If you’re using dev-db/postgresql-server, update now.
CVE-2013-1899 <dev-db/postgresql-server-{9.2.4,9.1.9,9.0.13} ------------------------------------------------------------ A connection request containing a database name that begins with "-" may be crafted to damage or destroy files within a server's data directory. CVE-2013-1900 <dev-db/postgresql-server-{9.2.4,9.1.9,9.0.13,8.4.17} ------------------------------------------------------------------- Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guess CVE-2013-1901 <dev-db/postgresql-server-{9.2.4,9.1.9} ----------------------------------------------------- An unprivileged user can run commands that could interfere with in-progress backups.