Skip to content

Commit

Permalink
Merge pull request #5593 from EnterpriseDB/docs/epaspge/relnotesclean
Browse files Browse the repository at this point in the history
Docs/epaspge/relnotesclean
  • Loading branch information
djw-m authored May 9, 2024
2 parents e2f7980 + 1122af2 commit 365131f
Show file tree
Hide file tree
Showing 18 changed files with 159 additions and 28 deletions.
6 changes: 3 additions & 3 deletions advocacy_docs/security/index.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -113,15 +113,15 @@ An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 1

</table>

## Most Recent Assesments
## Most Recent Assessments

<table class="table-bordered">


<tr><td>
<details><summary><h3 style="display:inline"> CVE-2024-1597 </h3>
<span>
&nbsp;&nbsp;<a href="assessments/cve-2024-1597">Read Assesment</a>
&nbsp;&nbsp;<a href="assessments/cve-2024-1597">Read Assessment</a>
&nbsp;&nbsp;Updated: </span><span>2024/03/08</span>
<h4>SQL Injection via line comment generation</h4>
<h5> pgJDBC all versions prior to 42.7.2, 42.6.1, 42.5.5, 42.4.4, 42.3.9, and 42.2.28 and EDB pgJDBC all versions prior to 42.5.5</h5>
Expand All @@ -137,7 +137,7 @@ pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using Prefe
<tr><td>
<details><summary><h3 style="display:inline"> CVE-2024-0985 </h3>
<span>
&nbsp;&nbsp;<a href="assessments/cve-2024-0985">Read Assesment</a>
&nbsp;&nbsp;<a href="assessments/cve-2024-0985">Read Assessment</a>
&nbsp;&nbsp;Updated: </span><span>2024/02/26</span>
<h4>PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQL</h4>
<h5> PostgreSQL, EPAS all versions prior to 15.6.0,14.11.0,13.14.20 and 12.18.23, PGE all versions prior to 15.6.0</h5>
Expand Down
4 changes: 2 additions & 2 deletions advocacy_docs/security/templates/securityindex.njs
Original file line number Diff line number Diff line change
Expand Up @@ -49,15 +49,15 @@ This policy outlines how EnterpriseDB handles disclosures related to suspected v
{% endfor %}
</table>
## Most Recent Assesments
## Most Recent Assessments
<table class="table-bordered">
{% for ass in shortasslist %}
{% set thisass = asss[ass] %}
<tr><td>
<details><summary><h3 style="display:inline"> {{ thisass.vulnerability_details.cve_id }} </h3>
<span>
&nbsp;&nbsp;<a href="assessments/{{ thisass.filename }}">Read Assesment</a>
&nbsp;&nbsp;<a href="assessments/{{ thisass.filename }}">Read Assessment</a>
&nbsp;&nbsp;Updated: </span><span>{{ thisass.open.last_updated }}</span>
<h4>{{ thisass.frontmatter.title }}</h4>
<h5> {{ thisass.frontmatter.affectedProducts }}</h5>
Expand Down
24 changes: 12 additions & 12 deletions product_docs/docs/epas/12/epas_rel_notes/epas12_15_19_rel_notes.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -4,16 +4,16 @@ title: "Version 12.15.19"

EDB Postgres Advanced Server 12.15.19 includes the following enhancements:

| Type | Description | Category |
| -------------- | -------------------------------------------------------------------------------------------------------------------------------------| --------------------- |
| Upstream merge | Merged with community PostgreSQL 12.15.19. See the community [Release Notes](https://www.postgresql.org/docs/release/12.15/) for details. | |
| Enhancement | SQL Profiler and Index Advisor are now extensions and can be downloaded from [EDB Repos](https://repos.enterprisedb.com/). | |
| Type | Description | Category |
|----------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------|
| Upstream merge | Merged with community PostgreSQL 12.15.19. See the community [Release Notes](https://www.postgresql.org/docs/release/12.15/) for details. | |
| Enhancement | SQL Profiler and Index Advisor are now extensions and can be downloaded from [EDB Repos](https://repos.enterprisedb.com/). | |
| Bug fix | Fixed an issue in which "PASSWORD EXPIRE AT" was dumped when the password status wasn't expired. This fix prevents marking the user account as expired after an upgrade. | Profile |
| Bug fix | Fixed the password profile behavior after the password grace time has changed. | |
| Bug fix | Fixed unexpected error for `edb_enable_pruning` parameter. [Support ticket: #89863] | |
| Bug fix | Fixed an issue when a user enters `Ctrl-c`(SIGINT) to cancel the load in EDB\*Loader. [Support ticket: #88734] | |
| Bug fix | Set correct object descriptions for redaction policy to make pg_dump work cleanly with `--clean` and `--if-exists` options. | |
| Bug fix | Fixed pg_dump to dump password verify function for the user profile. | |
| Bug fix | Fixed assertion failure while terminating the process within the autonomous transaction. | |
| Bug fix | Fixed corner-case uninitialized-variable issues in SPL. | |
| Bug fix | Fixed memory leakage in anonymous blocks that use cast expressions. [Support ticket: #88816] | |
| Bug fix | Fixed the password profile behavior after the password grace time has changed. | |
| Bug fix | Fixed unexpected error for `edb_enable_pruning` parameter. [Support ticket: #89863] | |
| Bug fix | Fixed an issue when a user enters `Ctrl-c`(SIGINT) to cancel the load in EDB\*Loader. [Support ticket: #88734] | |
| Bug fix | Set correct object descriptions for redaction policy to make pg_dump work cleanly with `--clean` and `--if-exists` options. | |
| Bug fix | Fixed pg_dump to dump password verify function for the user profile. | |
| Bug fix | Fixed assertion failure while terminating the process within the autonomous transaction. | |
| Bug fix | Fixed corner-case uninitialized-variable issues in SPL. | |
| Bug fix | Fixed memory leakage in anonymous blocks that use cast expressions. [Support ticket: #88816] | |
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
---
title: EDB Postgres Advanced Server 12.19.24 release notes
navTitle: "Version 12.19.24"
---

Released: 9 May 2024

EDB Postgres Advanced Server 12.19.24 includes the following enhancements and bug fixes:

| Type | Description | Addresses&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |
|----------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------|
| Upstream merge | Merged with community PostgreSQL 12.19. Important: this release includes a fix for a security issue. See the [PostgreSQL 12.19 Release Notes](https://www.postgresql.org/docs/release/12.19/) for more information. | |
| Bug&nbsp;fix | Fixed an issue for `edb_filter_log`. Now it correctly redacts the password when the tab is used before the keyword. | #36220 |
| Bug&nbsp;fix | Fixed an issue for `edb_audit` on Windows. Now it correctly rotates the log files based on days configured in `edb_audit_rotation_day`. | #99282 |
| Bug&nbsp;fix | Fixed an issue to fetch all the attributes correctly from the sub link in `CONNECT BY` processing to avoid the server crash. | #102746 |
| Bug&nbsp;fix | Added conditional free path in `add_path()` to avoid the rare possible server crashes when the free path is still in use, specially in the FDWs.| #86497 |
| Bug&nbsp;fix | Fixed a crash issue for `edbldr`. Now `edbldr` loads data into multiple tables with different encodings from the target database. | |
2 changes: 2 additions & 0 deletions product_docs/docs/epas/12/epas_rel_notes/index.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
navTitle: Release Notes
title: "EDB Postgres Advanced Server Release Notes"
navigation:
- epas12_19_24_rel_notes
- epas12_18_23_rel_notes
- epas12_17_22_rel_notes
- epas12_16_21_rel_notes
Expand Down Expand Up @@ -30,6 +31,7 @@ The EDB Postgres Advanced Server (Advanced Server) documentation describes the l

| Version | Release Date | Upstream Merges |
| ----------------------------------------- | ------------ | -------------------------------------------------------------- |
| [12.19.24](epas12_19_24_rel_notes.mdx) | 09 May 2024 | [12.19](https://www.postgresql.org/docs/12/release-12-19.html) |
| [12.18.23](epas12_18_23_rel_notes.mdx) | 08 Feb 2023 | [12.18](https://www.postgresql.org/docs/12/release-12-18.html) |
| [12.17.22](epas12_17_22_rel_notes.mdx) | 09 Nov 2023 | [12.17](https://www.postgresql.org/docs/12/release-12-17.html) |
| [12.16.21](epas12_16_21_rel_notes.mdx) | 25 Sep 2023 | |
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
---
title: EDB Postgres Advanced Server 13.15.21 release notes
navTitle: "Version 13.15.21"
---

Released: 9 May 2024

EDB Postgres Advanced Server 13.15.21 includes the following enhancements and bug fixes:

| Type | Description | Addresses&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |
|----------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------|
| Upstream merge | Merged with community PostgreSQL 13.15. Important: this release includes a security fix. See the [PostgreSQL 13.15 Release Notes](https://www.postgresql.org/docs/release/14.15/) for more information. | |
| Bug&nbsp;fix | Fixed an issue for `edb_filter_log`. Now it correctly redacts the password when the tab is used before the keyword. | #36220 |
| Bug&nbsp;fix | Fixed an issue for `edb_audit` on Windows. Now it correctly rotates the log files based on days configured in `edb_audit_rotation_day`. | #99282 |
| Bug&nbsp;fix | Fixed an issue to fetch all the attributes correctly from the sub link in `CONNECT BY` processing to avoid the server crash. | #102746 |
| Bug&nbsp;fix | Added conditional free path in `add_path()` to avoid the rare possible server crashes when the free path is still in use, specially in the FDWs. | #86497 |
| Bug&nbsp;fix | Fixed a crash issue for `edbldr`. Now `edbldr` loads data into multiple tables with different encodings from the target database. | |
6 changes: 4 additions & 2 deletions product_docs/docs/epas/13/epas_rel_notes/index.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
navTitle: Release Notes
title: "EDB Postgres Advanced Server Release Notes"
navigation:
- epas13_15_21_rel_notes
- epas13_14_20_rel_notes
- epas13_13_19_rel_notes
- epas13_12_18_rel_notes
Expand All @@ -21,8 +22,9 @@ EDB Postgres Advanced Server 13 is built on open-source PostgreSQL 13, which int

The EDB Postgres Advanced Server (Advanced Server) documentation describes the latest version of Advanced Server 13 including minor releases and patches. The release notes in this section provide information on what was new in each release.

| Version | Release Date | Upstream Merges |
| ----------------------------------- | ------------ | ---------------------------------------------------------------------------------------------------------------------- |
| Version | Release Date | Upstream Merges |
|-------------------------------------|--------------|------------------------------------------------------------------------------------------------------------------------|
| [13.15.21](epas13_15_21_rel_notes) | 09 May 2024 | [13.15](https://www.postgresql.org/docs/release/13.15/) |
| [13.14.20](epas13_14_20_rel_notes) | 08 Feb 2024 | [13.14](https://www.postgresql.org/docs/release/13.14/) |
| [13.13.19](epas13_13_19_rel_notes) | 09 Nov 2023 | [13.13](https://www.postgresql.org/docs/release/13.13/) |
| [13.12.18](epas13_12_17_rel_notes) | 25 Sep 2023 | |
Expand Down
17 changes: 17 additions & 0 deletions product_docs/docs/epas/14/epas_rel_notes/epas14_12_0_rel_notes.mdx
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
---
title: EDB Postgres Advanced Server 14.12.0 release notes
navTitle: "Version 14.12.0"
---

Released: 9 May 2024

EDB Postgres Advanced Server 14.12.0 includes the following enhancements and bug fixes:

| Type | Description | Addresses&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; |
|----------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------|
| Upstream merge | Merged with community PostgreSQL 14.12. Important: this release includes a security fix. See the [PostgreSQL 14.12 Release Notes](https://www.postgresql.org/docs/release/14.12/) for more information. | |
| Bug&nbsp;fix | Fixed an issue for `edb_filter_log`. Now it correctly redacts the password when the tab is used before the keyword. | #36220 |
| Bug&nbsp;fix | Fixed an issue for `edb_audit` on Windows. Now it correctly rotates the log files based on days configured in `edb_audit_rotation_day`. | #99282 |
| Bug&nbsp;fix | Fixed an issue to fetch all the attributes correctly from the sub link in `CONNECT BY` processing to avoid the server crash. | #102746 |
| Bug&nbsp;fix | Added conditional free path in `add_path()` to avoid the rare possible server crashes when the free path is still in use, specially in the FDWs. | #86497 |
| Bug&nbsp;fix | Fixed a crash issue for `edbldr`. Now `edbldr` loads data into multiple tables with different encodings from the target database. | |
10 changes: 6 additions & 4 deletions product_docs/docs/epas/14/epas_rel_notes/index.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
navTitle: Release notes
title: "EDB Postgres Advanced Server release notes"
navigation:
- epas14_12_0_rel_notes
- epas14_11_0_rel_notes
- epas14_10_0_rel_notes
- epas14_9_1_rel_notes
Expand All @@ -20,10 +21,11 @@ EDB Postgres Advanced Server 14 is built on open-source PostgreSQL 14, which int

The EDB Postgres Advanced Server (EDB Postgres Advanced Server) documentation describes the latest version of EDB Postgres Advanced Server 14 including minor releases and patches. The release notes in this section provide information on what was new in each release.

| Version | Release date | Upstream merges |
| --------------------------------- | ------------ | ------------------------------------------------------------------------------------------------------------------------ |
| [14.11.0](epas14_11_0_rel_notes) | 08 Feb 2024 | [14.11](https://www.postgresql.org/docs/14/release-14-11.html) |
| [14.10.0](epas14_10_0_rel_notes) | 09 Nov 2023 | [14.10](https://www.postgresql.org/docs/14/release-14-10.html) |
| Version | Release date | Upstream merges |
|-----------------------------------|--------------|--------------------------------------------------------------------------------------------------------------------------|
| [14.12.0](epas14_12_0_rel_notes) | 09 May 2024 | [14.12](https://www.postgresql.org/docs/14/release-14-12.html) |
| [14.11.0](epas14_11_0_rel_notes) | 08 Feb 2024 | [14.11](https://www.postgresql.org/docs/14/release-14-11.html) |
| [14.10.0](epas14_10_0_rel_notes) | 09 Nov 2023 | [14.10](https://www.postgresql.org/docs/14/release-14-10.html) |
| [14.9.1](epas14_9_1_rel_notes) | 25 Sep 2023 | |
| [14.9.0](epas14_9_0_rel_notes) | 21 Aug 2023 | [14.9](https://www.postgresql.org/docs/14/release-14-9.html) |
| [14.8.0](epas14_8_0_rel_notes) | 11 May 2023 | [14.8](https://www.postgresql.org/docs/14/release-14-8.html) |
Expand Down
Loading

1 comment on commit 365131f

@github-actions
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please sign in to comment.