From d0d6885015be63c1171be9ae99f1d060932c550e Mon Sep 17 00:00:00 2001 From: Tom Lane Date: Wed, 10 Mar 2010 01:59:30 +0000 Subject: [PATCH] Preliminary release notes for releases 8.4.3, 8.3.10, 8.2.16, 8.1.20, 8.0.24, 7.4.28. --- doc/src/sgml/release-7.4.sgml | 121 +++++++++++++++++++++++++++++++++- 1 file changed, 120 insertions(+), 1 deletion(-) diff --git a/doc/src/sgml/release-7.4.sgml b/doc/src/sgml/release-7.4.sgml index e8dfd5ca2ed..ad89dbb468d 100644 --- a/doc/src/sgml/release-7.4.sgml +++ b/doc/src/sgml/release-7.4.sgml @@ -1,6 +1,125 @@ - + + + Release 7.4.28 + + + Release date + 2010-03-15 + + + + This release contains a variety of fixes from 7.4.27. + For information about new features in the 7.4 major release, see + . + + + + The PostgreSQL community will stop releasing updates + for the 7.4.X release series in July 2010. + Users are encouraged to update to a newer release branch soon. + + + + Migration to Version 7.4.28 + + + A dump/restore is not required for those running 7.4.X. + However, if you are upgrading from a version earlier than 7.4.26, + see the release notes for 7.4.26. + + + + + + Changes + + + + + + Add new configuration parameter ssl_renegotiation_limit to + control how often we do session key renegotiation for an SSL connection + (Magnus) + + + + This can be set to zero to disable renegotiation completely, which may + be required if a broken SSL library is used. In particular, some + vendors are shipping stopgap patches for CVE-2009-3555 that cause + renegotiation attempts to fail. + + + + + + Make substring() for bit types treat any negative + length as meaning all the rest of the string (Tom) + + + + The previous coding treated only -1 that way, and would produce an + invalid result value for other negative values, possibly leading to + a crash (CVE-2010-0442). + + + + + + Fix some cases of pathologically slow regular expression matching (Tom) + + + + + + When reading pg_hba.conf and related files, do not treat + @something as a file inclusion request if the @ + appears inside quote marks; also, never treat @ by itself + as a file inclusion request (Tom) + + + + This prevents erratic behavior if a role or database name starts with + @. If you need to include a file whose path name + contains spaces, you can still do so, but you must write + @"/path to/file" rather than putting the quotes around + the whole construct. + + + + + + Prevent infinite loop on some platforms if a directory is named as + an inclusion target in pg_hba.conf and related files + (Tom) + + + + + + Ensure PL/Tcl initializes the Tcl interpreter fully (Tom) + + + + The only known symptom of this oversight is that the Tcl + clock command misbehaves if using Tcl 8.5 or later. + + + + + + Prevent crash in contrib/dblink when too many key + columns are specified to a dblink_build_sql_* function + (Rushabh Lathia, Joe Conway) + + + + + + + + Release 7.4.27