-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 04 Oct 2011 11:32:12 +0200
Source: postgresql-8.4
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.4 postgresql-client-8.4 postgresql-server-dev-8.4 postgresql-doc-8.4 postgresql-contrib-8.4 postgresql-plperl-8.4 postgresql-plpython-8.4 postgresql-pltcl-8.4 postgresql postgresql-client postgresql-doc postgresql-contrib
Architecture: s390
Version: 8.4.9-0squeeze1
Distribution: squeeze-security
Urgency: low
Maintainer: s390 Build Daemon (zandonai) <buildd_s390-zandonai@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 8.4
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql - object-relational SQL database (supported version)
 postgresql-8.4 - object-relational SQL database, version 8.4 server
 postgresql-client - front-end programs for PostgreSQL (supported version)
 postgresql-client-8.4 - front-end programs for PostgreSQL 8.4
 postgresql-contrib - additional facilities for PostgreSQL (supported version)
 postgresql-contrib-8.4 - additional facilities for PostgreSQL
 postgresql-doc - documentation for the PostgreSQL database management system
 postgresql-doc-8.4 - documentation for the PostgreSQL database management system
 postgresql-plperl-8.4 - PL/Perl procedural language for PostgreSQL 8.4
 postgresql-plpython-8.4 - PL/Python procedural language for PostgreSQL 8.4
 postgresql-pltcl-8.4 - PL/Tcl procedural language for PostgreSQL 8.4
 postgresql-server-dev-8.4 - development files for PostgreSQL 8.4 server-side programming
Closes: 628503 631285
Changes: 
 postgresql-8.4 (8.4.9-0squeeze1) stable-security; urgency=low
 .
   * New upstream bug fix/security release:
      - Fix bugs in indexing of in-doubt HOT-updated tuples.
        These bugs could result in index corruption after reindexing a
        system catalog. They are not believed to affect user indexes.
      - Fix multiple bugs in GiST index page split processing.
        The probability of occurrence was low, but these could lead to
        index corruption.
      - Fix possible buffer overrun in tsvector_concat().
        The function could underestimate the amount of memory needed for
        its result, leading to server crashes.
      - Fix crash in xml_recv when processing a "standalone" parameter.
      - Make pg_options_to_table return NULL for an option with no value.
        Previously such cases would result in a server crash.
      - Avoid possibly accessing off the end of memory in "ANALYZE" and in
        SJIS-2004 encoding conversion.
        This fixes some very-low-probability server crash scenarios.
      - Prevent intermittent hang in interactions of startup process with
        bgwriter process.
        This affected recovery in non-hot-standby cases.
      - Fix race condition in relcache init file invalidation.
        There was a window wherein a new backend process could read a stale
        init file but miss the inval messages that would tell it the data
        is stale. The result would be bizarre failures in catalog accesses,
        typically "could not read block 0 in file ..." later during
        startup.
      - Fix memory leak at end of a GiST index scan.
        Commands that perform many separate GiST index scans, such as
        verification of a new GiST-based exclusion constraint on a table
        already containing many rows, could transiently require large
        amounts of memory due to this leak.
      - Fix incorrect memory accounting (leading to possible memory bloat)
        in tuplestores supporting holdable cursors and plpgsql's RETURN
        NEXT command.
      - Fix performance problem when constructing a large, lossy bitmap.
      - Fix join selectivity estimation for unique columns.
        This fixes an erroneous planner heuristic that could lead to poor
        estimates of the result size of a join.
      - Fix nested PlaceHolderVar expressions that appear only in
        sub-select target lists. This mistake could result in outputs of an
        outer join incorrectly appearing as NULL.
      - Allow nested EXISTS queries to be optimized properly.
      - Fix array- and path-creating functions to ensure padding bytes are
        zeroes.  This avoids some situations where the planner will think that
        semantically-equal constants are not equal, resulting in poor
        optimization.
      - Fix "EXPLAIN" to handle gating Result nodes within inner-indexscan
        subplans.  The usual symptom of this oversight was "bogus varno" errors.
      - Work around gcc 4.6.0 bug that breaks WAL replay.  This could lead to
        loss of committed transactions after a server crash.
      - Fix dump bug for VALUES in a view.
      - Disallow SELECT FOR UPDATE/SHARE on sequences.
        This operation doesn't work as expected and can lead to failures.
      - Fix "VACUUM" so that it always updates pg_class.reltuples/relpages.
        This fixes some scenarios where autovacuum could make increasingly
        poor decisions about when to vacuum tables.
      - Defend against integer overflow when computing size of a hash table.
      - Fix cases where "CLUSTER" might attempt to access already-removed
        TOAST data.
      - Fix portability bugs in use of credentials control messages for
        "peer" authentication.
      - Fix SSPI login when multiple roundtrips are required.
        The typical symptom of this problem was "The function requested is
        not supported" errors during SSPI login.
      - Throw an error if "pg_hba.conf" contains hostssl but SSL is
        disabled.  This was concluded to be more user-friendly than the
        previous behavior of silently ignoring such lines.
      - Fix typo in pg_srand48 seed initialization.
        This led to failure to use all bits of the provided seed. This
        function is not used on most platforms (only those without
        srandom), and the potential security exposure from a
        less-random-than-expected seed seems minimal in any case.
      - Avoid integer overflow when the sum of LIMIT and OFFSET values
        exceeds 2^63.
      - Add overflow checks to int4 and int8 versions of generate_series().
      - Fix trailing-zero removal in to_char().  In a format with FM and no
        digit positions after the decimal point, zeroes to the left of the
        decimal point could be removed incorrectly.
      - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63.
      - Weaken plpgsql's check for typmod matching in record values.
        An overly enthusiastic check could lead to discarding length
        modifiers that should have been kept.
      - Fix pg_upgrade to preserve toast tables' relfrozenxids during an
        upgrade from 8.3. Failure to do this could lead to "pg_clog" files
        being removed too soon after the upgrade.
      - Fix psql's counting of script file line numbers during COPY from a
        different file.
      - Fix pg_restore's direct-to-database mode for
        standard_conforming_strings.  pg_restore could emit incorrect commands
        when restoring directly to a database server from an archive file that
        had been made with standard_conforming_strings set to on.
      - Be more user-friendly about unsupported cases for parallel
        pg_restore.  This change ensures that such cases are detected and
        reported before any restore actions have been taken.
      - Fix write-past-buffer-end and memory leak in libpq's LDAP service
        lookup code.
      - In libpq, avoid failures when using nonblocking I/O and an SSL
        connection.
      - Improve libpq's handling of failures during connection startup.
        In particular, the response to a server report of fork() failure
        during SSL connection startup is now saner.
      - Improve libpq's error reporting for SSL failures.
      - Fix PQsetvalue() to avoid possible crash when adding a new tuple to
        a PGresult originally obtained from a server query.
      - Make ecpglib write double values with 15 digits precision.
      - In ecpglib, be sure LC_NUMERIC setting is restored after an error.
      - Apply upstream fix for blowfish signed-character bug
        (CVE-2011-2483) (Closes: #631285)
        "contrib/pg_crypto"'s blowfish encryption code could give wrong
        results on platforms where char is signed (which is most), leading
        to encrypted passwords being weaker than they should be.
      - Fix memory leak in "contrib/seg".
      - Fix pgstatindex() to give consistent results for empty indexes.
      - Allow building with perl 5.14. (Closes: #628503)
   * 15-revert-typmod-check.patch: Update for new upstream release.
Checksums-Sha1: 
 877e7421e1b928e521dc5147b551a4af597de4f7 242878 libpq-dev_8.4.9-0squeeze1_s390.deb
 4cf7c11b9b0825f01f6fcda74f84981eacb39521 163988 libpq5_8.4.9-0squeeze1_s390.deb
 25822a88659ea88ed11c0325a9754b50bac24ca0 96398 libecpg6_8.4.9-0squeeze1_s390.deb
 83a5d3504128541c4f67e2daf563422a7c579b81 262384 libecpg-dev_8.4.9-0squeeze1_s390.deb
 dc0096bae5b0d9dd76f42e9c3e2e3d139e8c652e 31704 libecpg-compat3_8.4.9-0squeeze1_s390.deb
 6eb068d5fc49e5f9c4481e56e36fc46d2c5453cb 57742 libpgtypes3_8.4.9-0squeeze1_s390.deb
 bab1e669b52e234ec0afa7008d5c16f6e04d5f86 5871874 postgresql-8.4_8.4.9-0squeeze1_s390.deb
 d40671b64b9b5913f7a443a2166a8ca653effff2 1501730 postgresql-client-8.4_8.4.9-0squeeze1_s390.deb
 09ab186b48e2c055bbb8bc8f966e1e41e73b4855 644404 postgresql-server-dev-8.4_8.4.9-0squeeze1_s390.deb
 5a37358cdb7e7c725cbe58d6e22ee2b705d10c95 434570 postgresql-contrib-8.4_8.4.9-0squeeze1_s390.deb
 481a1b4543ceb3c3a820be1ba67566140127af8e 58538 postgresql-plperl-8.4_8.4.9-0squeeze1_s390.deb
 d908195fa45139a897b4e0750c0ddf8b6eb9ab9b 59684 postgresql-plpython-8.4_8.4.9-0squeeze1_s390.deb
 07d15b8959c58052631e91951524a47c11667a45 45990 postgresql-pltcl-8.4_8.4.9-0squeeze1_s390.deb
Checksums-Sha256: 
 ebc83f3ad796c79e702a2d438c5cfe97298484dfffef03d969792978b2c5f616 242878 libpq-dev_8.4.9-0squeeze1_s390.deb
 bb01ce2544143709aa5d7c149a3b936d81633e1f99710752a300d0474d885b27 163988 libpq5_8.4.9-0squeeze1_s390.deb
 52f09225b11156e7538905d1dcd18b3605b6d8699ae793ec4d36b458aad4504a 96398 libecpg6_8.4.9-0squeeze1_s390.deb
 b08ffc6426d19065528c5ce8acddcac5542666229b2c9968256d472230409c49 262384 libecpg-dev_8.4.9-0squeeze1_s390.deb
 1f0299329e48a1f1d7b9b3be2557c83c9831f4f3134b2764faeff11acb105751 31704 libecpg-compat3_8.4.9-0squeeze1_s390.deb
 f7769ccd533c55905f1e21fceaaf31d7abc8f62cfab3702ffc7636f9101261fa 57742 libpgtypes3_8.4.9-0squeeze1_s390.deb
 c00e4b505fadc9b1885bf5eed28801de41948f2894ca3f93e9ed00a195cc0ee8 5871874 postgresql-8.4_8.4.9-0squeeze1_s390.deb
 551098fc19342255b2aef2777d11b49a36f52b69dafb562812fef8d74880c3b1 1501730 postgresql-client-8.4_8.4.9-0squeeze1_s390.deb
 14e19a37f8a165a1b212ab7c3940ef154ad8628cae463b64ba879c010d210c10 644404 postgresql-server-dev-8.4_8.4.9-0squeeze1_s390.deb
 c2738e82076bb36b723691a7e51cb766a57a20954294edc7d9fe89cef88f6b59 434570 postgresql-contrib-8.4_8.4.9-0squeeze1_s390.deb
 12c45ec30d322b96ba719ba73fe60ba473a2ccbd3f61c944433d0a8c2427dbc3 58538 postgresql-plperl-8.4_8.4.9-0squeeze1_s390.deb
 8a814eaed893386b7e3096d93006182bbc9c00a2ca2ac6c6c3bbe7e6ca1b6306 59684 postgresql-plpython-8.4_8.4.9-0squeeze1_s390.deb
 1c35c45ea5a6fb3da23d1c7958e04715ef4c6b46409513b28c2194412977862e 45990 postgresql-pltcl-8.4_8.4.9-0squeeze1_s390.deb
Files: 
 bdda05d8351815642af9d163355b39b4 242878 libdevel optional libpq-dev_8.4.9-0squeeze1_s390.deb
 04cfe3aa529edbd088d2f4f12f9923fa 163988 libs optional libpq5_8.4.9-0squeeze1_s390.deb
 323ca462c1efdb0b1159063008eacf41 96398 libs optional libecpg6_8.4.9-0squeeze1_s390.deb
 105b8b1c5e13705b6abdbd5f76055a00 262384 libdevel optional libecpg-dev_8.4.9-0squeeze1_s390.deb
 02296e62819ce66187519c4c1f207848 31704 libs optional libecpg-compat3_8.4.9-0squeeze1_s390.deb
 2c9e2c2ecc3bc41b94a79aaf6ea15ed2 57742 libs optional libpgtypes3_8.4.9-0squeeze1_s390.deb
 b1622eafd2af38eb0dd45fe20e6fb569 5871874 database optional postgresql-8.4_8.4.9-0squeeze1_s390.deb
 ee56b41a075d8be138a17ab95a709b35 1501730 database optional postgresql-client-8.4_8.4.9-0squeeze1_s390.deb
 d73e2d984f59e6462bc475cac16a1263 644404 libdevel optional postgresql-server-dev-8.4_8.4.9-0squeeze1_s390.deb
 d6f52d7c091543564c5ecd66b3ad0adb 434570 database optional postgresql-contrib-8.4_8.4.9-0squeeze1_s390.deb
 8b99c66842aa988c036f3670c1ef36da 58538 database optional postgresql-plperl-8.4_8.4.9-0squeeze1_s390.deb
 26ee54faa782931fdad2170641388d19 59684 database optional postgresql-plpython-8.4_8.4.9-0squeeze1_s390.deb
 0150143f2560d0afe1f796bd06156306 45990 database optional postgresql-pltcl-8.4_8.4.9-0squeeze1_s390.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=OyqU
-----END PGP SIGNATURE-----