Log message:
postgresql13: removed; end-of-life since 11 November 2021

Log message:
*: recursive bump for icu 78.1

Log message:
postgresql1[3-7]: updated to 17.6, 16.10, 15.14, 14.19, 13.22

PostgreSQL 17.6, 16.10, 15.14, 14.19, 13.22

Security Issues

CVE-2025-8713: PostgreSQL optimizer statistics can expose sampled data within a \ 
view, partition, or child table
CVE-2025-8714: PostgreSQL pg_dump lets superuser of origin server execute \ 
arbitrary code in psql client
CVE-2025-8715: PostgreSQL pg_dump newline in object name executes arbitrary code \ 
in psql client and in restore target server

Bug Fixes and Improvements

This update fixes over 55 bugs that were reported in the last several months. \ 
The issues listed below affect PostgreSQL 17. Some of these issues may also \ 
affect other supported versions of PostgreSQL.

Fix for BRIN indexes using the numeric_minmax_multi_ops operator class that \ 
could cause them to become bloated and inefficient. Please see the \ 
"Updating" section for instructions on how to fix these indexes.
Several fixes for logical replication, including fixes for memory allocation \ 
failure, duplicate transaction replay, infinite wait, unexpected shutdown, and a \ 
standby unable to shutdown.
Fix premature removal of old WAL during a checkpoint, which could impact \ 
recovery when using replication slots.
Revert a change that could reject XML documents over 10MB in size.
Fix how nested character classes (e.g. [[:alpha:]%_]) are handled in SIMILAR TO \ 
expressions.
Restore the ability for PL/pgSQL expressions to use parallel execution.
Avoid a rare scenario where a B-tree index could modify the wrong entry.
Several fixes for MERGE, including incorrect query results with concurrency and \ 
when targeting a table that is a parent in an inheritance hierarchy.
Fix LZ4 decompression failure that could occur on data that is not very compressible.
Prevent an infinite loop in checkpoints on systems with very large \ 
shared_buffers settings.
Fix issues with GSSAPI authentication when using Active Directory accounts with \ 
many group memberships. This release also fixes timing-dependent connection \ 
failures when using SSL or GSSAPI encryption in non-blocking mode.
Fix a crash in libpq function PQcancelCreate().
Fix several resource leaks.

Log message:
*: bump for perl 5.42.0

Log message:
postgresql: updated to 17.5, 16.9, 15.13, 14.18, 13.21

PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21

CVE-2025-4207: PostgreSQL GB18030 encoding validation can read one byte past end \ 
of allocation for text that fails validation

Bug Fixes and Improvements

This update fixes over 60 bugs that were reported in the last several months. \ 
The issues listed below affect PostgreSQL 17. Some of these issues may also \ 
affect other supported versions of PostgreSQL.

Handle self-referential foreign keys on partitioned tables correctly. Creating \ 
or attaching partitions failed to make the required catalog entries for a \ 
foreign-key constraint if the table referenced by the constraint was the same \ 
partitioned table. This resulted in failure to enforce the constraint fully. To \ 
fix this, please see the instructions in the "Updating" section.
Fix for potential data loss issue when using BRIN bloom indexes (e.g. using the \ 
date_bloom_ops operator class).
Fix MERGE into a partitioned table with DO NOTHING actions.
Prevent failure in INSERT commands when the table has a GENERATED column of a \ 
domain type and the domain's constraints disallow NULL values.
Fix ALTER TABLE .. ADD COLUMN to correctly handle the case of a domain type that \ 
has its own default value and the DEFAULT for the column is not set.
Fix issues when performing casts within the keys of JSON constructor expressions.
Fix XMLSERIALIZE() so that the INDENT option is correctly dumped out when it's \ 
present in views or rules. This was noticeable on restores.
Several query planner fixes, including avoiding a premature evaluation of \ 
arguments in an aggregate function that has both FILTER and either ORDER BY or \ 
DISTINCT clauses that could lead to unnecessary failures.
Fix for potentially returning incorrect results when a bitmap scan without \ 
output columns is executed while vacuum is also running on the same table.
Fix performance issues in GIN index search startup when there are many search \ 
keys, for example, jsonbcol ?| array[...] with tens of thousands of array \ 
elements.
Ensure that I/O statistics of active WAL senders are reported within at most one \ 
second.
Fix race condition in handling of synchronous_standby_names immediately after \ 
startup, where a backend might fail to wait for a synchronous commit.
Avoid infinite loop if scram_iterations is set to INT_MAX.
Several fixes for logical replication, including handling of vacuum around \ 
deleted rows that are still required for logical decoding.
Prevent potential data loss when schema modification operations (DDL) that don't \ 
take a strong lock affect tables that are being logically replicated.
Prevent issues in logical replication that could allow duplicate data to be \ 
applied due to apply worker error handling.
Improve how reindexdb handles scheduling parallel reindex operations to achieve \ 
the expected amount of parallelism.

This release also updates time zone data files to tzdata release 2025b for DST \ 
law changes in Chile, plus historical corrections for Iran. Additionally, there \ 
is a new time zone America/Coyhaique for Chile's Aysén Region, to account for \ 
it changing to UTC-03 year-round, which diverges from America/Santiago.

Log message:
*: recursive bump for default Kerberos implementation switch

Log message:
*: recursive bump for icu 77 and libxml2 2.14

Log message:
postgresql1*: updated to 17.2, 16.6, 15.10, 14.15, 13.18, 12.22

PostgreSQL 17.2, 16.6, 15.10, 14.15, 13.18, and 12.22

The issues listed below affect PostgreSQL 17. Some of these issues may also \ 
affect other supported versions of PostgreSQL.

Restore functionality of ALTER ROLE .. SET ROLE and ALTER DATABASE .. SET ROLE. \ 
The fix for CVE-2024-10978 accidentally caused settings for role to not be \ 
applied if they came from non-interactive sources, including previous ALTER \ 
{ROLE|DATABASE} commands and the PGOPTIONS environment variable.
Restore compatibility for the timescaledb and other PostgreSQL extensions built \ 
using PostgreSQL prior to the 2024-11-14 release (17.0, 16.4, 15.8, 14.13, \ 
13.16, 12.20, and earlier). This fix restores struct ResultRelInfo to its \ 
previous size, so that affected extensions don't need to be rebuilt.
Fix cases where a logical replication slot's restart_lsn could go backwards.
Avoid deleting still-needed WAL files during pg_rewind.
Fix race conditions associated with dropping shared statistics entries, which \ 
could lead to loss of statistics data.
Fix crash with ALTER TABLE when checking to see if an index's opclass options \ 
have changed if the table has an index with a non-default operator class.