-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Aug 2025 20:13:29 +0200
Source: postgresql-15
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-15 postgresql-15-dbgsym postgresql-client-15 postgresql-client-15-dbgsym postgresql-plperl-15 postgresql-plperl-15-dbgsym postgresql-plpython3-15 postgresql-plpython3-15-dbgsym postgresql-pltcl-15 postgresql-pltcl-15-dbgsym postgresql-server-dev-15
Architecture: mipsel
Version: 15.14-0+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 15
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-15 - The World's Most Advanced Open Source Relational Database
 postgresql-client-15 - front-end programs for PostgreSQL 15
 postgresql-plperl-15 - PL/Perl procedural language for PostgreSQL 15
 postgresql-plpython3-15 - PL/Python 3 procedural language for PostgreSQL 15
 postgresql-pltcl-15 - PL/Tcl procedural language for PostgreSQL 15
 postgresql-server-dev-15 - development files for PostgreSQL 15 server-side programming
Changes:
 postgresql-15 (15.14-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version 15.14.
 .
     + Tighten security checks in planner estimation functions (Dean Rasheed)
 .
       The fix for CVE-2017-7484, plus followup fixes, intended to prevent
       leaky functions from being applied to statistics data for columns that
       the calling user does not have permission to read.  Two gaps in that
       protection have been found.  One gap applies to partitioning and
       inheritance hierarchies where RLS policies on the tables should restrict
       access to statistics data, but did not.
 .
       The other gap applies to cases where the query accesses a table via a
       view, and the view owner has permissions to read the underlying table
       but the calling user does not have permissions on the view. The view
       owner's permissions satisfied the security checks, and the leaky
       function would get applied to the underlying table's statistics before
       we check the calling user's permissions on the view.  This has been
       fixed by making security checks on views occur at the start of planning.
       That might cause permissions failures to occur earlier than before.
 .
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2025-8713)
 .
     + Prevent pg_dump scripts from being used to attack the user running the
       restore (Nathan Bossart)
 .
       Since dump/restore operations typically involve running SQL commands as
       superuser, the target database installation must trust the source
       server.  However, it does not follow that the operating system user who
       executes psql to perform the restore should have to trust the source
       server.  The risk here is that an attacker who has gained
       superuser-level control over the source server might be able to cause it
       to emit text that would be interpreted as psql meta-commands. That would
       provide shell-level access to the restoring user's own account,
       independently of access to the target database.
 .
       To provide a positive guarantee that this can't happen, extend psql with
       a \restrict command that prevents execution of further meta-commands,
       and teach pg_dump to issue that before any data coming from the source
       server.
 .
       The PostgreSQL Project thanks Martin Rakhmanov, Matthieu Denais, and
       RyotaK for reporting this problem. (CVE-2025-8714)
 .
     + Convert newlines to spaces in names included in comments in pg_dump
       output (Noah Misch)
 .
       Object names containing newlines offered the ability to inject arbitrary
       SQL commands into the output script.  (Without the preceding fix,
       injection of psql meta-commands would also be possible this way.)
       CVE-2012-0868 fixed this class of problem at the time, but later work
       reintroduced several cases.
 .
       The PostgreSQL Project thanks Noah Misch for reporting this problem.
       (CVE-2025-8715)
Checksums-Sha1:
 05c0d8c2cf8202ac99d4062e9557da8a26d9c4a5 17876 libecpg-compat3-dbgsym_15.14-0+deb12u1_mipsel.deb
 a648c9c121b2bcf97cb429ee604abf64cac9eee5 19432 libecpg-compat3_15.14-0+deb12u1_mipsel.deb
 286e07f7895a4f298997e0cde3af4eff41bf49dd 261252 libecpg-dev-dbgsym_15.14-0+deb12u1_mipsel.deb
 708fc10617447add585b162296b65e244863020c 285668 libecpg-dev_15.14-0+deb12u1_mipsel.deb
 a063aca4b743e09aecfd7e381d76978a1805a43e 115656 libecpg6-dbgsym_15.14-0+deb12u1_mipsel.deb
 888f6ef2bea4c83623d698d42ff6ab24fe2a15ac 61392 libecpg6_15.14-0+deb12u1_mipsel.deb
 8bc331a388e7daa8092a5e142e9b528b19b768b0 91648 libpgtypes3-dbgsym_15.14-0+deb12u1_mipsel.deb
 398b72459822b37ebf65fa5f54f4f51d60924b44 46688 libpgtypes3_15.14-0+deb12u1_mipsel.deb
 5961f6cf3e18c0da29caa7f608e9fa9f4cb06ece 152740 libpq-dev_15.14-0+deb12u1_mipsel.deb
 758b945bf3365375432b62b52822134f4d0b1e65 283732 libpq5-dbgsym_15.14-0+deb12u1_mipsel.deb
 5379fa7a3413637da7a71a48712e9c47666642a9 181560 libpq5_15.14-0+deb12u1_mipsel.deb
 1d95bf83a7c0962fc794044765fa335998ffae43 16728164 postgresql-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 96da5e166f68678043834e3335f4a5f677c9afa9 17138 postgresql-15_15.14-0+deb12u1_mipsel-buildd.buildinfo
 69ba1537ddf3a80efa300dff4ebdad8e1abed1d0 16348444 postgresql-15_15.14-0+deb12u1_mipsel.deb
 3523fa0e5d418a6b2c761c147967d3900f388918 2539928 postgresql-client-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 ee31566681950897984945da220534a2c651239a 1666940 postgresql-client-15_15.14-0+deb12u1_mipsel.deb
 6e4929a6d7c4125cea1bc35cec25a4b15dc259ea 184672 postgresql-plperl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 5b893be13f476c8e0d436b869d234f823ecab49f 88120 postgresql-plperl-15_15.14-0+deb12u1_mipsel.deb
 6ef6a385c38671f463dc9baf3c64779e8e341c41 176072 postgresql-plpython3-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 9ed512b578189badd50b435353c97dbe7e4f1f8e 106852 postgresql-plpython3-15_15.14-0+deb12u1_mipsel.deb
 b24ac2628056f0f75bd52b26407cd2b9ca782167 80132 postgresql-pltcl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 e58272f95905628dabd7fa83609e622c3fd95bc1 42500 postgresql-pltcl-15_15.14-0+deb12u1_mipsel.deb
 c1c5aa6ddbdf3df76583db1440f41ee1fbf233ad 1159852 postgresql-server-dev-15_15.14-0+deb12u1_mipsel.deb
Checksums-Sha256:
 6d6d06575270a65530d36a6bb1f14430e066a9042038c3376337e4529e0b0f31 17876 libecpg-compat3-dbgsym_15.14-0+deb12u1_mipsel.deb
 c2280b935058dfafb4213bb8db6a1b02baf1b719c1f2593e58b937b2bd40ccc2 19432 libecpg-compat3_15.14-0+deb12u1_mipsel.deb
 d5e7d16bcc52d2424f467178d9d7411fb2bb89d7bb88bc085a0188c4c16a9058 261252 libecpg-dev-dbgsym_15.14-0+deb12u1_mipsel.deb
 6dc82da0a8a8c76dabaf21e8377cf26d19f5a845b3dcb28d98f6ee3dfb9a87f6 285668 libecpg-dev_15.14-0+deb12u1_mipsel.deb
 180afa07d56ff6e9e207c4a58151736c260bc204a9dd81a878074026b4de6327 115656 libecpg6-dbgsym_15.14-0+deb12u1_mipsel.deb
 c56d9e273d422915fa9e5c40a10908fa7e08c650e87b8be638c9bf371397898f 61392 libecpg6_15.14-0+deb12u1_mipsel.deb
 ef68682386664146ea7d513b7ec7700667c6e9d2a3676d81ad0cef893b8f0e41 91648 libpgtypes3-dbgsym_15.14-0+deb12u1_mipsel.deb
 6c3e31656aa8ede01bdc5f7cbff880852457ea72cf9074f112e94118679b3a83 46688 libpgtypes3_15.14-0+deb12u1_mipsel.deb
 0ff883ec79f89aa408e89157276975f17b6ac7477d6ce1a0e5a1c16826c4c91b 152740 libpq-dev_15.14-0+deb12u1_mipsel.deb
 37a729122fbb61b61db0bc79e75b8b89117c48a50b0c6563a680f7c9e5634a16 283732 libpq5-dbgsym_15.14-0+deb12u1_mipsel.deb
 f5911623397071c0734b449d6bde833d5b7ef4c1f0c40104b46bd18d037cf211 181560 libpq5_15.14-0+deb12u1_mipsel.deb
 6aaddd8b31d8d3bab6b51b9a0e69b6d26b030809709a8d13f13bab4b5c9b697a 16728164 postgresql-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 9c8ec36dd9c39d7f7abb7baf1d31637010ae4626be57d0dfe1a966951f20b384 17138 postgresql-15_15.14-0+deb12u1_mipsel-buildd.buildinfo
 0b92377c5cfcc5e9d26e15a762a20188c4f036513a06fda803fa549c904c435e 16348444 postgresql-15_15.14-0+deb12u1_mipsel.deb
 c01f9752d894ad0becb21c9f5d40300c70a5695ae105b493661611ca4ac1178e 2539928 postgresql-client-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 cd6fd4acd70f50d30c526175aad2f860f93f7de83d76d700e14a64b258177f5f 1666940 postgresql-client-15_15.14-0+deb12u1_mipsel.deb
 322f2c248d295baf63044fe1e0c1563898e85b6dfcca7576cd4102951cbd23a5 184672 postgresql-plperl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 4f703f29471c000cf5dfe4f5adf80ce5f0a17cf25f61970e3418e0c01e917c5d 88120 postgresql-plperl-15_15.14-0+deb12u1_mipsel.deb
 24689add4a33a0ddc593450d6817382a27bb1c7cd8efbe6375cdfae1131254dd 176072 postgresql-plpython3-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 635449258a45ffa547b2186f3c466037bb6ac32ea616255cf78d64a3508b5a84 106852 postgresql-plpython3-15_15.14-0+deb12u1_mipsel.deb
 a63e705346d56686a0a46f39f39768ede7d03ed92e86464a94a65233c3933472 80132 postgresql-pltcl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 7fcae90645ead80e3fb20e5da423533884d0f0ca424e5547ae80f36be7b1b561 42500 postgresql-pltcl-15_15.14-0+deb12u1_mipsel.deb
 378f82c91c71398432dd52aa90a553e12ab7af31d1ce16f8ce682baf364e4e8f 1159852 postgresql-server-dev-15_15.14-0+deb12u1_mipsel.deb
Files:
 3db71bce30c5b6f95911844d70ccceb5 17876 debug optional libecpg-compat3-dbgsym_15.14-0+deb12u1_mipsel.deb
 81eef8d84c18e02eace71d787a59c0b4 19432 libs optional libecpg-compat3_15.14-0+deb12u1_mipsel.deb
 5672072f13cac7f90db293abd8d1e0d8 261252 debug optional libecpg-dev-dbgsym_15.14-0+deb12u1_mipsel.deb
 c8e445964a1b100bd7dfca629a41d955 285668 libdevel optional libecpg-dev_15.14-0+deb12u1_mipsel.deb
 7acc8ec1fe0e970a489f5f05c10f4c41 115656 debug optional libecpg6-dbgsym_15.14-0+deb12u1_mipsel.deb
 2c6cc72d3723143928ce0bd1afa36381 61392 libs optional libecpg6_15.14-0+deb12u1_mipsel.deb
 5e0a4b48dece5a2a3323f52af213875b 91648 debug optional libpgtypes3-dbgsym_15.14-0+deb12u1_mipsel.deb
 999b8ec4ed83c904c7402a7f0535fa6c 46688 libs optional libpgtypes3_15.14-0+deb12u1_mipsel.deb
 3f87aa3dccebea7664357a1f417a496b 152740 libdevel optional libpq-dev_15.14-0+deb12u1_mipsel.deb
 99c870c4e71288b5ea7ff18860d67a54 283732 debug optional libpq5-dbgsym_15.14-0+deb12u1_mipsel.deb
 765322f046eb3f9f1228800e4dd45b3b 181560 libs optional libpq5_15.14-0+deb12u1_mipsel.deb
 dd323ffe1b83e660b3cfdc87911954f1 16728164 debug optional postgresql-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 451dfd2cf429ec5e77460a2fe59c8cec 17138 database optional postgresql-15_15.14-0+deb12u1_mipsel-buildd.buildinfo
 1f8e91461404b37d9f409820c5192869 16348444 database optional postgresql-15_15.14-0+deb12u1_mipsel.deb
 e383bf2ba323da316f3d391a0eb6e88a 2539928 debug optional postgresql-client-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 7c53e58c8a028214f1a41d5ebd13d379 1666940 database optional postgresql-client-15_15.14-0+deb12u1_mipsel.deb
 19bd70ab8845b49b7bf0e42c4ad3e727 184672 debug optional postgresql-plperl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 af64e4031e6cd08e35a0fc662a4208ab 88120 database optional postgresql-plperl-15_15.14-0+deb12u1_mipsel.deb
 22b0b394582ae7353322282675ff9105 176072 debug optional postgresql-plpython3-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 fead698fd16031f99d3cf6f450a33aaf 106852 database optional postgresql-plpython3-15_15.14-0+deb12u1_mipsel.deb
 9c90a6919067f38018e627f56852911b 80132 debug optional postgresql-pltcl-15-dbgsym_15.14-0+deb12u1_mipsel.deb
 8509be7982a5a955add71d9214861792 42500 database optional postgresql-pltcl-15_15.14-0+deb12u1_mipsel.deb
 db37688f0121601d13ac6b5761828c1e 1159852 libdevel optional postgresql-server-dev-15_15.14-0+deb12u1_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=CoMn
-----END PGP SIGNATURE-----