-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 25 Sep 2011 13:40:58 +0200 Source: postgresql-8.3 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: s390 Version: 8.3.16-0lenny1 Distribution: lenny-security Urgency: low Maintainer: s390 Build Daemon (zandonai) Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.3 - object-relational SQL database, version 8.3 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.3 - front-end programs for PostgreSQL 8.3 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.3 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.3 - documentation for the PostgreSQL database management system postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming Changes: postgresql-8.3 (8.3.16-0lenny1) oldstable-security; urgency=low . * New upstream bug fix release 8.3.15: - Disallow including a composite type in itself. This prevents scenarios wherein the server could recurse infinitely while processing the composite type. While there are some possible uses for such a structure, they don't seem compelling enough to justify the effort required to make sure it always works safely. - Avoid potential deadlock during catalog cache initialization. In some cases the cache loading code would acquire share lock on a system index before locking the index's catalog. This could deadlock against processes trying to acquire exclusive locks in the other, more standard order. - Fix dangling-pointer problem in BEFORE ROW UPDATE trigger handling when there was a concurrent update to the target tuple. This bug has been observed to result in intermittent "cannot extract system attribute from virtual tuple" failures while trying to do UPDATE RETURNING ctid. There is a very small probability of more serious errors, such as generating incorrect index entries for the updated tuple. - Disallow "DROP TABLE" when there are pending deferred trigger events for the table. Formerly the "DROP" would go through, leading to "could not open relation with OID nnn" errors when the triggers were eventually fired. - Fix PL/Python memory leak involving array slices. - Fix pg_restore to cope with long lines (over 1KB) in TOC files. - Put in more safeguards against crashing due to division-by-zero with overly enthusiastic compiler optimization. * New upstream bug fix release 8.3.16: - Fix bugs in indexing of in-doubt HOT-updated tuples. These bugs could result in index corruption after reindexing a system catalog. They are not believed to affect user indexes. - Fix multiple bugs in GiST index page split processing. The probability of occurrence was low, but these could lead to index corruption. - Fix possible buffer overrun in tsvector_concat(). The function could underestimate the amount of memory needed for its result, leading to server crashes. - Fix crash in xml_recv when processing a "standalone" parameter. - Avoid possibly accessing off the end of memory in "ANALYZE" and in SJIS-2004 encoding conversion. This fixes some very-low-probability server crash scenarios. - Fix race condition in relcache init file invalidation. There was a window wherein a new backend process could read a stale init file but miss the inval messages that would tell it the data is stale. The result would be bizarre failures in catalog accesses, typically "could not read block 0 in file ..." later during startup. - Fix memory leak at end of a GiST index scan. Commands that perform many separate GiST index scans, such as verification of a new GiST-based exclusion constraint on a table already containing many rows, could transiently require large amounts of memory due to this leak. - Fix performance problem when constructing a large, lossy bitmap. - Fix array- and path-creating functions to ensure padding bytes are zeroes. This avoids some situations where the planner will think that semantically-equal constants are not equal, resulting in poor optimization. - Fix dump bug for VALUES in a view. - Disallow SELECT FOR UPDATE/SHARE on sequences. This operation doesn't work as expected and can lead to failures. - Defend against integer overflow when computing size of a hash table. - Fix cases where "CLUSTER" might attempt to access already-removed TOAST data. - Fix portability bugs in use of credentials control messages for "peer" authentication. - Fix SSPI login when multiple roundtrips are required. The typical symptom of this problem was "The function requested is not supported" errors during SSPI login. - Fix typo in pg_srand48 seed initialization. This led to failure to use all bits of the provided seed. This function is not used on most platforms (only those without srandom), and the potential security exposure from a less-random-than-expected seed seems minimal in any case. - Avoid integer overflow when the sum of LIMIT and OFFSET values exceeds 2^63. - Add overflow checks to int4 and int8 versions of generate_series(). - Fix trailing-zero removal in to_char(). In a format with FM and no digit positions after the decimal point, zeroes to the left of the decimal point could be removed incorrectly. - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63. - Fix psql's counting of script file line numbers during COPY from a different file. - Fix pg_restore's direct-to-database mode for standard_conforming_strings. pg_restore could emit incorrect commands when restoring directly to a database server from an archive file that had been made with standard_conforming_strings set to on. - Fix write-past-buffer-end and memory leak in libpq's LDAP service lookup code. - In libpq, avoid failures when using nonblocking I/O and an SSL connection. - Improve libpq's handling of failures during connection startup. In particular, the response to a server report of fork() failure during SSL connection startup is now saner. - Improve libpq's error reporting for SSL failures. - Make ecpglib write double values with 15 digits precision. - In ecpglib, be sure LC_NUMERIC setting is restored after an error. - Apply upstream fix for blowfish signed-character bug (CVE-2011-2483). "contrib/pg_crypto"'s blowfish encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be. - Fix memory leak in "contrib/seg". - Fix pgstatindex() to give consistent results for empty indexes. - Allow building with perl 5.14 (Alex Hunsaker) * Drop 00cvs-unregister-ssl-callbacks.patch, upstream now. Checksums-Sha1: 6ba1871c8532ecf05191af79b26198365b417e0f 497278 libpq-dev_8.3.16-0lenny1_s390.deb 04927195fc13be3576da2d9e9d69aa9edded709e 430500 libpq5_8.3.16-0lenny1_s390.deb 5a989ef5f3e75147e0b1b87faa3d8511d65c350a 319548 libecpg6_8.3.16-0lenny1_s390.deb 3af2be16d62a68ded97451d966a039b513da2806 512000 libecpg-dev_8.3.16-0lenny1_s390.deb e4d5c9fc684225d9194228e04cf139094e342345 296764 libecpg-compat3_8.3.16-0lenny1_s390.deb 6ddc0771a3e92074eb49723f9a6a39ff15ad0722 319792 libpgtypes3_8.3.16-0lenny1_s390.deb 9a8c5f438800c3c19b662a6a24ad755f8f828664 5858200 postgresql-8.3_8.3.16-0lenny1_s390.deb bd6c054b12e888881371249a757bfa7276aee4d0 1752962 postgresql-client-8.3_8.3.16-0lenny1_s390.deb 683dcb8eb7f5cafd89fe242f13d7565857aab73f 864734 postgresql-server-dev-8.3_8.3.16-0lenny1_s390.deb a99c8bf2e32df3dab55ba6306cea2a918dca1e52 661016 postgresql-contrib-8.3_8.3.16-0lenny1_s390.deb 15e42c049d1fe5d738df9a21489d834bf60e8554 315396 postgresql-plperl-8.3_8.3.16-0lenny1_s390.deb 9977f3cf0838a3efc095159d9c3d28e3fa436137 309816 postgresql-plpython-8.3_8.3.16-0lenny1_s390.deb 4bb7fccfd3e50a8a5457cd5deba3c06801c80814 307380 postgresql-pltcl-8.3_8.3.16-0lenny1_s390.deb Checksums-Sha256: 2bc85b9cc4419a8eacd54374e14b102a0c33751086d40d1bc29cc80d9dcbe7aa 497278 libpq-dev_8.3.16-0lenny1_s390.deb 8bfbf70d512ce640826284df605739f7d6f0e24c7797f8a35a2eaa2c27c16ebe 430500 libpq5_8.3.16-0lenny1_s390.deb f8b5a564944ecdae925c2a171d1c4b880e692640a93e49d70a37326daeae747a 319548 libecpg6_8.3.16-0lenny1_s390.deb f2036921e0aaefee26ec679a6c7c01f4f806d61529fbc4231a900509ed8dc979 512000 libecpg-dev_8.3.16-0lenny1_s390.deb fb9619b78912178804a9b7e0604022b2d65d96860e488e3bf65780f6dec657b7 296764 libecpg-compat3_8.3.16-0lenny1_s390.deb 406902582e885173c0662b6902de37dd761f60af1892b213978686e0da5c1eef 319792 libpgtypes3_8.3.16-0lenny1_s390.deb 48f509c0108d1d6f91794da64e179e70a2ad12179b4e8a15817ee460775318ae 5858200 postgresql-8.3_8.3.16-0lenny1_s390.deb 8c3c4fd9e9e2c0040a0ba6f224ed2b23bb970d75bda8c8f4784feda3f5d959c0 1752962 postgresql-client-8.3_8.3.16-0lenny1_s390.deb ae333dded029496c9b0f6d36a90b7d30731acaaef97ced5db229f4ecd7ba79c1 864734 postgresql-server-dev-8.3_8.3.16-0lenny1_s390.deb 1fc48ea1f599700970e3e9a7f68a0865791322fbf29b5aa4734b2d04fc31fb2f 661016 postgresql-contrib-8.3_8.3.16-0lenny1_s390.deb 054e7b4c1aac28e09625dfbd1ddccddda8ad5cc7e6fb95a2f5536897ae78d142 315396 postgresql-plperl-8.3_8.3.16-0lenny1_s390.deb a850ff3f8a636fae8bb512d9d285fa156d0bef84ac684abbe63dfa3fa16cc854 309816 postgresql-plpython-8.3_8.3.16-0lenny1_s390.deb e67d04bddac016399f1aaa8834fb5712664406e181bc62f29171758aa12703f5 307380 postgresql-pltcl-8.3_8.3.16-0lenny1_s390.deb Files: ebf8d44a56f9a609b88f17f7570724fc 497278 libdevel optional libpq-dev_8.3.16-0lenny1_s390.deb cec9be5efbe06b4d1467c7c0e6524e68 430500 libs optional libpq5_8.3.16-0lenny1_s390.deb 87e3ac1440b876573ce17888d8b2e4d6 319548 libs optional libecpg6_8.3.16-0lenny1_s390.deb e400b01528f4683467926b17c1c19a91 512000 libdevel optional libecpg-dev_8.3.16-0lenny1_s390.deb 81c9dd724a3c1d1e37ab886d1181e27a 296764 libs optional libecpg-compat3_8.3.16-0lenny1_s390.deb 237f1c2e75f1657b10f6d2f6b6c99adb 319792 libs optional libpgtypes3_8.3.16-0lenny1_s390.deb 5ab9a72e4cbe532b34a0938e7ab68ad0 5858200 misc optional postgresql-8.3_8.3.16-0lenny1_s390.deb af7101f47e617e234d913fe44f0cb886 1752962 misc optional postgresql-client-8.3_8.3.16-0lenny1_s390.deb c922ce78a9ab8192c5784d9f176da3e3 864734 libdevel optional postgresql-server-dev-8.3_8.3.16-0lenny1_s390.deb b4ccee0c211798044b43646e193b8c36 661016 misc optional postgresql-contrib-8.3_8.3.16-0lenny1_s390.deb 256e2b9e4157f6a2a7794db5dc50684d 315396 misc optional postgresql-plperl-8.3_8.3.16-0lenny1_s390.deb 2d2d71f7168ffa2c3e377516eadb2c06 309816 misc optional postgresql-plpython-8.3_8.3.16-0lenny1_s390.deb 3601646c03b47ef95836a3cf9bf97df9 307380 misc optional postgresql-pltcl-8.3_8.3.16-0lenny1_s390.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJOuE0nAAoJELWkVFx3JxH3sJkP/3TKbyN2yrT8hrxDvP6oIYAF 31gkVnmhJjzOjNbc0gQr3QQQ66QEIQnxk6mgsHFaC8n47zP/6LY7BRr87cZEavLK wnKI/VyMqq/yUK/I2c7FAyXnbt5ZmdYMn2Z/5MYyXcis/Jt0Cm+ylN7S2PKBIOvQ b2jZ8m6cgp5F7e3j/S6a1ryUE4e5wF+MmpjBm7hHD1L6SomwlzkrOtS5kd58i0Ai wraY3b9eIuj7p/zzuHAWKj4Ak+t6szCYjUv8A3+fGaB67ZTOPnsM+vFAQL0YAsa8 KF22lOjTC2efxOCYIP3H6+w+zEclY47cmAH97/6cN3BqqhjnQ7qcIHM3yGAtLp0P vkcrNTFwykbD8rVttM/OZIh5TD+vW6qB4UvJda/jUtja1KPcJG/PbT42uNtjQTx4 oTQ2F+ughSTIwAxWGjsMy6ZrIzk/b5C1a5lI/mJzCOx0hHcKSIFQh2jQAP3mk5zA Prfn4s0SiOWJ4NO6juGBt0Un9AqO30M63OR5GpUZF+2FcGigauRYCdWgQbsScmFi CFOyEp0QjtimtWiIjddSI3mAfBKNfHibu6HG4MrhDqUOOJWe/OBqFYUXKiRG3RMb ySAIlbBUciGHuP2LZiZdjygUsoJMrqm+6zoM1fr6kXw8DeS5ZBAgANcQ7TXVG2zu Nb0wk7DTGaKzIJe4K9kq =rTgV -----END PGP SIGNATURE-----