-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: alpha Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: Debian Build Daemon Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 6364f5824c8bb0a0f850ed6cb069b8e3f2b6b6f5 515594 libpq-dev_8.3.16-0lenny1_alpha.deb fa8ef3f369d58b9bd091f03aefb53b3cdcd9090d 425038 libpq5_8.3.16-0lenny1_alpha.deb bd02628615d79c9ed11df1ce5c6ad923aef8f571 317428 libecpg6_8.3.16-0lenny1_alpha.deb 0cbb2d244057f9f51af6a958cb28810fbb519ef3 511480 libecpg-dev_8.3.16-0lenny1_alpha.deb c4a8de26737df95a490218b9724daddeb074bf88 297048 libecpg-compat3_8.3.16-0lenny1_alpha.deb 87ef8abbf310016bb1105e515a7c7a9562826b6f 318298 libpgtypes3_8.3.16-0lenny1_alpha.deb 7659230ac9c4cd1125047fb03174d7fc30f8b1bc 5354178 postgresql-8.3_8.3.16-0lenny1_alpha.deb 1931acccf3366b16337561f408c9ea25d1a808cd 1745246 postgresql-client-8.3_8.3.16-0lenny1_alpha.deb ac2eea18db23f058bd102b11b0a9d2a261679738 859984 postgresql-server-dev-8.3_8.3.16-0lenny1_alpha.deb 2da02db9b2819586792686757dbb949562019e17 656120 postgresql-contrib-8.3_8.3.16-0lenny1_alpha.deb 04861ea4a425818cb61bfea707b9bf9c09a23d2c 318272 postgresql-plperl-8.3_8.3.16-0lenny1_alpha.deb 21ce65820b0e7e8b0b3bebf3ebc59e8922bae735 308990 postgresql-plpython-8.3_8.3.16-0lenny1_alpha.deb de89b4f1ec0476f5bc869938001ae2c655b68382 307836 postgresql-pltcl-8.3_8.3.16-0lenny1_alpha.deb Checksums-Sha256: dafc50319acc8a451c532578a311772d836346d8caf858bee5606c6f17e5f611 515594 libpq-dev_8.3.16-0lenny1_alpha.deb 3619c4c9c759e31dcc2f65c671ccd891630b899864c1721281a868793fa8d08b 425038 libpq5_8.3.16-0lenny1_alpha.deb 4b2fbf23f854cfd01728ef0997c155774e016073a1c2aac4a99ff72e76479ba1 317428 libecpg6_8.3.16-0lenny1_alpha.deb 458fca22280e19fabb06f9c69052d7776566d92cd41ea17e2d48a05fc6c990df 511480 libecpg-dev_8.3.16-0lenny1_alpha.deb 5d73e891b30d846ec81635183907b118e32157f774d823f8bc0cae9e01c8f630 297048 libecpg-compat3_8.3.16-0lenny1_alpha.deb 71c8940f7089cc096dfe9539d6b2b1db942f6854e691e153acfb948cc8448a08 318298 libpgtypes3_8.3.16-0lenny1_alpha.deb 0d800b2790ab84ea7f9fba36c12d111a1af7b1fbab71c23160d8751a08858c80 5354178 postgresql-8.3_8.3.16-0lenny1_alpha.deb 45d97caf6293f2f92cb2b9f1b428dac342e227732d694f083a20e57242c59bc4 1745246 postgresql-client-8.3_8.3.16-0lenny1_alpha.deb e27b4c2db983d452c84a0bae6b402b39d872de5799cabc2565c07cd7f68bb772 859984 postgresql-server-dev-8.3_8.3.16-0lenny1_alpha.deb 852cd68a8fbf903309cdbe799a028d5b13b454e5f611bea2be98630d39230a70 656120 postgresql-contrib-8.3_8.3.16-0lenny1_alpha.deb 07eddfa926952e2d5ee6af574af07cf99e92bf6b82962931c72f9bc0a0343d92 318272 postgresql-plperl-8.3_8.3.16-0lenny1_alpha.deb 48a9fc12a537bd5407c5312db04ec247702f31f63509533f1562c000288ffb68 308990 postgresql-plpython-8.3_8.3.16-0lenny1_alpha.deb bdc39d0a476255ef7b13373ff174fa7c483dfc4c2fe0a4ba3384c3714338b994 307836 postgresql-pltcl-8.3_8.3.16-0lenny1_alpha.deb Files: 186db5f1e4c716423a04ec1d853d031d 515594 libdevel optional libpq-dev_8.3.16-0lenny1_alpha.deb 7c761005685ee4c3d2a2f2d318a6dd39 425038 libs optional libpq5_8.3.16-0lenny1_alpha.deb 2d6d1b2ea9d3f0e251e9a7bea9c21ae5 317428 libs optional libecpg6_8.3.16-0lenny1_alpha.deb c817fcfb8d44023de2c94a1546a59b78 511480 libdevel optional libecpg-dev_8.3.16-0lenny1_alpha.deb f9e1ae8c9e174ba6ce56be75eb48276b 297048 libs optional libecpg-compat3_8.3.16-0lenny1_alpha.deb 9cf5a9bb986b5b54cfc62c18693ef92e 318298 libs optional libpgtypes3_8.3.16-0lenny1_alpha.deb 858509f35e2e0b41056e04ef4a78b493 5354178 misc optional postgresql-8.3_8.3.16-0lenny1_alpha.deb 135ef701885dc3483388c29f290bf193 1745246 misc optional postgresql-client-8.3_8.3.16-0lenny1_alpha.deb a036673804b7a8cdafc691e807350b66 859984 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_alpha.deb c2369fb2a483f7b1ce4239225527264d 656120 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_alpha.deb aa9e785db9b3d2a131e0c6abd11a64cb 318272 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_alpha.deb c9527c44c681656e0a2bef544e2f0384 308990 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_alpha.deb 64d2db3537cebb780309a11d2249f14f 307836 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_alpha.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBCAAGBQJOm76NAAoJEACdQm6JsUfT4DcQAKr4FeU9Gp+fAFtt1C4Xi4zs bIGGRQcgxl4ORzWoDKF5xN4G//+tlib3agpU/bqW3ogrOGWxSkLXYynkc42rPMdO oiyVYIIUe1U/2v7FIaXOchVRscFpZLM8ws8MLomLhUy3MJu+n6bYx67FF78D/FNW /yriejXHQBACP3rRaL15TN1lsPAhoVv/stUX28pzl8tNlp7E/3tNQNF+6pmYGHbY qPwFVHLBjjRlgkhnfDGmf9sZG0xU5T4QARypulss5UooVcnyF1jmBPCcLKZaKVqq 6KrgFcwnb8M9c5lCAhRokO35ZNj65qlqwQxI8ZDlmon5vG229WUhoVnYYhVg8Cfu UHRaqloq5d3GUQD47fkqTFEzQMRtapueoa8wNViEmN9pXejOprSiT8irFCo50qti DMdWOz/S70wFGnYwToWi5dhZ7BowwisolkaG24Xm5Yx9dvqNNJyhXCb/Ygll1Gyc IACGZm+P32+XseV+x5PLLNOe6c9CBVmpSGL/P5Ug/pldvkcLMwhmjvh+fHz8J7dD zdtGZsRVY1rmann9oV27UCeogRm12lF3UB6dpk2gWaXmu/2tq7vLZ/PZuN8iWzrg CWjVp6m1h1vmstDUxlFXdsnThxpRv06FaAubRWGVDL+AkWYoFys6namTubWU82Lb zNqJMmf6tzfgT0L1PMTw =K5o8 -----END PGP SIGNATURE-----