-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: hppa Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: hppa Build Daemon (peri) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: fc1f34e54da3cbd6ab3fde2e03975ed8c9f43fe8 501394 libpq-dev_8.3.16-0lenny1_hppa.deb 3aaf19bd96353a38c4f28852f4daebdb092b0acf 430822 libpq5_8.3.16-0lenny1_hppa.deb a5f94727492b568bd9e3ce0541c0ed91584b20ad 321194 libecpg6_8.3.16-0lenny1_hppa.deb fd605507f9771e16c7ea719b74631b8e9f3eff97 514088 libecpg-dev_8.3.16-0lenny1_hppa.deb 4b10ccb39cd0e38a17d89c3ba8ee56bd06f9e3dc 297224 libecpg-compat3_8.3.16-0lenny1_hppa.deb 383241913481b57a52a65a0845092aa858759b3b 322820 libpgtypes3_8.3.16-0lenny1_hppa.deb 61c6ba7130ae2f827a2dc1b9d2a4317e5913f1ea 5899950 postgresql-8.3_8.3.16-0lenny1_hppa.deb 6281a7a012ce75e290cd227fc7782743cb56787f 1779116 postgresql-client-8.3_8.3.16-0lenny1_hppa.deb ee4329b2b82456fafac346964d3d0db14e4f4f78 866676 postgresql-server-dev-8.3_8.3.16-0lenny1_hppa.deb fb416a4cffb89ad54e09aca5c87d0dd4319c0c4e 667546 postgresql-contrib-8.3_8.3.16-0lenny1_hppa.deb f67529c70c8486a8bfda087136f6e5080b5e7c32 320202 postgresql-plperl-8.3_8.3.16-0lenny1_hppa.deb bf0e479a0fde2f88f1087e818a4fe59915326971 312248 postgresql-plpython-8.3_8.3.16-0lenny1_hppa.deb 9696faa2717c135447c0a7f9fd5e05d281f9c6fe 309858 postgresql-pltcl-8.3_8.3.16-0lenny1_hppa.deb Checksums-Sha256: 7decc1ae1575f323763d953576ad60cb1313638908bdcc8b7a7da43f6bff897f 501394 libpq-dev_8.3.16-0lenny1_hppa.deb c792f38bf0aa4fa771e9fe5905154c2ecb1d469cf70461eae92b8fcfffd5a487 430822 libpq5_8.3.16-0lenny1_hppa.deb 3778cf36de2ec6810946fd4a9fb3427444af98cfa7a23b78ac2f6a834cbf38b0 321194 libecpg6_8.3.16-0lenny1_hppa.deb 6734c5481f220d300b2e9d51467bd4a75bcac4c7db49ed85ccd6f98d7ba0873b 514088 libecpg-dev_8.3.16-0lenny1_hppa.deb 8a78fef24c73cb6f9a8dd273321878606e9beee85d333a62f63930dd2cb6363f 297224 libecpg-compat3_8.3.16-0lenny1_hppa.deb aa489d0e0dfb08ffa91362c793a7e1a92a1fd09ba10823b2dff93b2b9e8a61f5 322820 libpgtypes3_8.3.16-0lenny1_hppa.deb 4f30a5eb6492ebe31519ed4f9e97028b0c28c644028fc3f25ad9c801497de6ba 5899950 postgresql-8.3_8.3.16-0lenny1_hppa.deb 1244a75c972d288aaae94491be86c2effcaa284033a635dac7944b828eed8a8a 1779116 postgresql-client-8.3_8.3.16-0lenny1_hppa.deb 98c284734398605fc90aabc8ccee9906f03c46584f1e5ad21151d02407d2adf0 866676 postgresql-server-dev-8.3_8.3.16-0lenny1_hppa.deb 0965fcae9d1304f78805f93abf00a273dbe98bcf9ba3df680737b7fc1567ca0b 667546 postgresql-contrib-8.3_8.3.16-0lenny1_hppa.deb 9045152281178c1a363f795c15c179c59cb75d5e2a782e9c9557af6e1be11266 320202 postgresql-plperl-8.3_8.3.16-0lenny1_hppa.deb 828f6bedcf41c8f7d76bd88933d3b7f3e59f4bd87ca2e9935da0916ed065b14a 312248 postgresql-plpython-8.3_8.3.16-0lenny1_hppa.deb 79923c28bcd2f68d0de08d8f757b0218ad40b2525002f81052f7edef39924481 309858 postgresql-pltcl-8.3_8.3.16-0lenny1_hppa.deb Files: 9b3ba345e1441f44a51972e0f83bfcf5 501394 libdevel optional libpq-dev_8.3.16-0lenny1_hppa.deb 64446343d57f850bc351c2442571cdc0 430822 libs optional libpq5_8.3.16-0lenny1_hppa.deb 423f0b652b4c2ad1c7dda9edc5c7c26b 321194 libs optional libecpg6_8.3.16-0lenny1_hppa.deb 36f53250d379fb7b7670518cea5b4855 514088 libdevel optional libecpg-dev_8.3.16-0lenny1_hppa.deb d51651e880c019f2a24e761eecc0dafa 297224 libs optional libecpg-compat3_8.3.16-0lenny1_hppa.deb 6425247c4c9fff0454ce78fa934c2a7a 322820 libs optional libpgtypes3_8.3.16-0lenny1_hppa.deb 840fd0b239948eed8d9688e2bad9a5a8 5899950 misc optional postgresql-8.3_8.3.16-0lenny1_hppa.deb 6cd4927c735f65c652ef9707b9fd92d4 1779116 misc optional postgresql-client-8.3_8.3.16-0lenny1_hppa.deb bc319208dc8f62a3ac90a7e0511e0330 866676 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_hppa.deb 7f2ece1fb11862d3de53bd098eac1503 667546 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_hppa.deb 2d7c616808b3721cfc0dcc886f06523b 320202 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_hppa.deb 26c86d3b7b94ccb84cc9f1c116d60cd8 312248 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_hppa.deb 037c8fa64d04dc51e4e8289e907e8159 309858 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_hppa.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBCAAGBQJOm8HZAAoJEDnMszRyb57UdFAP/jlp6Q9sf8d3hL5rasKcW+9R n5QZ+JtAdsryzdd3t6JB8rUkrOBHQ1AxYb9Jq79C4gn1XGCuzoLDp1VxESfBKogG rfmyPSCGEgY+kzabSPNGiXuy1nChuvY/Sdj477QyaI1jCd8Sv2MhPxf6nK3G3q6O 0EI3tMWQCFt80dYUWhNgCjm1GxKEaGdLEsyDxdzVcgujEusqOeNyYK6OPR1KrvGV /FEAuo7hK2DsAVuDGPLLrhnr4CMst4muwp8iwm8eu2HzBCAF0afnj/IvcvE4IpU6 IsxuDRSl2h8+eJmcqOyXPHNlKToj2RIjVaCX0XR+qGPZc3Tce2+KbdKq85B6lVAl P2tRml5UPHGAf6QYPYk4tWAlXVcZXEmEpIwNC/rK4Qn6/+x43kdxEDZrIT5diT+h XJ5eCnjjxx7hNC11Wk5BI5fPwrzTLnex+I6EQk8NScACImdOYOqblCXy/gT5Uxi0 MaQ+jmMVMaRj2k97pSplWK4r8IKQMpJp7S7OpYAOcR7rKA6n8DZZeYYywKjcp9lr GU6IZywRtbUQJPM3Ww7ubLMiETtw/847OvGqCi8wTdEBO10lNASN+a99cas/1DWW XAezyRDnQYehjxO7SGSMI6R9LbcDHuEqX0Loz/Xf8pcX5jwUG3JTUv1JjWBhtIpH b73a2pp9xfV8LniLv60f =cFjt -----END PGP SIGNATURE-----