...
 
Commits (4)
  • Markus Wanner's avatar
    Add patch geojson-fix-3094.patch, prepare for upload to unstable · f9ce1bfe
    Markus Wanner authored
    back-ported from the 2.1.7 release, to fix a crash of the database
    backend process when given invalid GeoJSON data.
    f9ce1bfe
  • Bas Couwenberg's avatar
    975e9c99
  • Emilio Pozuelo Monfort's avatar
    Import Debian changes 2.1.4+dfsg-3+deb8u1 · 8b3fa2d4
    Emilio Pozuelo Monfort authored
    postgis (2.1.4+dfsg-3+deb8u1) jessie-security; urgency=medium
    
      * Non-maintainer upload by the LTS Team.
      * CVE-2017-18359: denial of service via crafted ST_AsX3D function input
    
    postgis (2.1.4+dfsg-3) unstable; urgency=high
    
      * Add patch geojson-fix-3094.patch, back-ported from the 2.1.7 release,
        to fix a crash of the database backend process when given invalid
        GeoJSON data.
    
    postgis (2.1.4+dfsg-2) unstable; urgency=medium
    
      * Add Dutch translation by Frans Spiesschaert. Closes: #765409.
      * Bump S-V: no changes required.
    
    postgis (2.1.4+dfsg-1) unstable; urgency=medium
    
      [ Paulo Flabiano Smorigo ]
      * add -lm for liblwgeom to avoid linkage problem.
      * enable ppc64el.
        (closes: #759505)
    
      [ Bas Couwenberg ]
      * Add Swedish translation by Martin Bagge. Closes: #761975.
      * Add strip-invalid-whitespace-in-pom.patch to fix mh_cleanpom failure.
      * Update copyright file.
      * Add patch to fix FTBFS on hurd-i386.
    
      [ Markus Wanner ]
      * New upstream release, 2.1.4. Adapt packaging to the new version.
      * Drop patches debian-versions, fix-armel, use-json-c, and
        postgresql-9.4-fixes.patch, these should be fixed upstream.
      * Refresh patches use-debian-maven, honor-build-flags, and
        enable-ppc64el.patch.
      * Add patch correct-java-version.patch.
    
    postgis (2.1.3+dfsg-4) unstable; urgency=low
    
      [ Bas Couwenberg ]
      * Add Czech translation by Michal Šimůnek. Closes: 751426.
      * Add Japanese translation by victory. Closes: 756718.
      * Add Danish translation by Joe Dalton. Closes: 757653.
      * Update for PostgreSQL 9.4.
    
      [ Jérémy Lal ]
      * Switch Build-Deps back to default-jdk instead of openjdk 7 | 8,
        as gcj-jdk does work now.
      * Backport upstream commits fixing test results with PostgreSQL 9.4.
      
      [ Markus Wanner ]
      * Let postgis recommend the (most up to date) extension, rather than
        only suggesting it.
    
    postgis (2.1.3+dfsg-3) unstable; urgency=high
    
      * In patch use-debian-maven: Also drop the version requirement for the
        maven-javadoc-plugin.
      * Add Breaks & Replaces against liblwgeom-2.1.2, which shipped
        liblwgeom-2.1.3.so in a package named liblwgeom-2.1.2 due to the
        attempted quick security fix. Closes: #749015.
    
    postgis (2.1.3+dfsg-2) unstable; urgency=high
    
      [ Bas Couwenberg ]
      * Bump liblwgeom package name from 2.1.2 to 2.1.3.
        (closes: #748756)
    
      [ Markus Wanner ]
      * Add NEWS.Debian to warn about a possibly breaking change.
      * Correct patch use-json-c. Drop explicit dependencies, but rely on
        shlibs:Depends, instead. Closes: #748332.
      * Revert parts of the patch use-debian-maven to actually build the
        javadocs. Add a libpostgis-java-doc package carrying the docs.
    
    postgis (2.1.3+dfsg-1) unstable; urgency=high
    
      * New upstream release, 2.1.3: strengthens the code to forbid database
        users to trigger opening of arbitrary files or network connections by
        the system user running the PostgreSQL server process.
      * Add B-D-I libmaven-javadoc-plugin-java to support a new plugin in the
        jdbc pom file - supposedly generating java documentation.
      * Adjust the following patches to the new release: debian-versions, and
        use-debian-maven.
      * Refresh line numbers on: honor-build-flags, use-json-c.
      * Drop obsolete patch: java-version-fix.
    
    postgis (2.1.2+dfsg-3) unstable; urgency=low
    
      * Also use dh-autoreconf to update libtool.m4. Closes: #744648. Move
        that and dh_autotools-dev above the copying step.
      * Update B-D on libjson-c-dev. Add patch use-josn-c to not only detect,
        but actually use the new directory for its include files.
        Closes: #745010.
      * Allow translations of the debconf notice for postgis-2.0 deprecation.
      * Add a German translation.
      * Add a Russian translation by Yuri Kozlov. Closes: #744268.
      * Add a French translation by Julien Patriarca. Closes: #744749.
      * Add a Polish translation by Michał Kułach. Closes: #745068.
      * Add a Portuguese translation by Américo Monteiro. Closes: #745148.
      * Add a Spanish translation by Matias A. Bellone. Closes: #745785.
      * Add a Italian translation by Beatrice Torracca. Closes: #747587.
    
    postgis (2.1.2+dfsg-2) unstable; urgency=medium
    
      * Fix arch-only builds by moving the maven-repo-helper dependency from
        B-D-I to B-D.
    
    postgis (2.1.2+dfsg-1) unstable; urgency=medium
    
      * Add myself to Uploaders.
      * Update copyright file using copyright-format 1.0.
      * Repack upstream tarball, remove OGC test cases with unclear license.
        (closes: #743489)
      * Add gbp.conf to use pristine-tar by default.
      * Add man page for raster2pgsql.
        (closes: #717307)
      * Bump Debhelper compatibility to 9.
      * Add partial German translation for documentation.
        Thanks to Chris Leick for the patch.
        (closes: #729284)
    
    postgis (2.1.2-1) unstable; urgency=low
    
      * New upstream release, 2.1.1. Closes: #728724.
      * Adapt liblwgeom package name and dependencies to match the new release
        version number.
      * Add a suggestion for postgis-doc. Closes: #737497.
      * Refresh patches debian-versions, honor-build-flags, and
        java-version-fix.
      * Drop patches fix-kfreebsd, fix-big-endian, joinsel-issue2543, and
        doc-resources - these got applied upstream.
      * Add upstream issue number to patch fix-armel - that one hasn't been
        applied upstream, yet.
    
    postgis (2.1.1-6) unstable; urgency=low
    
      * Recommend postgresql-contrib-M.N for the fuzzystrmatch
        extension, which postgis_tiger_decoder depends on.
      * Update README.Debian, make sure the sql scripts are included in the
        -scripts package for the newest Postgres version as well.
        Closes: #724626.
      * Correct java-version-fix, so the jar-version becomes 2.1.1 rather than
        some rc. Closes: #721721.
      * Deduplicate highly redundant .sql files in *-postgis-scripts.
      * Drop the ored dependency on openjdk-6-jdk.
      * Add a couple more files to the extend-diff-ignore.
    
    postgis (2.1.1-5) unstable; urgency=low
    
      * Use dh-autoreconf for up-to-date config.guess and config.sub.
        Closes: #727945.
    
    postgis (2.1.1-4) unstable; urgency=low
    
      * Drop an unneeded fixmakedoc patch.
      * Add style.css and images to postgis-doc. Closes: #649352.
    
    postgis (2.1.1-3) unstable; urgency=low
    
      * Fix FTBFS on at least powerpc and mips by commenting out a few tests
        that check against a serialized representation, which is architecture
        dependent.
      * Apply (experimental) upstream patch preventing against selectivity
        estimates bigger than 1.0.
    
    postgis (2.1.1-2) unstable; urgency=medium
    
      * Fix FTBFS on armel, maybe others, with yet another patch.
      * debian/control: bumped Standard-Versions to 3.9.5, no changes needed.
    
    postgis (2.1.1-1) unstable; urgency=low
    
      * New upstream release
      * Drop patches upstream-r11979, upstream-r11983, upstream-r11990, and
        minor-r11979-correction; these are included in this release.
      * control, rules, liblwgeom-2.1.*.{install,symbols}: adapt to new liblwgeom
        version.
      * Adjust patch debian-versions: in doc/Makefile.comments, refer to
        Postgres 9.3, as that's now default. Set POSTGIS_LIBXML2_VERSION to
        2.9.1, as currently shipped.
      * Adjust line numbers in patches honor-build-flags and link-liblwgeom
    
    postgis (2.1.0-4) unstable; urgency=low
    
      * Rename pg-X.Y-postgis-2.1-scripts package to exclude PostGIS version
        number.
      * Add transitional postgis-2.0-scripts packages for all Postgres
        versions supported by the old *and* new PostGIS version. These
        effectively remove scripts and the postgis.control file prior to
        installing a newer *-postgis-scripts package, which Breaks+Replaces
        the old one. Add appropriate notification messages on upgrade.
      * Add patches upstream-r11983 and upstream-r11990 to try some more
        big-endian fixes.
    
    postgis (2.1.0-3) unstable; urgency=low
    
      * Update patch upstream-r11934 to cover rev 11979, instead. It seems to
        be a more thorough fix. Add minor-r11979-correction patch to account
        for some new WARNINGs, that didn't appear, before.
    
    postgis (2.1.0-2) unstable; urgency=low
    
      * Correct generation of debian/control: drop an unnecessary grep in
        debian/pgversions. I broke it when changing to '9.0+'.
      * Copy binaries for the common binary package 'postgis' from the newest
        version, rather than hardcoding 9.1.
      * Add experimental patch from upstream to increase pass rate on
        non-Intel architectures (upstream-r11934).
      * Add a description and some tags to patch fix-manpage.
    
    postgis (2.1.0-1) unstable; urgency=low
    
      * New upstream release
      * Update pgversions, use '9.0+' feature of pg-common >= 148.
      * Adjust liblwgeom version and symbols for new version.
      * Update build dependencies according to README.postgis (FIXME: prefer
        geos-3.4)
      * Adapt patches debian-versions, java-version-fix, link-liblwgeom,
        honor-build-flags.
      * Refresh line numbers on patches: fixmakedoc, fix-spelling.
      * Drop patches: fix-manpages, fix-test-case-for-i386,
        fix-tests-on-big-endian: applied upstream.
      * shp2pgsql-gui.1 is now provided upstream. Drop the debian variant. Add
        a patch stripping an initial UTF-8 marker from the upstream file.
    
    postgis (2.0.3-8) unstable; urgency=low
    
      * Don't err out when setting JAVA_HOME, but only later in
        build-indep. So arch-only builds that don't have (nor need) the java
        cruft available can succeed.
    
    postgis (2.0.3-7) unstable; urgency=low
    
      * Let rules check for different OpenJDK versions supported and set
        JAVA_HOME accordingly.
      * Use a simple rm rather than invoking maven. Allows us to move all java
        related Build-Depends back to Build-Depends-Indep.
    
    postgis (2.0.3-6) unstable; urgency=low
    
      * Cleanup check target, reduce duplication.
      * Re-add postgis_restore.pl from the utils directory. Closes: #718358.
      * Add patch fix-tests-on-big-endian to fix unit tests on big
        endian. Closes: #718749.
    
    postgis (2.0.3-5) unstable; urgency=low
    
      * Build-Deps: rather than default-jdk, depend on openjdk 6 or 7, as the
        gcj-jdk didn't work.
      * Add patch fix-kfreebsd to get rid of a compilation error on kFreeBSD.
      * rules: if 'make check' fails, print all the diffs of failing tests on
        stdout.
    
    postgis (2.0.3-4) unstable; urgency=low
    
      * Build-Deps: also make libmaven-clean-plugin-java and
        libmaven-jar-plugin-java a full build dependency. Fixes another FTBFS.
    
    postgis (2.0.3-3) unstable; urgency=low
    
      [Mònica Ramírez Arceda]
      * Add a manpage for shp2pgsql-gui. Closes: #656012.
    
      [Markus Wanner]
      * Add fix-test-case-for-i386 patch, back-ported from upstream's
        r10642. Fixes tests on i386 (and possibly other non-amd64
        architectures).
    
    postgis (2.0.3-2) unstable; urgency=low
    
      * Correct dependency on libgdal-dev, allowing the old, now transitional
        libgdal1-dev to satisfy it as well.
      * Build-Deps: correct libgeos-dev version requirement, depend on
        libpostgresql-jdbc-java instead of (transitional) libpg-java.
      * Tweak extend-diff-ignore to save us a copying dance in
        debian/rules. Cleanup the 'clean' target a bit.
      * Make maven2 a full build-dep (not just B-D-Indep). Closes: #714712.
      * Pass an LD_PRELOAD to postgres when running 'make check', so the
        postgis library being loaded can find liblwgeom (and doesn't try to
        use a pre-installed one).
      * Add postgresql-common build dependency, as the above needs a relatively
        new pg_createcluster feature.
      * Drop libpostgresql-jdbc-java from B-D-I, it's already in B-D.
    
    postgis (2.0.3-1) unstable; urgency=low
    
      [Markus Wanner]
      * Team upload
      * New upstream release, 2.0.3
      * Drop Build-Dep on postgresql server binaries.
      * Downgrade postgresql-9.1-postgis dependency on postgis to a
        recommendation. Downgrade several conflicts to breaks.
      * Upgrade postgresql-9.1-java misc-depends from suggestion to dependency.
      * Add patch fix-spelling: fixes a common spelling error in
        liblwgeom/lwout_wkt.c.
      * Ignore changes of some auto-updated files (via source/options). Let
        debian/rules cleanup some more generated files.
      * rules: use a separate build directory per Postgres version, swap
        dh_makeshlibs and dh_installdeb, build in the appropriate build targets,
        let install only install pre-built stuff.
      * Compile the postgis jdbc java library again, using maven directly. Add
        required Build-Depends-Indeps.
      * Separate large SQL scripts and perl utils. Put them in their own
        architecture independent indepentend package (..-scripts).
      * Separate PostGIS documentation into a postgis-doc package, register its
        contents with doc-base.
      * Append the PostGIS version to postgresql-9.1-postgis, so multiple
        versions of it can be co-installed. Required to keep systems working
        after an upgrade.
      * Represent the fact that lwgeom isn't backward compatible by renaming
        liblwgeom2 to liblwgeom-2.0.3.
      * Add patch java-version-fix: Corrects java jdbc jar version.
      * Policy updated to 3.9.4. No changes.
      * Add pgversions and allow generation of debian/control and various
        install files based on it.
      * Update debian/copyright a bit.
      * Update and improve watchfile.
    
      [Stephen Frost]
      * Split out liblwgeom2 and liblwgeom-dev from postgis.
      * Add patches debian-versions and link-liblwgeom.
      * Let postgis install under /usr/lib/postgresql rather than under
        /usr/lib/postgis plus symlink in the former directory.
      * debian/rules: improve cleanup target.
      * Simplify and tweak build rules.
    
      [Jerome Villeneuve Larouche]
      * Removed old patches (generator, html_doc_resources, install)
      * Added patch fixmakedoc for doc/Makefile.comments.
    
    postgis (1.5.3-2) unstable; urgency=low
    
      * Moved pgsql2shp/shp2pgsql under conventional /usr/bin path.
        (closes: #648176)
      * New patch html_doc_resourcesi added: now installing HTML documentation. 
        Thanks Andrew Harvey.
        (closes: #649352)
    
    postgis (1.5.3-1) unstable; urgency=low
    
      * New upstream minor release, with fix for PostgreSQL 9.1.
      * Repository moved to git and changed Vcs-* fields in debian/control.
      * Removed obsolete debian/*_lenny.
      * Policy bumped to 3.9.2. No changes.
      * Moved to source format 3.0 with quilt support.
      * Dehelper compatibility level set to 8.
      * Updated README to reflect current location of template SQL files.
        (closes: #575622)
      * Postrm was assigned to the wrong package (postgis), which caused 
        unexpected behavior on purging. Now each purge of postgresql-*-postgis will
        cause extension removal.
        (closes: #596663)
      * Added PostgreSQL 9.1 support. 
        (closes: #633111)
      * Dropped PostgreSQL 8.4 support, as required for wheezy.
        (closes: #639474,#642356)
      * Fixed (again) README.Debian for paths.
        (closes: #575622)
    
    postgis (1.5.2-1) unstable; urgency=low
    
      * New upstream release, with a few bug fixes.
      * Added shp2pgsql-gui binary.
      * Removed patches, applied upstream: getopt.	
    
    postgis (1.5.1-5) unstable; urgency=high
    
      * This version requires geos >= 3.1.1, debian/control updated.
        (closes: #580462)
      * Moved libpostgis-java to java section.
      * README.Debian has been fixed for old lwpostgis.sql since ages. Just ack.
        (closes: #575622)
    
    postgis (1.5.1-4) unstable; urgency=high
    
      * [PATCH] getopt.dpatch added to avoid var collisions among Postgis getopt
        and glibc one. That solves a FTBS on mips/mipsel.
    
    postgis (1.5.1-3) unstable; urgency=medium
    
      * Removed custom CFLAGS which probably caused FTBS on mips/mipsel archs.
    
    postgis (1.5.1-2) unstable; urgency=low
    
      * Added generator.dpatch to avoid a buffer overflow on alpha due to 
        a too narrow buffer apparently.
    
    postgis (1.5.1-1) unstable; urgency=low
    
      * New upstream release, with a few bug fixes.
    
    postgis (1.5.0-1) unstable; urgency=low
    
      * New upstream major release, with many enhancements.
      * Policy bumped to 3.8.4, no changes.
      * Added libxml2-dev as new build-dep. 
    
    postgis (1.4.0-2) unstable; urgency=low
    
      * Upload to unstable.
      * Better parameterized debian/rules against postgis $(VERSION).
      * Added dblatex and libcunit1-dev among build-deps.
      * Added postgis_comments.sql to contrib/ SQL templates.
      * Dropping 8.3 support, no more supported for squeeze.
        (closes: #559587)
      * Do not stop on error in postrm if the target dir does not exist.
        (closes: #560409)
    
    postgis (1.4.0-1) experimental; urgency=low
    
      * New upstream release. 
      * Updated configure arguments now obsolete/changed.
      * Required some new var initialization for installing in debian/ its trees.
      * The liblwgeom solib is now named postgis, so changed a few things around.
      * Updated build-dep: proj -> libproj-dev.
      * Policy bumped to 3.8.3. No changes.
      * Debhelper level set to 7.
      * Added ${misc:Depends}.
      * Now postgresql >= 8.3, geos >= 3 and proj >= 4.5 are required. This is
        reflected in debian/control for safety.
      * Added PostgreSQL 8.4 support, the 8.3 version will be dropped when 
        required. Now the .in template for postrm changed for multiversioning.
      * Now build-dep on default-jdk which is DFSG-safe.
      * Removed Fabio Tranchitella among Uploaders because retired from DebianGis.
      * Now build-dep on imagemagick because doc generation requires convert tool.
      * Added patch install.dpatch to manage minor inconsistencies in the java
        inatallation scripts. 
      * stamp files are now auto-cleaned.
      * Cleaned debian/rules to be idempotent.
    
    postgis (1.3.5-1) unstable; urgency=low
    
      * New upstream release.
      * debian/control: bumped Standard-Versions to 3.8.0, no changes needed.
      * debian/rules: copy utils/*.pl to the binary package. (Closes: #491154)
    
    postgis (1.3.3-3) unstable; urgency=low
    
      * Added Vcs-* fields in debian/control.
      * Fixed download URL in debian/copyright.
      * Now it installs the shared lib in a private postgis path and makes a
        hard link in the postgres library path at configure time. That would
        allow coexistence of different flavors of the library which could be
        used by different DBs at run-time and allowing soft/hard-upgrade scripts
        working. (closes: #441794, #441797)
    
    postgis (1.3.3-2) unstable; urgency=high
    
      * Dropped postgresql 8.2 support due to removal in Lenny.
        (closes: #474287)
    
    postgis (1.3.3-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.3.2-2) unstable; urgency=low
    
      * Add support for postgresql-8.3. (Closes: #466417, #471689)
    
    postgis (1.3.2-1) unstable; urgency=low
    
      [ Francesco Paolo Lovergine ]
      * Added Homepage field in debian/control
      * Fixed lintian warning: debian-rules-ignores-make-clean-error
    
      [ Fabio Tranchitella ]
      * New upstream release.
      * Updated Standard-Version to 3.7.3.
    
    postgis (1.3.1-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.2.1-2) unstable; urgency=low
    
      * Added build-dep from libjts-java 1.7
        (closes: #425919)
      * Added me among uploaders.
    
    postgis (1.2.1-1) unstable; urgency=low
    
      * New upstream release.
      * Migrate to PostgreSQL 8.2-only (Closes: #419297)
      * Remove busted templategis from the build (new in 1.2.1 anyway).
        (Currently attempts to install files in /etc/default, doesn't
         respect $DESTDIR and overall looks like a godawful mess)
    
    postgis (1.1.6-2) unstable; urgency=low
    
      * debian/README.Debian: added documentation for the new users on how to use
        postgis and how to enable it for new or existent databases.
    
    postgis (1.1.6-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.1.5-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.1.4-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.1.3-1) unstable; urgency=low
    
      * New upstream release.
    
    postgis (1.1.2-1) unstable; urgency=low
    
      - Fabio Tranchitella <kobold@debian.org>
        * New upstream release. (Closes: #314854)
        * Renamed packages to follow the actual naming conventions. 
          (Closes: #312675)
        * Re-packaging, let's try to have postgis in etch. (Closes: #309528, #310094)
        * Fixed several FTBFS and uninstallable bugs.
          (Closes: #316519, #335631, #363946, #323120)
        * Fixed libpostgis-java package FTBFS. (Closes: #308848)
        * Move to the new postgresql infrastructure. (Closes: #321913, #312676)
        * Team maintainership, added myself as uploader.
    
      - Stephen Frost <sfrost@debian.org>
        * Added myself as uploader
        * Removed Alex from uploaders (for now at least)
        * Cleaned up doc/html/postgis.html handling
        * Renamed postgis-common -> postgis
        * Made postgis package Arch: any
        * Moved PostGIS binaries into base postgis package
        * Changed postgis package to only suggest server packages (could very
          reasonably be installed on a non-server machine for the PostGIS
          binaries)
        * Dropped extra extraneous linking (previously the server module and
          the binaries were linking to everything the Postgres server linked
          to, unnecessary and potentially dangerous)
        * Dropped support for 7.4, after discussion with Martin Pitt and others
          it's clear that there isn't any need for a 7.4 version of PostGIS in
          etch.
        * New upstream release Closes: #311732
    
    postgis (1.1.0-7) unstable; urgency=low
    
      * postgresql-postgis-common should depend on postgresql-common | postgresql, 
        not the other way.
    
    postgis (1.1.0-6) unstable; urgency=low
    
      * Closes: #312675
        postgresql-postgis-utils is the only utils package, replacing the 
        previous postgresql-pg_version-postgis-utils. a further elimination 
        of older method reminiscence.
    
    postgis (1.1.0-5) unstable; urgency=low
    
      * Closes: #312675
        postgresql-postgis-utils is the only utils package, replacing the 
        previous postgresql-pg_version-postgis-utils.
      * Closes: 335631
        Depends on libgeos which passed c2 ABI transition.
      * Uses /usr/share/postgresql-common/supported-versions to dynamically
        detect postgresql supported versions. thanks martin.
    
    postgis (1.1.0-4) unstable; urgency=low
    
      * made invariable control file to match standards. the control file 
        may be made automatically by calling 'debian/rules maintainer-configure'
      * the supported postgresql versions may be filtered, by filling 
        'debian/_supported.postgresql'.
      * the postgis binary packages have been renamed, to obey the postgresql 
        standard for extension packages: now their name allways begins with 
        'postgresql', eventually followed by the postgresql major and minor 
        version, if a specific one is needed.
        'libpostgis' has become 'postgis'.
    
    postgis (1.1.0-3) unstable; urgency=low
    
      * minor bug fixes
      * recompilation
    
    postgis (1.1.0-2) unstable; urgency=low
    
      * minor bug fixes
      * the package builds again on systems without multiclustering postgresql.
    
    postgis (1.1.0-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (1.0.4-2) unstable; urgency=low
    
      * Closes: #321913 Closes: #312676
        Support of multiple postgis installations on the same postgresql server.
        Please note:
        - The template database will be template_gis#SONAME#,
        - The famous (lw)?postgis.sql file will be postgis#SONAME#.sql,
        where #SONAME# is roughly the major upstream postgis version.
      * Closes: #323120
        The building process is autodetecting the appropriate postgresql-dev.
      * README.Debian updated to support multiversion postgresql architecture.
      * Closes: #314854
        Newer upstream version.
      * Minor improvements to make the build process more quiet.
      * Default variables are being kept in configuration files. Thus, the same 
        package diff will serve for postgis-0.9 and 1.0.
      * Closes: #310100
        The template database is no longer been installed/removed with every
        installation/remove/upgrade of postgis. It should have received finer 
        grained parameters, anyway .
    
    postgis (0.9.2-1) unstable; urgency=low
    
      * Basic support for libpostgis0.
        The only package(s) made are the library and examples one(s), so that 
        postgis-0.9.2 databases can be created and used, while not clashing with 
        files and utilities for postgis-1.0.
    
    postgis (1.0.4-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
      * Closes: #316519
        Changed the dependencies in control file to work with multiversion 
        postgresql.
    
    postgis (1.0.3-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
      * Adapted regress/test_index_concurrency to createdb.postgis method.
    
    postgis (1.0.1-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
      * Closes: #309528
        binary-all has been separated from binary-arch
      * Closes: #311732
        upstream fix: problem with ' char in field names.
      * Closes: #310094
        all warnings have been clarified and/or the issues have been fixed
      * libpostgis-java-debug has been split from libpostgis-java
      * bug #308728 has been reassigned to postgresql
    
    postgis (1.0.0-2) unstable; urgency=low
    
      * Closes: #308848
        gcj has been specifically set as the required java compiler, although other
        java compilers would do as well
      * Closes: #310101
        createdb.postgis documentation updated
    
    postgis (1.0.0-1) unstable; urgency=low
    
      * First official release for the Debian archive.
      * Corrected build-depends.
    
    postgis (1.0.0RELEASE-4) unstable; urgency=low
    
      * example wkb_reader now compiles generically. tested with i386 and ppc.
    
    postgis (1.0.0RELEASE-3) unstable; urgency=low
    
      * mktemplate_gis and rmtemplate_gis work on dash.
    
    postgis (1.0.0RELEASE-2) unstable; urgency=low
    
      * Fixed minor typos in manual pages.
      * Documented the special debian usage of the ogc_test_suite.
      * Fixed bug in automatic upstream version tracking.
    
    postgis (1.0.0RELEASE-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (1.0.0RELEASE-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
      * added libpostgisjava replacement directive.
      * improved automatic upstream version sensing: adding RELEASE for clean
        upstream versions.
    
    postgis (1.0.0RC6-6) unstable; urgency=low
    
      * renamed libpostgisjava to libpostgis-java
      * specified libgeos2 version 2.1.1 and above as a dependency. 
        upstream authors will be warned to document this too.
    
    postgis (1.0.0RC6-5) unstable; urgency=low
    
      * Cleaned up removal of .cvsignore files, so it will not be imposed on upstream.
      * Added optional usage of postgresql-dev installed at custom location.
      * NOTICE: Since manpages have been added and constantly updated after 1.0.0rc6 
        was released, please     copy them from postgis-cvs to the orig directory, or 
        use orig file uploaded with this package
      * Improved the dependencies system, following suggestions from 
        Markus Schaber <markus@schabi.de>
    
    postgis (1.0.0RC6-4) unstable; urgency=low
    
      * Adjusted useless i386-linux-gcc to gcc (existent for postgresql 7.4 only), thanks to comments from
        Giuseppe Sacco <giuseppe@eppesuigoccas.homedns.org>
    
    postgis (1.0.0RC6-3) unstable; urgency=low
    
      * Improved build-depends, thanks to comments from
        Giuseppe Sacco <giuseppe@eppesuigoccas.homedns.org>
    
    postgis (1.0.0RC6-2) unstable; urgency=low
    
      * Improved mktemplate_gis, and renamed from mktemplate_gis.sh.
      * Updated man pages.
      * Using createdb.postgis as the main method of creating gis enambled databases.
      * Updated upstream testing scripts to use createdb.postgis.
      * Fixind problem: postgres should be able to call mktemplate_gis.
    
    postgis (1.0.0RC6-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (1.0.0RC4-2) unstable; urgency=low
    
      * Minor bugfix in debian/rules
      * Removed need for executable files in ./debian. rules is the only executable.
      * Improvement for mktemplate_gis: now it may be run to grant full privileges to any user as argument.
    
    postgis (1.0.0RC4-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (1.0.0RC3-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (1.0.0RC2-1) unstable; urgency=low
    
      * Automatic upstream version tracking.
    
    postgis (0.9.0-1) unstable; urgency=low
    
      * Initial Release.
    8b3fa2d4
  • Bas Couwenberg's avatar
    a3d91141
postgis (2.1.4+dfsg-3+deb8u2) UNRELEASED; urgency=medium
* Use jessie branch in gbp.conf and Vcs-Git URL.
-- Bas Couwenberg <sebastic@debian.org> Sun, 03 May 2015 00:17:39 +0200
postgis (2.1.4+dfsg-3+deb8u1) jessie-security; urgency=medium
* Non-maintainer upload by the LTS Team.
* CVE-2017-18359: denial of service via crafted ST_AsX3D function input
-- Emilio Pozuelo Monfort <pochu@debian.org> Thu, 31 Jan 2019 18:24:33 +0100
postgis (2.1.4+dfsg-3) unstable; urgency=high
* Add patch geojson-fix-3094.patch, back-ported from the 2.1.7 release,
to fix a crash of the database backend process when given invalid
GeoJSON data.
-- Markus Wanner <markus@bluegap.ch> Mon, 30 Mar 2015 19:40:22 +0200
postgis (2.1.4+dfsg-2) unstable; urgency=medium
* Add Dutch translation by Frans Spiesschaert. Closes: #765409.
......
......@@ -4,7 +4,7 @@ Priority: optional
Maintainer: Debian GIS Project <pkg-grass-devel@lists.alioth.debian.org>
Uploaders: Stephen Frost <sfrost@debian.org>, Francesco Paolo
Lovergine <frankie@debian.org>, Markus Wanner <markus@bluegap.ch>,
Bas Couwenberg <sebastic@xs4all.nl>
Bas Couwenberg <sebastic@debian.org>
Build-Depends: debhelper (>= 9), po-debconf,
dpkg-dev (>= 1.16.1~), autotools-dev, dh-autoreconf, autoconf2.13,
flex, bison, rdfind, libgeos-dev (>= 3.3),
......@@ -23,7 +23,7 @@ Build-Depends-Indep: default-jdk,
Standards-Version: 3.9.6
Homepage: http://postgis.refractions.net/
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-grass/postgis.git
Vcs-Git: git://anonscm.debian.org/pkg-grass/postgis.git
Vcs-Git: git://anonscm.debian.org/pkg-grass/postgis.git -b jessie
Package: postgis
Architecture: any
......
......@@ -4,7 +4,7 @@ Priority: optional
Maintainer: Debian GIS Project <pkg-grass-devel@lists.alioth.debian.org>
Uploaders: Stephen Frost <sfrost@debian.org>, Francesco Paolo
Lovergine <frankie@debian.org>, Markus Wanner <markus@bluegap.ch>,
Bas Couwenberg <sebastic@xs4all.nl>
Bas Couwenberg <sebastic@debian.org>
Build-Depends: debhelper (>= 9), po-debconf,
dpkg-dev (>= 1.16.1~), autotools-dev, dh-autoreconf, autoconf2.13,
flex, bison, rdfind, libgeos-dev (>= 3.3),
......@@ -23,7 +23,7 @@ Build-Depends-Indep: default-jdk,
Standards-Version: 3.9.6
Homepage: http://postgis.refractions.net/
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-grass/postgis.git
Vcs-Git: git://anonscm.debian.org/pkg-grass/postgis.git
Vcs-Git: git://anonscm.debian.org/pkg-grass/postgis.git -b jessie
Package: postgis
Architecture: any
......
......@@ -6,7 +6,7 @@ upstream-branch = upstream
# The default name for the Debian branch is "master".
# Change it if the name is different (for instance, "debian/unstable").
debian-branch = master
debian-branch = jessie
# git-import-orig uses the following names for the upstream tags.
# Change the value if you are not using git-import-orig
......
#3704, ST_AsX3D crashes on empty geometry
https://trac.osgeo.org/postgis/ticket/3704
--- a/liblwgeom/lwout_x3d.c
+++ b/liblwgeom/lwout_x3d.c
@@ -50,6 +50,15 @@
{
int type = geom->type;
+ /* Empty string for empties */
+ if( lwgeom_is_empty(geom) )
+ {
+ char *ret = NULL;
+ ret = lwalloc(1);
+ ret[0] = '\0';
+ return ret;
+ }
+
switch (type)
{
case POINTTYPE:
--- a/regress/tickets.sql
+++ b/regress/tickets.sql
@@ -879,5 +879,8 @@
SELECT '#2788', valid, reason, ST_AsText(location) from ST_IsValidDetail('POLYGON((0 0, 0 1, 2 1, 2 2, 1 2, 1 0, 0 0))'::geometry);
SELECT '#2870', ST_Summary('Point(151.215289 -33.856885)'::geometry::bytea::geography);
+-- #3704
+SELECT '#3704', ST_AsX3D('LINESTRING EMPTY') = '';
+
-- Clean up
DELETE FROM spatial_ref_sys;
--- a/regress/tickets_expected
+++ b/regress/tickets_expected
@@ -259,3 +259,4 @@
#2712|LINESTRING EMPTY
#2788|f|Self-intersection|POINT(1 1)
#2870|Point[GS]
+#3704|t
Description: Fix for GeoJSON ingestion
Malformed JSON data used to crash the database backend process and
especially web services use to pass on such JSON data unexamined.
Forwarded: not-needed
Bug: http://trac.osgeo.org/postgis/ticket/3094
Origin: upstream, http://trac.osgeo.org/postgis/changeset/13400
Author: Paul Ramsey <pramsey@cleverelephant.ca>
--- a/liblwgeom/lwin_geojson.c
+++ b/liblwgeom/lwin_geojson.c
@@ -59,7 +59,11 @@
if( NULL != json_object_get_object(poTmp) )
{
- assert( NULL != json_object_get_object(poTmp)->head );
+ if( NULL == json_object_get_object(poTmp)->head )
+ {
+ geojson_lwerror("invalid GeoJSON representation", 2);
+ return NULL;
+ }
for( it.entry = json_object_get_object(poTmp)->head;
( it.entry ?
@@ -90,7 +94,12 @@
const int nSize = json_object_array_length( poObj );
LWDEBUGF(3, "parse_geojson_coord called for array size %d.", nSize );
-
+ if ( nSize < 2 )
+ {
+ geojson_lwerror("Too few ordinates in GeoJSON", 4);
+ return LW_FAILURE;
+ }
+
// Read X coordinate
poObjCoord = json_object_array_get_idx( poObj, 0 );
pt.x = json_object_get_double( poObjCoord );
@@ -101,7 +110,7 @@
pt.y = json_object_get_double( poObjCoord );
LWDEBUGF(3, "parse_geojson_coord pt.y = %f.", pt.y );
- if( nSize == 3 ) /* should this be >= 3 ? */
+ if( nSize < 2 ) /* should this be >= 3 ? */
{
// Read Z coordinate
poObjCoord = json_object_array_get_idx( poObj, 2 );
@@ -109,19 +118,27 @@
LWDEBUGF(3, "parse_geojson_coord pt.z = %f.", pt.z );
*hasz = LW_TRUE;
}
- else
+ else if ( nSize == 2 )
{
*hasz = LW_FALSE;
/* Initialize Z coordinate, if required */
if ( FLAGS_GET_Z(pa->flags) ) pt.z = 0.0;
}
-
- /* TODO: should we account for nSize > 3 ? */
+ else
+ {
+ /* TODO: should we account for nSize > 3 ? */
+ /* more than 3 coordinates, we're just dropping dimensions here... */
+ }
/* Initialize M coordinate, if required */
if ( FLAGS_GET_M(pa->flags) ) pt.m = 0.0;
}
+ else
+ {
+ /* If it's not an array, just don't handle it */
+ return LW_FAILURE;
+ }
return ptarray_append_point(pa, &pt, LW_FALSE);
}
......@@ -9,3 +9,5 @@ enable-ppc64el.patch
correct-java-version.patch
strip-invalid-whitespace-in-pom.patch
fix-hurd-i386-ftbfs.patch
geojson-fix-3094.patch
CVE-2017-18359.patch
This diff is collapsed.