-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: arm Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: arm Build Daemon (toffee) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 32c0629d7cd16081a58ad4f185bb11e2fe37242b 479786 libpq-dev_8.3.16-0lenny1_arm.deb aa2e1876ac9eba47193e7dd33cd3df41e9f003d9 414896 libpq5_8.3.16-0lenny1_arm.deb 4f70a5c74b5ce4b1aff4640ed6ed0fd09ad23b03 315018 libecpg6_8.3.16-0lenny1_arm.deb 84fd63c6c731fb0123a7fac2b63c65cc86055d6c 498378 libecpg-dev_8.3.16-0lenny1_arm.deb c969ef5c6e12db793dbbbb597ad369648789409a 295580 libecpg-compat3_8.3.16-0lenny1_arm.deb 4cca7c47967cbcac5c189bd118b0152a980fa372 316200 libpgtypes3_8.3.16-0lenny1_arm.deb b3b7e3d7239ce3b6145cba3e6c2f91c68595f013 5319394 postgresql-8.3_8.3.16-0lenny1_arm.deb cacd2ca1ec795a99711abe46bdaedc1af8b08a82 1702486 postgresql-client-8.3_8.3.16-0lenny1_arm.deb f9532862a83657624a904bf3d437c83825fbece3 861684 postgresql-server-dev-8.3_8.3.16-0lenny1_arm.deb 1c86dddb5af36e59df787ebb577676a5c3c90ff8 613236 postgresql-contrib-8.3_8.3.16-0lenny1_arm.deb 29a0ce394ed66e1222ed80c88dcfcc955dab2e63 315698 postgresql-plperl-8.3_8.3.16-0lenny1_arm.deb 754a92bfe3fa3b1ac37338fa6814cf3a039f7a95 309124 postgresql-plpython-8.3_8.3.16-0lenny1_arm.deb 76269cedb135d4b67b852f2229100380e7a76254 307628 postgresql-pltcl-8.3_8.3.16-0lenny1_arm.deb Checksums-Sha256: e66c0bc26df02483bcbb30a5dc4149d834c8daeac3af475c5307625bc0f8f17b 479786 libpq-dev_8.3.16-0lenny1_arm.deb 3599a0672e5040515dafa3dd9dde7ac32dc660f4a681a2c68debb94ec354d9d2 414896 libpq5_8.3.16-0lenny1_arm.deb 27dbfb3fc2359680d524b1a09be673517b8ecc184a787868dd8928b69e4cf624 315018 libecpg6_8.3.16-0lenny1_arm.deb bbc134305c7d31a6b3e1244890c5362cb2a9897a30853364b7d21032745c8cd6 498378 libecpg-dev_8.3.16-0lenny1_arm.deb f175edf9135214fbd8a04a272397ccb11777c9833a65d391a2e7004e2ca432ad 295580 libecpg-compat3_8.3.16-0lenny1_arm.deb e537df99b8f65d1020df14cabf3742e0275709b479756a55d6bd1384d9cebb62 316200 libpgtypes3_8.3.16-0lenny1_arm.deb 6e5893d8e2aa1d8cf9e94475617747165db484f3b5829cf76b17208831531bba 5319394 postgresql-8.3_8.3.16-0lenny1_arm.deb 232a31c4bedd094ecafcc0536f2ce998c2470be2e749c65d30dbbb261c72e365 1702486 postgresql-client-8.3_8.3.16-0lenny1_arm.deb e61352b4a4335cce8e8eef70ddc72ac54cb913dac3c861dee1183c4cc5b6dc64 861684 postgresql-server-dev-8.3_8.3.16-0lenny1_arm.deb 7f14114901ea25cdf4c277445ebf3b26e482b6b9cbf3f9896da3b83e28e85eb7 613236 postgresql-contrib-8.3_8.3.16-0lenny1_arm.deb ff293d667007620e6dbc45f49a7a3e0c7688949483b602f280b19f911c48fa14 315698 postgresql-plperl-8.3_8.3.16-0lenny1_arm.deb a130b18a32c198b8b1e745059a1f4e5c5b0e3d7eb784fc28d623f5987026bfb4 309124 postgresql-plpython-8.3_8.3.16-0lenny1_arm.deb 314f235899d4e321364980b6066e218cf5b91466b54bcbb15107bdee39c6aa5b 307628 postgresql-pltcl-8.3_8.3.16-0lenny1_arm.deb Files: 20416a994aca32a2b665846514c797c6 479786 libdevel optional libpq-dev_8.3.16-0lenny1_arm.deb b23f8b564fe993eaeb118c9cc33da35e 414896 libs optional libpq5_8.3.16-0lenny1_arm.deb d6d5c527cd4dbb111a0045cc2d60849e 315018 libs optional libecpg6_8.3.16-0lenny1_arm.deb 5e0a3cbff5777e5e148b35dedd19b0cc 498378 libdevel optional libecpg-dev_8.3.16-0lenny1_arm.deb 2bc3334773fd5a31e9ac7e456fda1cb1 295580 libs optional libecpg-compat3_8.3.16-0lenny1_arm.deb 8d6d52f18bec359c23ba03dd57bba043 316200 libs optional libpgtypes3_8.3.16-0lenny1_arm.deb 862c09bbb71ce4cae16e244157ca1b11 5319394 misc optional postgresql-8.3_8.3.16-0lenny1_arm.deb a266330853d31c4b0cfadec48d2a90e5 1702486 misc optional postgresql-client-8.3_8.3.16-0lenny1_arm.deb b6151e610222c319e73528de4b733feb 861684 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_arm.deb e30dd9fbde5fdaf0d5a61b7319db968d 613236 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_arm.deb 567a8f57c3fdf3118475ff7d15de6263 315698 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_arm.deb 442680fcff6ffc21143715393303bae3 309124 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_arm.deb 2f49cf9b61196ce873353a14098d5f6a 307628 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_arm.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJOuX2dAAoJEOxfUAG2iX578kYIAMYnxE5pUNIp8qU4oP+2RxSI dx8WqrpgtvTrs6+J15T92a1e4aeEXDhoWwLIT96zov5NeTlo/rX+DbgKCnOgn/1d LNe0llGPX21IkVRrlIObjDUxCHKH7FuH1gWW5RNkTPAExjU381LUeFnWaQVSbbHa Ef8jxPke26Uw7I63Kp7yldDTftcjBxkfgcoWbStflySargeF9hiyOd/qftEZcjGn JB0jwN5bZpaRI9NFqruVN5Wdv/IeuG1XcUlyPoBh1KKt6+1tonzis0IRbxiHAsWM 1qjjLSwGwEd7VJkGqHLC/sDmN6pyBjfLxYJKX6xPZu+wB4hpEYrult1OVYUsSlY= =fQMx -----END PGP SIGNATURE-----