Prevent execution of enum_recv from SQL (Tom Lane)
The function was misdeclared, allowing a simple SQL command to crash the
server. In principle an attacker might be able to use it to examine the
contents of server memory. Our thanks to Sumit Soni (via Secunia SVCRP)
for reporting this issue. (CVE-2013-0255)
Update minimum recovery point when truncating a relation file (Heikki
Linnakangas)
Once data has been discarded, it's no longer safe to stop recovery at
an earlier point in the timeline.
Fix SQL grammar to allow subscripting or field selection from a
sub-SELECT result (Tom Lane)
Protect against race conditions when scanning
pg_tablespace (Stephen Frost, Tom Lane)
CREATE DATABASE and DROP DATABASE could
misbehave if there were concurrent updates of
pg_tablespace entries.
Prevent DROP OWNED from trying to drop whole databases or
tablespaces (Álvaro Herrera)
For safety, ownership of these objects must be reassigned, not dropped.
Fix error in vacuum_freeze_table_age
implementation (Andres Freund)
In installations that have existed for more than vacuum_freeze_min_age
transactions, this mistake prevented autovacuum from using partial-table
scans, so that a full-table scan would always happen instead.
Prevent misbehavior when a RowExpr or XmlExpr
is parse-analyzed twice (Andres Freund, Tom Lane)
This mistake could be user-visible in contexts such as
CREATE TABLE LIKE INCLUDING INDEXES.
Improve defenses against integer overflow in hashtable sizing
calculations (Jeff Davis)
Reject out-of-range dates in to_date() (Hitoshi Harada)
Ensure that non-ASCII prompt strings are translated to the correct
code page on Windows (Alexander Law, Noah Misch)
This bug affected psql and some other client programs.
Fix possible crash in psql's \? command
when not connected to a database (Meng Qingzhong)
Fix one-byte buffer overrun in libpq's
PQprintTuples (Xi Wang)
This ancient function is not used anywhere by
PostgreSQL itself, but it might still be used by some
client code.
Make ecpglib use translated messages properly
(Chen Huajun)
Properly install ecpg_compat and
pgtypes libraries on MSVC (Jiang Guiqing)
Rearrange configure's tests for supplied functions so it is not
fooled by bogus exports from libedit/libreadline (Christoph Berg)
Ensure Windows build number increases over time (Magnus Hagander)
Make pgxs build executables with the right
.exe suffix when cross-compiling for Windows
(Zoltan Boszormenyi)
Add new timezone abbreviation FET (Tom Lane)
This is now used in some eastern-European time zones.