+ changing session-local state (Gurjeet Singh, Tom)
+
+
+
+ This change prevents allegedly-immutable index functions from possibly
+ subverting a superuser's session (CVE-2009-4136).
+
+
+
+
+
+ Reject SSL certificates containing an embedded null byte in the common
+ name (CN) field (Magnus)
+
+
+
+ This prevents unintended matching of a certificate to a server or client
+ name during SSL validation (CVE-2009-4034).
+
+
+
+
+
+ Fix possible crash during backend-startup-time cache initialization (Tom)
+
+
+
+
+
+ Prevent signals from interrupting VACUUM at unsafe times
+ (Alvaro)
+
+
+
+ This fix prevents a PANIC if a VACUUM FULL is cancelled
+ after it's already committed its tuple movements, as well as transient
+ errors if a plain VACUUM is interrupted after having
+ truncated the table.
+
+
+
+
+
+ Fix possible crash due to integer overflow in hash table size
+ calculation (Tom)
+
+
+
+ This could occur with extremely large planner estimates for the size of
+ a hashjoin's result.
+
+
+
+
+
+ Fix very rare crash in inet/cidr comparisons (Chris
+ Mikkelson)
+
+
+
+
+
+ Ensure that shared tuple-level locks held by prepared transactions are
+ not ignored (Heikki)
+
+
+
+
+
+ Fix premature drop of temporary files used for a cursor that is accessed
+ within a subtransaction (Heikki)
+
+
+
+
+
+ Fix PAM password processing to be more robust (Tom)
+
+
+
+ The previous code is known to fail with the combination of the Linux
+ pam_krb5 PAM module with Microsoft Active Directory as the
+ domain controller. It might have problems elsewhere too, since it was
+ making unjustified assumptions about what arguments the PAM stack would
+ pass to it.
+
+
+
+
+
+ Fix processing of ownership dependencies during CREATE OR
+ REPLACE FUNCTION (Tom)
+
+
+
+
+
+ Ensure that Perl arrays are properly converted to
+ PostgreSQL arrays when returned by a set-returning
+ PL/Perl function (Andrew Dunstan, Abhijit Menon-Sen)
+
+
+
+ This worked correctly already for non-set-returning functions.
+
+
+
+
+
+ Fix rare crash in exception processing in PL/Python (Peter)
+
+
+
+
+
+ Ensure psql's flex module is compiled with the correct
+ system header definitions (Tom)
+
+
+
+ This fixes build failures on platforms where
+ --enable-largefile causes incompatible changes in the
+ generated code.
+
+
+
+
+
+ Make the postmaster ignore any application_name parameter in
+ connection request packets, to improve compatibility with future libpq
+ versions (Tom)
+
+
+
+
+
+ Update time zone data files to tzdata release 2009s
+ for DST law changes in Antarctica, Argentina, Bangladesh, Fiji,
+ Novokuznetsk, Pakistan, Palestine, Samoa, Syria; also historical
+ corrections for Hong Kong.
+
+
+
+
+
+
+
+
Release 8.1.18