Security update 10.4, 9.6.9, 9.5.13 - CVE-2018-1115 (#134)

This release fixes one security issue as well as several bugs reported over the last three months. * CVE-2018-1115: Too-permissive access control list on function pg_logfile_rotate() Full release note: https://www.postgresql.org/about/news/1851/
yandex-qatools · Jun 8, 2018 · ea26f69 · ea26f69
1 parent ee7ef49
commit ea26f69
Show file tree

Hide file tree

Showing 3 changed files with 14 additions and 14 deletions.
diff --git a/README.md b/README.md
@@ -19,14 +19,14 @@ Add the following dependency to your pom.xml:
 <dependency>
     <groupId>ru.yandex.qatools.embed</groupId>
     <artifactId>postgresql-embedded</artifactId>
-    <version>2.9</version>
+    <version>2.10</version>
 </dependency>
 ```
 ### Gradle
 
 Add a line to build.gradle:
 ```groovy
-compile 'ru.yandex.qatools.embed:postgresql-embedded:2.9'
+compile 'ru.yandex.qatools.embed:postgresql-embedded:2.10'
 ```
 
 ## Howto
@@ -119,7 +119,7 @@ postgres.start(cachedRuntimeConfig("C:\\Users\\vasya\\pgembedded-installation"))
 
 ### Supported Versions
 
-Versions: 10.3, 9.6.8, 9.5.12, any custom
+Versions: 10.4, 9.6.9, 9.5.13, any custom
 
 Platforms: Linux, Windows and MacOSX supported
 
diff --git a/src/main/java/ru/yandex/qatools/embed/postgresql/distribution/Version.java b/src/main/java/ru/yandex/qatools/embed/postgresql/distribution/Version.java
@@ -6,9 +6,9 @@
  * PostgreSQL Version enum
  */
 public enum Version implements IVersion {
-    V10_3("10.3-1"),
-    V9_6_8("9.6.8-1"),
-    @Deprecated V9_5_12("9.5.12-1"),;
+    V10_4("10.4-1"),
+    V9_6_9("9.6.9-1"),
+    @Deprecated V9_5_13("9.5.13-1"),;
 
     private final String specificVersion;
 
@@ -27,10 +27,10 @@ public String toString() {
     }
 
     public enum Main implements IVersion {
-        V9_5(V9_5_12),
-        V9_6(V9_6_8),
-        V10(V10_3),
-        PRODUCTION(V10_3);
+        V9_5(V9_5_13),
+        V9_6(V9_6_9),
+        V10(V10_4),
+        PRODUCTION(V10_4);
 
         private final IVersion _latest;
 

diff --git a/src/test/java/ru/yandex/qatools/embed/postgresql/TestMultipleInstance.java b/src/test/java/ru/yandex/qatools/embed/postgresql/TestMultipleInstance.java
@@ -17,7 +17,7 @@ public void itShouldAllowToRunTwoInstancesWithDifferentVersions() throws Excepti
         final EmbeddedPostgres postgres0 = new EmbeddedPostgres();
         postgres0.start();
         assertThat(postgres0.getConnectionUrl().isPresent(), is(true));
-        checkVersion(postgres0.getConnectionUrl().get(), "PostgreSQL 10.3");
+        checkVersion(postgres0.getConnectionUrl().get(), "PostgreSQL 10.4");
         postgres0.stop();
 
         final EmbeddedPostgres postgres1 = new EmbeddedPostgres(Version.Main.V9_6);
@@ -37,8 +37,8 @@ public void itShouldAllowToRunTwoInstancesAtSameTime() throws Exception {
         postgres1.start();
         assertThat(postgres1.getConnectionUrl().isPresent(), is(true));
 
-        checkVersion(postgres0.getConnectionUrl().get(), "PostgreSQL 10.3");
-        checkVersion(postgres1.getConnectionUrl().get(), "PostgreSQL 10.3");
+        checkVersion(postgres0.getConnectionUrl().get(), "PostgreSQL 10.4");
+        checkVersion(postgres1.getConnectionUrl().get(), "PostgreSQL 10.4");
 
         postgres0.stop();
         postgres1.stop();
@@ -55,7 +55,7 @@ public void itShouldAllowToRunTwoInstancesAtSameTimeAndWithDifferentVersions() t
         assertThat(postgres1.getConnectionUrl().isPresent(), is(true));
 
         checkVersion(postgres0.getConnectionUrl().get(), "PostgreSQL 9.6");
-        checkVersion(postgres1.getConnectionUrl().get(), "PostgreSQL 10.3");
+        checkVersion(postgres1.getConnectionUrl().get(), "PostgreSQL 10.4");
 
         postgres0.stop();
         postgres1.stop();