-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 04 Oct 2011 11:32:12 +0200
Source: postgresql-8.4
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.4 postgresql-client-8.4 postgresql-server-dev-8.4 postgresql-doc-8.4 postgresql-contrib-8.4 postgresql-plperl-8.4 postgresql-plpython-8.4 postgresql-pltcl-8.4 postgresql postgresql-client postgresql-doc postgresql-contrib
Architecture: i386
Version: 8.4.9-0squeeze1
Distribution: squeeze-security
Urgency: low
Maintainer: i386 Build Daemon <buildd_i386-biber@buildd.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 8.4
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql - object-relational SQL database (supported version)
 postgresql-8.4 - object-relational SQL database, version 8.4 server
 postgresql-client - front-end programs for PostgreSQL (supported version)
 postgresql-client-8.4 - front-end programs for PostgreSQL 8.4
 postgresql-contrib - additional facilities for PostgreSQL (supported version)
 postgresql-contrib-8.4 - additional facilities for PostgreSQL
 postgresql-doc - documentation for the PostgreSQL database management system
 postgresql-doc-8.4 - documentation for the PostgreSQL database management system
 postgresql-plperl-8.4 - PL/Perl procedural language for PostgreSQL 8.4
 postgresql-plpython-8.4 - PL/Python procedural language for PostgreSQL 8.4
 postgresql-pltcl-8.4 - PL/Tcl procedural language for PostgreSQL 8.4
 postgresql-server-dev-8.4 - development files for PostgreSQL 8.4 server-side programming
Closes: 628503 631285
Changes: 
 postgresql-8.4 (8.4.9-0squeeze1) stable-security; urgency=low
 .
   * New upstream bug fix/security release:
      - Fix bugs in indexing of in-doubt HOT-updated tuples.
        These bugs could result in index corruption after reindexing a
        system catalog. They are not believed to affect user indexes.
      - Fix multiple bugs in GiST index page split processing.
        The probability of occurrence was low, but these could lead to
        index corruption.
      - Fix possible buffer overrun in tsvector_concat().
        The function could underestimate the amount of memory needed for
        its result, leading to server crashes.
      - Fix crash in xml_recv when processing a "standalone" parameter.
      - Make pg_options_to_table return NULL for an option with no value.
        Previously such cases would result in a server crash.
      - Avoid possibly accessing off the end of memory in "ANALYZE" and in
        SJIS-2004 encoding conversion.
        This fixes some very-low-probability server crash scenarios.
      - Prevent intermittent hang in interactions of startup process with
        bgwriter process.
        This affected recovery in non-hot-standby cases.
      - Fix race condition in relcache init file invalidation.
        There was a window wherein a new backend process could read a stale
        init file but miss the inval messages that would tell it the data
        is stale. The result would be bizarre failures in catalog accesses,
        typically "could not read block 0 in file ..." later during
        startup.
      - Fix memory leak at end of a GiST index scan.
        Commands that perform many separate GiST index scans, such as
        verification of a new GiST-based exclusion constraint on a table
        already containing many rows, could transiently require large
        amounts of memory due to this leak.
      - Fix incorrect memory accounting (leading to possible memory bloat)
        in tuplestores supporting holdable cursors and plpgsql's RETURN
        NEXT command.
      - Fix performance problem when constructing a large, lossy bitmap.
      - Fix join selectivity estimation for unique columns.
        This fixes an erroneous planner heuristic that could lead to poor
        estimates of the result size of a join.
      - Fix nested PlaceHolderVar expressions that appear only in
        sub-select target lists. This mistake could result in outputs of an
        outer join incorrectly appearing as NULL.
      - Allow nested EXISTS queries to be optimized properly.
      - Fix array- and path-creating functions to ensure padding bytes are
        zeroes.  This avoids some situations where the planner will think that
        semantically-equal constants are not equal, resulting in poor
        optimization.
      - Fix "EXPLAIN" to handle gating Result nodes within inner-indexscan
        subplans.  The usual symptom of this oversight was "bogus varno" errors.
      - Work around gcc 4.6.0 bug that breaks WAL replay.  This could lead to
        loss of committed transactions after a server crash.
      - Fix dump bug for VALUES in a view.
      - Disallow SELECT FOR UPDATE/SHARE on sequences.
        This operation doesn't work as expected and can lead to failures.
      - Fix "VACUUM" so that it always updates pg_class.reltuples/relpages.
        This fixes some scenarios where autovacuum could make increasingly
        poor decisions about when to vacuum tables.
      - Defend against integer overflow when computing size of a hash table.
      - Fix cases where "CLUSTER" might attempt to access already-removed
        TOAST data.
      - Fix portability bugs in use of credentials control messages for
        "peer" authentication.
      - Fix SSPI login when multiple roundtrips are required.
        The typical symptom of this problem was "The function requested is
        not supported" errors during SSPI login.
      - Throw an error if "pg_hba.conf" contains hostssl but SSL is
        disabled.  This was concluded to be more user-friendly than the
        previous behavior of silently ignoring such lines.
      - Fix typo in pg_srand48 seed initialization.
        This led to failure to use all bits of the provided seed. This
        function is not used on most platforms (only those without
        srandom), and the potential security exposure from a
        less-random-than-expected seed seems minimal in any case.
      - Avoid integer overflow when the sum of LIMIT and OFFSET values
        exceeds 2^63.
      - Add overflow checks to int4 and int8 versions of generate_series().
      - Fix trailing-zero removal in to_char().  In a format with FM and no
        digit positions after the decimal point, zeroes to the left of the
        decimal point could be removed incorrectly.
      - Fix pg_size_pretty() to avoid overflow for inputs close to 2^63.
      - Weaken plpgsql's check for typmod matching in record values.
        An overly enthusiastic check could lead to discarding length
        modifiers that should have been kept.
      - Fix pg_upgrade to preserve toast tables' relfrozenxids during an
        upgrade from 8.3. Failure to do this could lead to "pg_clog" files
        being removed too soon after the upgrade.
      - Fix psql's counting of script file line numbers during COPY from a
        different file.
      - Fix pg_restore's direct-to-database mode for
        standard_conforming_strings.  pg_restore could emit incorrect commands
        when restoring directly to a database server from an archive file that
        had been made with standard_conforming_strings set to on.
      - Be more user-friendly about unsupported cases for parallel
        pg_restore.  This change ensures that such cases are detected and
        reported before any restore actions have been taken.
      - Fix write-past-buffer-end and memory leak in libpq's LDAP service
        lookup code.
      - In libpq, avoid failures when using nonblocking I/O and an SSL
        connection.
      - Improve libpq's handling of failures during connection startup.
        In particular, the response to a server report of fork() failure
        during SSL connection startup is now saner.
      - Improve libpq's error reporting for SSL failures.
      - Fix PQsetvalue() to avoid possible crash when adding a new tuple to
        a PGresult originally obtained from a server query.
      - Make ecpglib write double values with 15 digits precision.
      - In ecpglib, be sure LC_NUMERIC setting is restored after an error.
      - Apply upstream fix for blowfish signed-character bug
        (CVE-2011-2483) (Closes: #631285)
        "contrib/pg_crypto"'s blowfish encryption code could give wrong
        results on platforms where char is signed (which is most), leading
        to encrypted passwords being weaker than they should be.
      - Fix memory leak in "contrib/seg".
      - Fix pgstatindex() to give consistent results for empty indexes.
      - Allow building with perl 5.14. (Closes: #628503)
   * 15-revert-typmod-check.patch: Update for new upstream release.
Checksums-Sha1: 
 a355b5c6dcf83d9e54140bcf4619478f68cda941 233926 libpq-dev_8.4.9-0squeeze1_i386.deb
 a06a2c7ade6f7de7dc3a951fc62b7cc69d9930ae 155506 libpq5_8.4.9-0squeeze1_i386.deb
 393849adf0fe11f1f5f634044d0c0bac96eff984 95908 libecpg6_8.4.9-0squeeze1_i386.deb
 4cb8a429843fbc60c9e0f258cd6ff7c6a8466ed9 246302 libecpg-dev_8.4.9-0squeeze1_i386.deb
 922a54fa8facde1a38ef4d55a0731cb2c1b33959 30866 libecpg-compat3_8.4.9-0squeeze1_i386.deb
 f007cbfca70b12c56ee1b68695a81b8015be2adc 54498 libpgtypes3_8.4.9-0squeeze1_i386.deb
 fec4cbbfa0044447a3b78d04d78612293e13cd9f 5342224 postgresql-8.4_8.4.9-0squeeze1_i386.deb
 a886786c227fa21e2086d389aa049e69ec3d7e5f 1454418 postgresql-client-8.4_8.4.9-0squeeze1_i386.deb
 a846bc6f63233d0171dd98352223796da54567ac 640382 postgresql-server-dev-8.4_8.4.9-0squeeze1_i386.deb
 676be452145d76a4c188ff16838cbfc528726190 394016 postgresql-contrib-8.4_8.4.9-0squeeze1_i386.deb
 22eacddbe4bc502074b9f784d82cda1a7dc8333e 59660 postgresql-plperl-8.4_8.4.9-0squeeze1_i386.deb
 ee7566b93a88c9a10cd7c230f911a24c5e051d32 57346 postgresql-plpython-8.4_8.4.9-0squeeze1_i386.deb
 d909025614ceba25bd2e8c61c4f2b60475f9c608 45892 postgresql-pltcl-8.4_8.4.9-0squeeze1_i386.deb
Checksums-Sha256: 
 5464bd1abc9a30cca45e8db3544e1cb0a542568857b665a21755b77b82d49515 233926 libpq-dev_8.4.9-0squeeze1_i386.deb
 13a811f2a3352c5051a38de214f488382a2e42dbcbd457a065c9cec25add2c30 155506 libpq5_8.4.9-0squeeze1_i386.deb
 d0833a2c09274e7e443bfafa23bdef0467a39d50b7bf65afa9a341340825c161 95908 libecpg6_8.4.9-0squeeze1_i386.deb
 e616874cfccf590f853dab1e3192bd98294025b49ab29abef40d94cb3e53d98a 246302 libecpg-dev_8.4.9-0squeeze1_i386.deb
 4ed292348a813ac2c0b19ee1062e681e415747bd58b515bc625ab7998facb459 30866 libecpg-compat3_8.4.9-0squeeze1_i386.deb
 be24e52fba5d6ac1832dde53829174f808ab2d4a42312e7afdc12d4de888bfd3 54498 libpgtypes3_8.4.9-0squeeze1_i386.deb
 906c4d677a34571e9411701df702703ed8811a812dcbe28f92c7ebf9c3ab3b33 5342224 postgresql-8.4_8.4.9-0squeeze1_i386.deb
 c367634930ac16ccde06e4e448f11f26ef353e84003b5aafdc91211eb04c8f7b 1454418 postgresql-client-8.4_8.4.9-0squeeze1_i386.deb
 f5d50ebac49d744ca26ea2fbd36b6a7ce5b461db6fed97b7e037b7ed8aad6960 640382 postgresql-server-dev-8.4_8.4.9-0squeeze1_i386.deb
 0fad1e443240c47e855d66e8004467dc6fd8bab8cbdf5216b7a2c0cfd8947815 394016 postgresql-contrib-8.4_8.4.9-0squeeze1_i386.deb
 b272dbcf142ad299a690d915a2eb777d4089b8d8a8b82e04e8696d2b5a8fa3d2 59660 postgresql-plperl-8.4_8.4.9-0squeeze1_i386.deb
 e4475b21035d8b0bc900bbcbc7d2f6bd4bc643b620a8076124dde9481348a0e3 57346 postgresql-plpython-8.4_8.4.9-0squeeze1_i386.deb
 3e2e4b7c26387e2f4926bc2b0c42e1e5fdde30b788ab6856bd4936c62ee734ae 45892 postgresql-pltcl-8.4_8.4.9-0squeeze1_i386.deb
Files: 
 90beb2a256ada9d7b5e438188304729a 233926 libdevel optional libpq-dev_8.4.9-0squeeze1_i386.deb
 9f4e818478990a74955a723fa3330ec7 155506 libs optional libpq5_8.4.9-0squeeze1_i386.deb
 9bfe61b394ea0b0ffc5ee3701dad23fb 95908 libs optional libecpg6_8.4.9-0squeeze1_i386.deb
 7c1a84abea35b8aadcef6ecc874f1101 246302 libdevel optional libecpg-dev_8.4.9-0squeeze1_i386.deb
 faedde156c706570d18276e7f97712fd 30866 libs optional libecpg-compat3_8.4.9-0squeeze1_i386.deb
 89437f6cc8fe0e3e596a4b2f9f86b6ba 54498 libs optional libpgtypes3_8.4.9-0squeeze1_i386.deb
 b4d00cc298cdb674604a3aa72e384261 5342224 database optional postgresql-8.4_8.4.9-0squeeze1_i386.deb
 cbf135412dd60015674bf22d38a7a2ab 1454418 database optional postgresql-client-8.4_8.4.9-0squeeze1_i386.deb
 037dc9bf3dd3e2c2aa2671a723cc8af1 640382 libdevel optional postgresql-server-dev-8.4_8.4.9-0squeeze1_i386.deb
 abb1ec5a7d16749846991502a37388db 394016 database optional postgresql-contrib-8.4_8.4.9-0squeeze1_i386.deb
 2a36507c10caf073d87b50fbc7625175 59660 database optional postgresql-plperl-8.4_8.4.9-0squeeze1_i386.deb
 15ac71c07200660c308f66ae1975eb32 57346 database optional postgresql-plpython-8.4_8.4.9-0squeeze1_i386.deb
 96cb78514c25aa23c365e59ba12725b2 45892 database optional postgresql-pltcl-8.4_8.4.9-0squeeze1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=aI6c
-----END PGP SIGNATURE-----