-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: mipsel Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: mipsel Build Daemon (rem) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 7843559edfae649c49c302c42b7b50d23adf221a 498182 libpq-dev_8.3.16-0lenny1_mipsel.deb 33883563dcddb5e20e3d55d18c906472d600aba1 417990 libpq5_8.3.16-0lenny1_mipsel.deb 1d44afaff17f2aef38ea4e576e5fae4fd0855e53 316056 libecpg6_8.3.16-0lenny1_mipsel.deb ebba128e8f498f96fedbc249bea46bc9abf14560 495968 libecpg-dev_8.3.16-0lenny1_mipsel.deb 545fd93305095acf27e0239250695d0afef8391e 295436 libecpg-compat3_8.3.16-0lenny1_mipsel.deb f4bd47dce474d4dbd1352117c87bb53c17bdf3db 319102 libpgtypes3_8.3.16-0lenny1_mipsel.deb d81648fac3a7aa2c5c95131c29601388f049439b 5307474 postgresql-8.3_8.3.16-0lenny1_mipsel.deb b35e42e71f0f05763250b76a9fcf52c9604a0e7d 1718058 postgresql-client-8.3_8.3.16-0lenny1_mipsel.deb fc0b9ac311609c0540e8c985117192d85e298673 862122 postgresql-server-dev-8.3_8.3.16-0lenny1_mipsel.deb 4eb46b85d0a2bc8ec22aa6b233121b986ee212d0 614176 postgresql-contrib-8.3_8.3.16-0lenny1_mipsel.deb fc81d0f14d21df63e2c19d770527caddf160f67c 311186 postgresql-plperl-8.3_8.3.16-0lenny1_mipsel.deb 8a9717e2784dd812287f734c67fdd1102aaf2eaa 307544 postgresql-plpython-8.3_8.3.16-0lenny1_mipsel.deb 6ffe875ae9e0b1d4acc1f447bdb22ea41e413954 306242 postgresql-pltcl-8.3_8.3.16-0lenny1_mipsel.deb Checksums-Sha256: 2ca18f2ee00aef2f953cc032ca949a991dd64a01a73c7ab3a71cbe0a5c61b6cb 498182 libpq-dev_8.3.16-0lenny1_mipsel.deb 6dbf5b6ee70fdd159a2f0f5de5a9320d6638e470fb1e4f9e28200c0b53372616 417990 libpq5_8.3.16-0lenny1_mipsel.deb d3842adfbdf060ce40ad46c5c1fdd9dd9a98323c5e5673f651e5eedea58736bc 316056 libecpg6_8.3.16-0lenny1_mipsel.deb e151ecfd902d87bba1ed887a8ad864839025390c46fd485e19d3f575adf190ce 495968 libecpg-dev_8.3.16-0lenny1_mipsel.deb 69c455f4304bfe5f979c55e6c8084189203371dcde9ad4e0556f436bf94a9281 295436 libecpg-compat3_8.3.16-0lenny1_mipsel.deb e8518ed2b812562d22e516235f72e154f9b09a8c383fbef6cce7f7e68fb99adc 319102 libpgtypes3_8.3.16-0lenny1_mipsel.deb 8f8bb05537d3bf88a2405c4ffacd93987dd3fe6595b0ee2b1813b7a38d8d8770 5307474 postgresql-8.3_8.3.16-0lenny1_mipsel.deb 6978ee643ba63602eb6602e33168f557877f661397027d0519d6b633dd2645e5 1718058 postgresql-client-8.3_8.3.16-0lenny1_mipsel.deb 4d0d1803518b5e445654521fc504b5f977fa394a28447d26c1709b7ef2db644e 862122 postgresql-server-dev-8.3_8.3.16-0lenny1_mipsel.deb 48be19f9d1451794db72917cf45806bbdf90af29ee1453793178535e714ef3ca 614176 postgresql-contrib-8.3_8.3.16-0lenny1_mipsel.deb 1eb5b4451a61b566efdae1f86f78e35c3af09d48ecf96f8e903ef60c0a9677b4 311186 postgresql-plperl-8.3_8.3.16-0lenny1_mipsel.deb 7428b0a034205e6b68c9cdb823bfb87bececc38a5ec5817ee5432950e95b7423 307544 postgresql-plpython-8.3_8.3.16-0lenny1_mipsel.deb 8443d56118b3ec3c84bbb676f427c8e9d47fb52e4a457b04ea6687f83c097753 306242 postgresql-pltcl-8.3_8.3.16-0lenny1_mipsel.deb Files: 57e512089641d799fdf2aa682c0befc4 498182 libdevel optional libpq-dev_8.3.16-0lenny1_mipsel.deb a3cc01d895c064bb113228c261623383 417990 libs optional libpq5_8.3.16-0lenny1_mipsel.deb 58dddabab2a7acf8c587a0c66dc09cbe 316056 libs optional libecpg6_8.3.16-0lenny1_mipsel.deb c5dd8490edfc4b677652730f79182340 495968 libdevel optional libecpg-dev_8.3.16-0lenny1_mipsel.deb c0c0262b27428be08d41ea5008cc540b 295436 libs optional libecpg-compat3_8.3.16-0lenny1_mipsel.deb dda82179688e4b770d6939d40c8bc1da 319102 libs optional libpgtypes3_8.3.16-0lenny1_mipsel.deb 3f5f687c0efaa3296d17603e18db0a24 5307474 misc optional postgresql-8.3_8.3.16-0lenny1_mipsel.deb 3dea7f63ea63f7885fa6e6d1cf7904ec 1718058 misc optional postgresql-client-8.3_8.3.16-0lenny1_mipsel.deb 720dea0d3759878e979f588bf961261a 862122 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_mipsel.deb fe98159a24bf6d87ca7fb4e130e4a68c 614176 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_mipsel.deb 45da73fedead733772597d207d93a8eb 311186 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_mipsel.deb 33a3a30a992c95e39ca77dcd6f923407 307544 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_mipsel.deb 7bbb796091c0da7c1434adc1d76b0ee9 306242 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_mipsel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJOm8R6AAoJEMs9/+LXn0w/onEP/A1Zwlbmd04teMg52E3oSCr7 /lCcVEJaXBP/JtbdfbP0moAvBX9ci25x1OjMrUMNqSjMF7Rpz6eEinNUvX4QNOJb r23dK3UgMIr+aTtmbRo2DjBpR2FE4NyXh1QAQKWtYCQyx5gcdhzeBTsdLux62CmX gnMRsk3h/F2HqqS6O3Bsr+9CPmGFPdQnH85GzUAcQCwufvQB6J88Y2/0ArZzbYxn /WjAtlXiae5XEY50cjuzOcr8cnM3hRm66qzcgj8ZZef56EdzebAhaGNFDOszsGag xIk85olmvFBw3aenaY3qCpeXMwBkkAkOnKQcTQE8wfdLWU+VOd7Y9RPsEP9DVDIp Kp5jrzxIOrQBoPxOrIbr+5qvZgzfTumAF7UPhhnoRsZSLAN0HDZgdXZewoyRDWty caTCbDN/C5x+X9Nf5QKEZpsNYfwVRLasbJQCGbdOJMhCRIeWDHnI3j5n6z0HmocW olL0YtE7xJXWwzBXGp7I1gXFU0l715I45JVhU8PYfM4ks5XVU5iuCtRqGdlpw2gK MmDYQFY/mFGlWhCJBcSrv/tzNVQ7BIhAx9eS2+VSma9uuOp+g8GB1Stlm+NqiWEa bHHd+2vGhwODa2OhsaJdw0lhGs41Ic3TL1tK4jdDm+G5TXSzLAzggpqbM2efZ3Od SJ+IDAGTjBLstDbzHssv =kc3q -----END PGP SIGNATURE-----