-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: armel Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: armel Build Daemon (arnold) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 16351cbda3905139462dd74b8f262c910097d477 484012 libpq-dev_8.3.16-0lenny1_armel.deb 1d43adf80b53c3310f3f7a714c94e30eb62b2156 416430 libpq5_8.3.16-0lenny1_armel.deb dc0a33d0257f8975ff0f0e754e68d8779bdb8f5e 317056 libecpg6_8.3.16-0lenny1_armel.deb bae466761ed5aac329abd9259cdb5b0b5bc52d72 501594 libecpg-dev_8.3.16-0lenny1_armel.deb 2ee197850143328d2169a93318f8825c185db0ea 295362 libecpg-compat3_8.3.16-0lenny1_armel.deb 315c1bc5ca7f317e7b43ca5cb6b1d9273bd1f4ce 319014 libpgtypes3_8.3.16-0lenny1_armel.deb cc825f65ef78c400e0cbc12339da00a5b952024d 5326936 postgresql-8.3_8.3.16-0lenny1_armel.deb 1151acea6cf8943806f60e08b5b622625a9063a6 1706754 postgresql-client-8.3_8.3.16-0lenny1_armel.deb 1464307d598c44d1a571bdf72661f1519b7be514 859632 postgresql-server-dev-8.3_8.3.16-0lenny1_armel.deb 6673f85ab24af4e82209c99df05f3139bd723e45 630420 postgresql-contrib-8.3_8.3.16-0lenny1_armel.deb f294bdaaae9ce4addd6b1c8c44c17165d3861f9a 315862 postgresql-plperl-8.3_8.3.16-0lenny1_armel.deb e76f54dc98a0bd5057148b1c92082743b1bda4f3 309138 postgresql-plpython-8.3_8.3.16-0lenny1_armel.deb 035843934307fb1bae591c57b62a0d3311cc0b94 307268 postgresql-pltcl-8.3_8.3.16-0lenny1_armel.deb Checksums-Sha256: 44960b896aae38c8864b95752039e23e73926f28f588d34264e7a9bde2121284 484012 libpq-dev_8.3.16-0lenny1_armel.deb e56597dbcca34786b0cd3ff84625eba36899ce107e1bc0a7f6cbe91d84e2cc81 416430 libpq5_8.3.16-0lenny1_armel.deb ffbb15c1e360022a12027ac5923cde63e08b306340b331fb6d837d957d917ab2 317056 libecpg6_8.3.16-0lenny1_armel.deb 12f34f34d31fbd270f4a7ba2b1aa3a1b80e6d12db6a5d23304536b34fcbf226e 501594 libecpg-dev_8.3.16-0lenny1_armel.deb 136cc8397cc5cf0dad1ddff3bcf5f6a5cfc1e998deedafe8fb46e2d98efb5689 295362 libecpg-compat3_8.3.16-0lenny1_armel.deb 63d2c38a1265bd55e1d5049d25786e87544ebe091d6d45961b474e04bbd481f4 319014 libpgtypes3_8.3.16-0lenny1_armel.deb d17326b9ca38b2fae0ffca295c1b0711c4e0f3c7e61da9ce9970d1939c1f6cf4 5326936 postgresql-8.3_8.3.16-0lenny1_armel.deb 0159fceaa1d73b545d9c21a5aced59466c7730d770ab433e376bd5dcefd865a5 1706754 postgresql-client-8.3_8.3.16-0lenny1_armel.deb ab6e9bcf2d967920db69ead48454f78705ac7c3614c535bb8614a21fa8b81465 859632 postgresql-server-dev-8.3_8.3.16-0lenny1_armel.deb b708b0f4d37c64c763eeba32c1e31b35a076196667b30c7b3b3f04632249abb1 630420 postgresql-contrib-8.3_8.3.16-0lenny1_armel.deb be5d0223cbdd256639d8f7a9cbf5d1210534628beafdcecfaa82a3e816e00226 315862 postgresql-plperl-8.3_8.3.16-0lenny1_armel.deb 023aec4232cfa8928e8ae44158ab7c8fcda69d86a57fdab123a0bb72b59882a8 309138 postgresql-plpython-8.3_8.3.16-0lenny1_armel.deb b5ccad5451ce6d7570937749e3373b2ca09fec63b103901b7769436c74968fcf 307268 postgresql-pltcl-8.3_8.3.16-0lenny1_armel.deb Files: b7b32263fec426d29b9ee440061e5c5c 484012 libdevel optional libpq-dev_8.3.16-0lenny1_armel.deb 604ad0f53a37b7c3cc16446adb0117fd 416430 libs optional libpq5_8.3.16-0lenny1_armel.deb cacc3fce12564cc624d0ef6571060599 317056 libs optional libecpg6_8.3.16-0lenny1_armel.deb 67459f938f816c7a0a3ea2db4e45107b 501594 libdevel optional libecpg-dev_8.3.16-0lenny1_armel.deb 9c9ad27015f2a1908042d92b46ac0040 295362 libs optional libecpg-compat3_8.3.16-0lenny1_armel.deb b2483819c034881d6d4ded251f79b59e 319014 libs optional libpgtypes3_8.3.16-0lenny1_armel.deb bc22ec7d0d6e7e26532cad2571918fa6 5326936 misc optional postgresql-8.3_8.3.16-0lenny1_armel.deb 1864aa54ff71eb4c17cad71e054d8ea6 1706754 misc optional postgresql-client-8.3_8.3.16-0lenny1_armel.deb 007b13073d6edf9bb6fa5907baf48d0b 859632 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_armel.deb 7975f901d86c57c174e465375aea0b05 630420 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_armel.deb 4a64db615150918277b567cc9b0e0f68 315862 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_armel.deb a0f9c259e81b98785c2d3225fd40da9e 309138 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_armel.deb 954cd885e8fcca3cacb7a10d7b73c90c 307268 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_armel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBAgAGBQJOm8XGAAoJEJvVjrQ+qbowa8AQALMZQvSN2w4Jw53AtluBgcJx AkJI7Z8fwbLAlxnGWTBWl/iP9SKWEelTsCSf8IXkn6A0Pr2cSYSNgyEqFDhmZods lD52VVjTzv+dEoIiUYo+SvAsFNsKViWe+vaFpp7Oeb2MFNVVCtGBEEDXa/8knZ5a Cf4oqvMlS6MVUaJFMQvsQ2HakDksqmyqLsn/5DumB0CtjpZB0qW569I55JYitmHy 5NvII8mlP06Q5D4BZUpmOJLEd+U1AWfwSv3Kx5mgJx7Z80qhSVAKOrXOahTgv3zV zN951oK98QomjzYkaeNm5tr+DQjHrTPNqwJ6hnBCKCkwr9bYIXMPgwaAOX9/Bi99 1e0A7ocLB5sL+6DYCf/eBk9lc0KAYhgdJnMBbA1rCGRbi+VAeV0Lxbskqr13Bg26 MQr3+1gY7BngzSQ/ibKpOu7RGqOl97S1gOfEKGJthjuANB3WvcNCVkBjNqhnbu9r esEg6N2JxZpysoValxQ3QNKrQEkW20YmIWkXOHYVaRa5tjLHdDTEtVhu62snwD9a DUs4fk6sRAc7a1cZqP7ESqx3ahNRIpicrAAG1AxcSOHZRv72Rd3p8Uzp0uKg6lBL hMQ4sjOYwLzz9ntRsFpSFF+N77aMGOrCw35f0bjHeOD3XgvrOuCqYn07vDWcH1xY 6IUVicYPDCe+aRxZeJWd =cMJc -----END PGP SIGNATURE-----