-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 04 Oct 2011 11:32:12 +0200
Source: postgresql-8.4
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.4 postgresql-client-8.4 postgresql-server-dev-8.4 postgresql-doc-8.4 postgresql-contrib-8.4 postgresql-plperl-8.4 postgresql-plpython-8.4 postgresql-pltcl-8.4 postgresql postgresql-client postgresql-doc postgresql-contrib
Architecture: ia64
Version: 8.4.9-0squeeze1
Distribution: squeeze-security
Urgency: low
Maintainer: ia64 Build Daemon (alkman) <buildd_ia64-alkman@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 8.4
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql - object-relational SQL database (supported version)
 postgresql-8.4 - object-relational SQL database, version 8.4 server
 postgresql-client - front-end programs for PostgreSQL (supported version)
 postgresql-client-8.4 - front-end programs for PostgreSQL 8.4
 postgresql-contrib - additional facilities for PostgreSQL (supported version)
 postgresql-contrib-8.4 - additional facilities for PostgreSQL
 postgresql-doc - documentation for the PostgreSQL database management system
 postgresql-doc-8.4 - documentation for the PostgreSQL database management system
 postgresql-plperl-8.4 - PL/Perl procedural language for PostgreSQL 8.4
 postgresql-plpython-8.4 - PL/Python procedural language for PostgreSQL 8.4
 postgresql-pltcl-8.4 - PL/Tcl procedural language for PostgreSQL 8.4
 postgresql-server-dev-8.4 - development files for PostgreSQL 8.4 server-side programming
Closes: 628503 631285
Changes: 
 postgresql-8.4 (8.4.9-0squeeze1) stable-security; urgency=low
 .
   * New upstream bug fix/security release:
      - Fix bugs in indexing of in-doubt HOT-updated tuples.
        These bugs could result in index corruption after reindexing a
        system catalog. They are not believed to affect user indexes.
      - Fix multiple bugs in GiST index page split processing.
        The probability of occurrence was low, but these could lead to
        index corruption.
      - Fix possible buffer overrun in tsvector_concat().
        The function could underestimate the amount of memory needed for
        its result, leading to server crashes.
      - Fix crash in xml_recv when processing a "standalone" parameter.
      - Make pg_options_to_table return NULL for an option with no value.
        Previously such cases would result in a server crash.
      - Avoid possibly accessing off the end of memory in "ANALYZE" and in
        SJIS-2004 encoding conversion.
        This fixes some very-low-probability server crash scenarios.
      - Prevent intermittent hang in interactions of startup process with
        bgwriter process.
        This affected recovery in non-hot-standby cases.
      - Fix race condition in relcache init file invalidation.
        There was a window wherein a new backend process could read a stale
        init file but miss the inval messages that would tell it the data
        is stale. The result would be bizarre failures in catalog accesses,
        typically "could not read block 0 in file ..." later during
        startup.
      - Fix memory leak at end of a GiST index scan.
        Commands that perform many separate GiST index scans, such as
        verification of a new GiST-based exclusion constraint on a table
        already containing many rows, could transiently require large
        amounts of memory due to this leak.
      - Fix incorrect memory accounting (leading to possible memory bloat)
        in tuplestores supporting holdable cursors and plpgsql's RETURN
        NEXT command.
      - Fix performance problem when constructing a large, lossy bitmap.
      - Fix join selectivity estimation for unique columns.
        This fixes an erroneous planner heuristic that could lead to poor
        estimates of the result size of a join.
      - Fix nested PlaceHolderVar expressions that appear only in
        sub-select target lists. This mistake could result in outputs of an
        outer join incorrectly appearing as NULL.
      - Allow nested EXISTS queries to be optimized properly.
      - Fix array- and path-creating functions to ensure padding bytes are
        zeroes.  This avoids some situations where the planner will think that
        semantically-equal constants are not equal, resulting in poor
        optimization.
      - Fix "EXPLAIN" to handle gating Result nodes within inner-indexscan
        subplans.  The usual symptom of this oversight was "bogus varno" errors.
      - Work around gcc 4.6.0 bug that breaks WAL replay.  This could lead to
        loss of committed transactions after a server crash.
      - Fix dump bug for VALUES in a view.
      - Disallow SELECT FOR UPDATE/SHARE on sequences.
        This operation doesn't work as expected and can lead to failures.
      - Fix "VACUUM" so that it always updates pg_class.reltuples/relpages.
        This fixes some scenarios where autovacuum could make increasingly
        poor decisions about when to vacuum tables.
      - Defend against integer overflow when computing size of a hash table.
      - Fix cases where "CLUSTER" might attempt to access already-removed
        TOAST data.
      - Fix portability bugs in use of credentials control messages for
        "peer" authentication.
      - Fix SSPI login when multiple roundtrips are required.
        The typical symptom of this problem was "The function requested is
        not supported" errors during SSPI login.
      - Throw an error if "pg_hba.conf" contains hostssl but SSL is
        disabled.  This was concluded to be more user-friendly than the
        previous behavior of silently ignoring such lines.
      - Fix typo in pg_srand48 seed initialization.
        This led to failure to use all bits of the provided seed. This
        function is not used on most platforms (only those without
        srandom), and the potential security exposure from a
        less-random-than-expected seed seems minimal in any case.
      - Avoid integer overflow when the sum of LIMIT and OFFSET values
        exceeds 2^63.
      - Add overflow checks to int4 and int8 versions of generate_series().
      - Fix trailing-zero removal in to_char().  In a format with FM and no
        digit positions after the decimal point, zeroes to the left of the
        decimal point could be removed incorrectly.
      - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63.
      - Weaken plpgsql's check for typmod matching in record values.
        An overly enthusiastic check could lead to discarding length
        modifiers that should have been kept.
      - Fix pg_upgrade to preserve toast tables' relfrozenxids during an
        upgrade from 8.3. Failure to do this could lead to "pg_clog" files
        being removed too soon after the upgrade.
      - Fix psql's counting of script file line numbers during COPY from a
        different file.
      - Fix pg_restore's direct-to-database mode for
        standard_conforming_strings.  pg_restore could emit incorrect commands
        when restoring directly to a database server from an archive file that
        had been made with standard_conforming_strings set to on.
      - Be more user-friendly about unsupported cases for parallel
        pg_restore.  This change ensures that such cases are detected and
        reported before any restore actions have been taken.
      - Fix write-past-buffer-end and memory leak in libpq's LDAP service
        lookup code.
      - In libpq, avoid failures when using nonblocking I/O and an SSL
        connection.
      - Improve libpq's handling of failures during connection startup.
        In particular, the response to a server report of fork() failure
        during SSL connection startup is now saner.
      - Improve libpq's error reporting for SSL failures.
      - Fix PQsetvalue() to avoid possible crash when adding a new tuple to
        a PGresult originally obtained from a server query.
      - Make ecpglib write double values with 15 digits precision.
      - In ecpglib, be sure LC_NUMERIC setting is restored after an error.
      - Apply upstream fix for blowfish signed-character bug
        (CVE-2011-2483) (Closes: #631285)
        "contrib/pg_crypto"'s blowfish encryption code could give wrong
        results on platforms where char is signed (which is most), leading
        to encrypted passwords being weaker than they should be.
      - Fix memory leak in "contrib/seg".
      - Fix pgstatindex() to give consistent results for empty indexes.
      - Allow building with perl 5.14. (Closes: #628503)
   * 15-revert-typmod-check.patch: Update for new upstream release.
Checksums-Sha1: 
 025a0457c7176c964320192e24d4f21b74d38221 283928 libpq-dev_8.4.9-0squeeze1_ia64.deb
 c33478d35a7938011d8b6c7a579e43689f6c11db 188594 libpq5_8.4.9-0squeeze1_ia64.deb
 97435003e78f968cb616a1e44b2a31e2e6cb64b7 107968 libecpg6_8.4.9-0squeeze1_ia64.deb
 35e7e7bcf39632150c7e4efc16a210c124c00efa 344960 libecpg-dev_8.4.9-0squeeze1_ia64.deb
 d9151d36170053b5176ede1ffd07e86e4c4fa092 34460 libecpg-compat3_8.4.9-0squeeze1_ia64.deb
 668e443ecb5e83a548ad14c9864e87847be27579 71698 libpgtypes3_8.4.9-0squeeze1_ia64.deb
 7ffb0ee546397d3510656f036ba5e0b19f5e7e72 6475730 postgresql-8.4_8.4.9-0squeeze1_ia64.deb
 f9556d08bb4eab7926eda23c4c441ba6cf5a02a9 1680192 postgresql-client-8.4_8.4.9-0squeeze1_ia64.deb
 3d1c49323d84aca750fb0af4a5d1ecd089fcba24 650462 postgresql-server-dev-8.4_8.4.9-0squeeze1_ia64.deb
 a735a2ce83a9bc1f8ed02b5bb8cd476c4a6b5fe6 570424 postgresql-contrib-8.4_8.4.9-0squeeze1_ia64.deb
 3d12740824fbda799cb83e453eb7ecba1a31b959 77036 postgresql-plperl-8.4_8.4.9-0squeeze1_ia64.deb
 dfa257811fcaf0451b22e39a1f056dc0b69504ff 71740 postgresql-plpython-8.4_8.4.9-0squeeze1_ia64.deb
 1893d6d759d2abd67a9739e2e0bc52cf0d528806 53714 postgresql-pltcl-8.4_8.4.9-0squeeze1_ia64.deb
Checksums-Sha256: 
 8412ce168663e9227a0d2dba9b32f75f56a7ab9984667384e120d09927fed911 283928 libpq-dev_8.4.9-0squeeze1_ia64.deb
 28f12cb8d3c8f1e3861f89465268c9833fc098d497e65e40395c0a1796e42289 188594 libpq5_8.4.9-0squeeze1_ia64.deb
 d1de7bb3cecffd34a1fe822778b6ca9eeecbce39a2e8e7c2eb63fff2f2d0a397 107968 libecpg6_8.4.9-0squeeze1_ia64.deb
 120d51f7da8c7d5a3e9d4211390297cfee60c049de0058a694ea38707dc85a8f 344960 libecpg-dev_8.4.9-0squeeze1_ia64.deb
 4f6d639f27f2e4d4c8317ebac2647515a426c151b6d2b1e19fee508b21104cf4 34460 libecpg-compat3_8.4.9-0squeeze1_ia64.deb
 4c7a8c0281ae807072e5777ea83248f8400ba59d1374728ba78e83c8e0e37132 71698 libpgtypes3_8.4.9-0squeeze1_ia64.deb
 69cecb9c8cdc062916c42e84bef94682b5d994a422bf2d2c9a823bb15b013622 6475730 postgresql-8.4_8.4.9-0squeeze1_ia64.deb
 ccc2448e85e1d1f0acd4447e90855ab0ea41266468a46021066826fd397b3695 1680192 postgresql-client-8.4_8.4.9-0squeeze1_ia64.deb
 345bf17280e68a859e1149e7c35354eff5576bead64679918c67d3eed32df8e3 650462 postgresql-server-dev-8.4_8.4.9-0squeeze1_ia64.deb
 01694c6b360d5db906f1574b0f5ebcca7d83cf2d9f7a1bcdc66cf5a254c63702 570424 postgresql-contrib-8.4_8.4.9-0squeeze1_ia64.deb
 c62e08a87827fdb2e1bd83376d3d3effb7798bf7a579dae4e9f75d9c5bfbbf19 77036 postgresql-plperl-8.4_8.4.9-0squeeze1_ia64.deb
 cc1e01a9b1238de2ac56619a40e60ab9ee11fdf27b50f685e982e7b502f4cd4a 71740 postgresql-plpython-8.4_8.4.9-0squeeze1_ia64.deb
 3815a542086416fb27a97bb440d223f0d789460fce6b7dd7f65a190fa2a841a8 53714 postgresql-pltcl-8.4_8.4.9-0squeeze1_ia64.deb
Files: 
 9e8fa1db7c3ad4ec2c9ace6d25cfd098 283928 libdevel optional libpq-dev_8.4.9-0squeeze1_ia64.deb
 79a15ba822c5a97f0c4cc0f58908920b 188594 libs optional libpq5_8.4.9-0squeeze1_ia64.deb
 28bf5179ab66b1e5eb6e146c0a47df98 107968 libs optional libecpg6_8.4.9-0squeeze1_ia64.deb
 303d21a72f2967a17d67dabe1c81c16b 344960 libdevel optional libecpg-dev_8.4.9-0squeeze1_ia64.deb
 64503eff57589c4cd891ef11e29e4f67 34460 libs optional libecpg-compat3_8.4.9-0squeeze1_ia64.deb
 3d40ec5591cd36fb084d32004e1b1afb 71698 libs optional libpgtypes3_8.4.9-0squeeze1_ia64.deb
 6dcc0d6ac94f2eb698a3beaca078d760 6475730 database optional postgresql-8.4_8.4.9-0squeeze1_ia64.deb
 de5f2bb11e46bfec9207f85ffd0f059d 1680192 database optional postgresql-client-8.4_8.4.9-0squeeze1_ia64.deb
 c3c1d606960c5974968d1a6654b3f9e1 650462 libdevel optional postgresql-server-dev-8.4_8.4.9-0squeeze1_ia64.deb
 bde98d0c2d7e6af335f27a7dcd8b361d 570424 database optional postgresql-contrib-8.4_8.4.9-0squeeze1_ia64.deb
 75c65067bd35406ce5e94b79d6bb9990 77036 database optional postgresql-plperl-8.4_8.4.9-0squeeze1_ia64.deb
 1d165dc40cd1bb501b533eba92a0ac69 71740 database optional postgresql-plpython-8.4_8.4.9-0squeeze1_ia64.deb
 3626bbc93b3f60396d1ccdaf524c41c3 53714 database optional postgresql-pltcl-8.4_8.4.9-0squeeze1_ia64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=+g4Q
-----END PGP SIGNATURE-----