- [BUGFIX/SECURITY] Fix a Stored DOM XSS vulnerability with query history.
PR: 239839
Submitted by: David O'Rourke <dor.bsd@xm0.uk> (maintainer)
MFH: 2019Q3
Sponsored by: Netzkommune GmbH
Changelog:
* Make sure subquery range is taken into account for selection
* Exhaust every request body before closing it
* Cmd/promtool: return errors from rule evaluations
* Remote Storage: string interner should not panic in release
* Fix memory allocation regression in mergedPostings.Seek
https://github.com/prometheus/prometheus/releases/tag/v2.9.2
PR: 237671
Submitted by: David O'Rourke <dor.bsd@xm0.uk> (maintainer)
Approved by: mentors (implicit)
Changelog:
- Fix panic when using custom EC2 API for SD
- Fix panic when Zookeeper SD cannot connect to servers
- Make the skip_head an optional parameter for snapshot API
PR: 232186
Submitted by: David O'Rourke <dor.bsd@xm0.uk> (maintainer)
Sponsored by: Netzkommune GmbH
Fix the following installation phase error:
cp: /usr/local/etc/newsyslog.conf.d/prometheus.conf: No such file or directory
It was caused by a relative path being specified in pkg-plist instead of an
absolute one (a leading "/" was missing).
PR: 231548
Reviewed by: dor, krion
Approved by: dor (maintainer), krion (mentor)
Sponsored by: Bally Wulff Games & Entertainment GmbH
Differential Revision: https://reviews.freebsd.org/D17273
Also, tweaks to conform to Porter's Handbook:
- Set DISTVERSION instead of PORTVERSION directly
- Update order of blocks/variables
Submitted by: dor.bsd@xm0.uk (maintainer) [1]
Differential Revision: https://reviews.freebsd.org/D14657
