Opened 10 months ago
Closed 10 months ago
Last modified 10 months ago
#5210 closed defect (fixed)
PostGIS upgrade from 2.5.5 to 3.2.2 fails with CVE-2022-2625
|Reported by:||robe||Owned by:||strk|
Similar issue to topology because of the CVEE patch:
I've now upgraded to 3.2.2 and the issue remains. When building and running make installcheck-upgrade against a 14.5 postgres cluster it fails with: NOTICE: Packaging extension postgis ERROR: function _postgis_deprecate(text,text,text) is not a member of extension "postgis" DETAIL: An extension is not allowed to replace an object that it does not own. CONTEXT: SQL statement "CREATE EXTENSION postgis SCHEMA public VERSION unpackaged;ALTER EXTENSION postgis UPDATE TO "3.2.2"" PL/pgSQL function postgis_extensions_upgrade() line 71 at EXECUTE Am I doing something wrong or is this a fallout from CVE-2022-2625? To clarify from my previous email, I'm not upgrading from 2.5.5, I'm bulding 3.2.2 in isolation and running its tests.
Change History (3)
comment:1 by , 10 months ago
|Summary:||PostGIS upgrade from 2.5.5 to 3.2.2 fails → PostGIS upgrade from 2.5.5 to 3.2.2 fails with CVE-2022-2625|
comment:2 by , 10 months ago
|Status:||new → closed|
comment:3 by , 10 months ago
|Milestone:||PostGIS 3.0.7 → PostGIS 2.5.8|
Note: See TracTickets for help on using tickets.