-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: i386 Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: i386 Build Daemon (murphy) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 7bff8c7ff79e4d45e4fe001f7ef3ef376fc39f61 486958 libpq-dev_8.3.16-0lenny1_i386.deb dbbf27f28c6fe9ff02365f823d1727b00838d9b7 420278 libpq5_8.3.16-0lenny1_i386.deb 30355833fb86a2d11f0feea96be779e45bcb73ef 316916 libecpg6_8.3.16-0lenny1_i386.deb c372f7817a54e05f3dacc037a89c33b5a46fcbae 498958 libecpg-dev_8.3.16-0lenny1_i386.deb ce99ad57fb1d665a91e9833ee82fe88852be1acd 295856 libecpg-compat3_8.3.16-0lenny1_i386.deb f36f049e1da68fe1afbd01ebe996232975613e89 317408 libpgtypes3_8.3.16-0lenny1_i386.deb 81ea16133f0890ac0e0b01b931202165984457f7 5332018 postgresql-8.3_8.3.16-0lenny1_i386.deb b3092b5ebb175116661096d29d92d533dabb9c66 1712460 postgresql-client-8.3_8.3.16-0lenny1_i386.deb ed1a7c32990830897c4385e022ba890efba1904e 861898 postgresql-server-dev-8.3_8.3.16-0lenny1_i386.deb 464c278eb78098e3256629612f796c7587472a85 617058 postgresql-contrib-8.3_8.3.16-0lenny1_i386.deb 03036163065d64e329b4d47dadc6a7ee727f52cf 316266 postgresql-plperl-8.3_8.3.16-0lenny1_i386.deb 43c6eecb15e55b668634c206c09d5024640250d4 307872 postgresql-plpython-8.3_8.3.16-0lenny1_i386.deb 39925fc5c6bc8021ed3d1228c698361aeaa0faa3 307496 postgresql-pltcl-8.3_8.3.16-0lenny1_i386.deb Checksums-Sha256: ba31b92aecadda45d36d1e3e1db0c66e441d92a25ad182bfbed0b1a603cf8e38 486958 libpq-dev_8.3.16-0lenny1_i386.deb 88083e0e1597db923daeedf518db2d569fcb6438f888fb0fae08b299012701ec 420278 libpq5_8.3.16-0lenny1_i386.deb 373499060b787dfe414da816731208b6e91c914d5797c1706f7badd60b285855 316916 libecpg6_8.3.16-0lenny1_i386.deb b080a858f3c1af60217cc32479c79b69b9ab7d4bef6f9e307146827989b5468d 498958 libecpg-dev_8.3.16-0lenny1_i386.deb a80af3af90a61cd099c2da05b6c0d26022646639f482a21b5a66a8a28051ed1b 295856 libecpg-compat3_8.3.16-0lenny1_i386.deb 6eba4238f147af4219891103f279a35ef13ea162e24d5c4584d11f3a7fd47b75 317408 libpgtypes3_8.3.16-0lenny1_i386.deb 2dcaab685acaec1c3e386ac66a804205fefb22900a360e34a31b1d1834974693 5332018 postgresql-8.3_8.3.16-0lenny1_i386.deb b91618b0921211483e8f9a9a8865e9633b633dd4e2e98f3a7ad45f730732b52a 1712460 postgresql-client-8.3_8.3.16-0lenny1_i386.deb f0c72d15572c211f4e6bdcb227db633728d4c716ca5270386fafb27c6495320c 861898 postgresql-server-dev-8.3_8.3.16-0lenny1_i386.deb 20d5b56e60615078d9db4de90ccebfb56ebd212709323804fe03b97f7b68ab44 617058 postgresql-contrib-8.3_8.3.16-0lenny1_i386.deb 01eab23f6c377783569ec4d436e5a607468c56826525c14ffa86ee7f9bf217ae 316266 postgresql-plperl-8.3_8.3.16-0lenny1_i386.deb 12ac014f85f4f315d0aa3061e1d7bde5528bae3670c358a68702b42d994563c9 307872 postgresql-plpython-8.3_8.3.16-0lenny1_i386.deb 30eaf8c626c8a6daf20f06a0e0b2a75d94f9ae5c39a638aedbd23b101d06e05f 307496 postgresql-pltcl-8.3_8.3.16-0lenny1_i386.deb Files: 02013b54dba4c1048815352fa6403cd2 486958 libdevel optional libpq-dev_8.3.16-0lenny1_i386.deb 2e6760bca2e1fe5ee36f512db84ab09d 420278 libs optional libpq5_8.3.16-0lenny1_i386.deb ed86edbe2eb7325a6b84c5167eeb36f0 316916 libs optional libecpg6_8.3.16-0lenny1_i386.deb 20d31d14e4a2bfd8980745429df0570e 498958 libdevel optional libecpg-dev_8.3.16-0lenny1_i386.deb 40881e0f43c5e8d54f05e18044964f89 295856 libs optional libecpg-compat3_8.3.16-0lenny1_i386.deb 8505d14b9fca3f45e6550a70794e854d 317408 libs optional libpgtypes3_8.3.16-0lenny1_i386.deb 560994f1c6a81aedddd869b2e3b7b217 5332018 misc optional postgresql-8.3_8.3.16-0lenny1_i386.deb cae798ab7784e0de1de9e01f1d1b5139 1712460 misc optional postgresql-client-8.3_8.3.16-0lenny1_i386.deb a8d1ecb082b3d1264305bdbe191f58c0 861898 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_i386.deb fa0de65eab8fe8768d432b912e5db95e 617058 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_i386.deb 50fe4be3f28d6ef2d840aff55bfb9623 316266 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_i386.deb 50a4c891873c72fa0c7910e52a0e2769 307872 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_i386.deb 7aaa79d6fda3350cc22d755eccb5ff9c 307496 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJOuFIgAAoJEDNF0n2wdNbJvUAP/2yrOHpwc5EKITgoKdIpeV4k LuEYaNObMc4Ag03fjY1EPFZDcEMf7JFm/vo1nR6RgvKsTL1f347H9vKJiaOjy3iQ 2bTiwKonfqbq3ZoNPvxyvt4Adv+Sum5LBxfZhTSMdA3MihW+o6snBQCKE5EITjab +LC/XyYTkiAO9tSjF93EjY5EWeUIks+Nf8sCwDpT4oOKqv9MmZEamu1pUj5wJVAz eokCLzrMPdCe55iuv09ptxyXTeaql+heP9h7VeyXcqRJn75n6Lmi66uXdQ4Yw6ps +r9JWPN67WKS54zsKVyIt01jTPIdHFkA0OuNEcVZADnx39kkssCEg06q/kaudFbW fUmls31AAGPyS0lmWheyojJz4AtObBDOP4vFKMl5YKJk7d41Vvqhnrk2nVNKKLxJ Hi5B8pjiAiom92nW6p3zxEjYx3aGKCQzRg1f34zE54AvjKVQ5GyuGapk4Yb5N1nq XLD6SNj/PyD8G8J08/dS4ltv885YmlZnFUoJ4kwvb70wzQBT7Z8U9Lmkpz/59bJr kl3LBQAdJ3fgNzsMDR4N+BLLJlercoL/gwIeKTPcorPNE5n5zPvtP/ToaBxhaKFl SMqraZT8I46iyTnYIrUDd8DbQBewVNS/fYuyxU1yZOVsxWsJMHgoGMUA0LJ0qfI9 Y/Fe0yLt2ChwutmRJ6SO =3dY6 -----END PGP SIGNATURE-----