-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: mips Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: Debian Build Daemon Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: ebd23473c8355d847780181c335fc5e8fa4f5e00 497478 libpq-dev_8.3.16-0lenny1_mips.deb 6c174eaeb9947b1c59e80edf1a73d7678f5a779a 419380 libpq5_8.3.16-0lenny1_mips.deb 0ec609ab84e8554b1e1eda383a0b1d8bafaa1a52 316508 libecpg6_8.3.16-0lenny1_mips.deb e6cf53e89fa41dcc04af79e8ab9b3f2b0091197e 498232 libecpg-dev_8.3.16-0lenny1_mips.deb 061223196c643b86fb300203d8fb19020b52a034 295434 libecpg-compat3_8.3.16-0lenny1_mips.deb de4720114495e3603d334c4b30edce5787281de9 319438 libpgtypes3_8.3.16-0lenny1_mips.deb ecf0f46c38ef5fc1ab25371593118ffa8d4c573b 5669092 postgresql-8.3_8.3.16-0lenny1_mips.deb 1847b82f5e7b0439dc26a25950e316c37655e56c 1715528 postgresql-client-8.3_8.3.16-0lenny1_mips.deb 41bbf2eb217686d57e86421090e004c246a26553 863514 postgresql-server-dev-8.3_8.3.16-0lenny1_mips.deb ca306c884216baffc8930e4205d4c25bbe7f5cd0 618852 postgresql-contrib-8.3_8.3.16-0lenny1_mips.deb fb074a9ceb0c67360e69581841f972bb6b2f9328 311888 postgresql-plperl-8.3_8.3.16-0lenny1_mips.deb b8c26fcc831562d2b58c87e023e6bc74062bb0e6 308362 postgresql-plpython-8.3_8.3.16-0lenny1_mips.deb 477a587d38ebd8374ed67bbe4723ff3575690139 306876 postgresql-pltcl-8.3_8.3.16-0lenny1_mips.deb Checksums-Sha256: aa826f64428afaf6e77010557559d488088324bf394edd612f0955c884002bc9 497478 libpq-dev_8.3.16-0lenny1_mips.deb 4f43188485f187c228381652068e0fdfc849874a3d2072082fad814e703140ce 419380 libpq5_8.3.16-0lenny1_mips.deb 46d1e29c3f39f8081daced947696259dac3eb887b99380c7739e074b17a7af07 316508 libecpg6_8.3.16-0lenny1_mips.deb fd6a6041323b725bc6cd1c1d2bb1b3c71279979f97ef472da80e83ee75634800 498232 libecpg-dev_8.3.16-0lenny1_mips.deb 7ecfb083bce14f9eb54eff84ff9533deca30bdde8f76261abf531e21df75de1a 295434 libecpg-compat3_8.3.16-0lenny1_mips.deb 7c049c4d5118d94f59755d3ec0781557adc78d6fa8e22da20dcf44aa01d69fd9 319438 libpgtypes3_8.3.16-0lenny1_mips.deb 87bceabb517dbc13b65f7ab16d69738cb7b316ddb540f1e6495c847493afd672 5669092 postgresql-8.3_8.3.16-0lenny1_mips.deb 63b0eda1acdbd9e4d21378151aaa4ea2c585b1c7b24a563d9d155af16ded3a19 1715528 postgresql-client-8.3_8.3.16-0lenny1_mips.deb 35d253a9ecc4cd4c01d51ed65285bb6ac2bd74f288d61c735c48eb138fa40257 863514 postgresql-server-dev-8.3_8.3.16-0lenny1_mips.deb 19ca4575baad6dae95aba66e8b1450491debcdc0ad6828e736b1f7e101cdc494 618852 postgresql-contrib-8.3_8.3.16-0lenny1_mips.deb ae760b6cc47afdf0f841078df84cfdef3f52faa7148a5b812313b0a5bb0ac0b3 311888 postgresql-plperl-8.3_8.3.16-0lenny1_mips.deb dc54a93f2bd1522e4289aa33ee118d95491ad6afca00d82899c6792853343421 308362 postgresql-plpython-8.3_8.3.16-0lenny1_mips.deb 5f22ba5ff3cfb4843b0ee4c2e41be1306227f8201a1145ad78ab8274ee923268 306876 postgresql-pltcl-8.3_8.3.16-0lenny1_mips.deb Files: 3cd342bfec210cb438d1afa78d56ee4e 497478 libdevel optional libpq-dev_8.3.16-0lenny1_mips.deb 2d6753957c9b6c2b7c88fe55e9bccdc1 419380 libs optional libpq5_8.3.16-0lenny1_mips.deb 04b58bd0125b4ea9cb2629d26367dba6 316508 libs optional libecpg6_8.3.16-0lenny1_mips.deb 1ecb72e44ea1e758fcabf2bc090cc7db 498232 libdevel optional libecpg-dev_8.3.16-0lenny1_mips.deb dccfee4eef4ab474470a731bfaa99dd9 295434 libs optional libecpg-compat3_8.3.16-0lenny1_mips.deb b3995a1e3681c2343c83b9c22e9fcace 319438 libs optional libpgtypes3_8.3.16-0lenny1_mips.deb 4064c2e74d19f4272837dd693510b818 5669092 misc optional postgresql-8.3_8.3.16-0lenny1_mips.deb e47ca5387c7b255342bb0a55636c3c0e 1715528 misc optional postgresql-client-8.3_8.3.16-0lenny1_mips.deb 700fb19e9cd2a3f6e015ec81f29f1933 863514 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_mips.deb 77d67bbbbe58ba60aefba6dd57bcd961 618852 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_mips.deb 5bc62629737882f3684cfa81a14a43b3 311888 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_mips.deb da5af6cba240b1efd8167599681c981c 308362 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_mips.deb da010a62aedccbdc6631697a3a7237ad 306876 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_mips.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJOm8TnAAoJEF9x6HEtV4qxhjQP/j9SolYEM4W6nyTCLu7X6nWq fXFYHSEnfXMzzWa+IIUk4MizduObO/YSN8pEGBE4jrenTRyd9vNYmdscSCjjUjJJ 5qc86ukLU+XYlFyQrY5BdSFYVo1cgFuaX50lfxYCkRC3/R+2+GXUHjbYdZZRc0nr Js0bO+Wh3k/Ope7NYPSDm82oO9+XkfBb7PX9cYSOTjIIp02bZrFEC4S5gGRBP6Oi YkMNFZZ47SMh8MUqUABWQ0ewZ2l+V8HAekcoEYTaZzATUmeynFM+cyv+7IBhO0ub +LLTh15FkRb+1Bbino14jcW7D+eqzSvxRmXZeE8HGlr+An1XPYgEUiWtdcnYvF1f eIaie8eRhiEFese+MJhh5r6qytvZiSjNBHKD7AE9v92ISFZbjUOEwywoT7Po+7gY ImE43G+D7qNJgSCiDsqqsl7FtfINgspvYL3mPM9bIPZXm4zCWLzkSIhpPxrRgnDC Ixvhg2rMWfFOVd+k7P3Ok8PJm61NeWKlK5mMf68HXSL2UWe2qoMJ66mdDbY8QTQd Oc8PXURAFmHr7063Bp+13FmA0wQd8vKeYeyNsv56Ac43FHiKx4Q5i4QQJxFmwuzy YOUXsmBa9wsybEC8hMZwu/d3Uow79mXP7fRhjyOFZNliwz6jHYl04IQhHnftS5Pz YM3avyUsmEfxeSMb3vOz =1h6d -----END PGP SIGNATURE-----