-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Aug 2025 13:03:55 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: armel
Version: 17.6-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Closes: 1107984
Changes:
 postgresql-17 (17.6-0+deb13u1) trixie; urgency=medium
 .
   * New upstream version 17.6.
 .
     + Tighten security checks in planner estimation functions (Dean Rasheed)
 .
       The fix for CVE-2017-7484, plus followup fixes, intended to prevent
       leaky functions from being applied to statistics data for columns that
       the calling user does not have permission to read.  Two gaps in that
       protection have been found.  One gap applies to partitioning and
       inheritance hierarchies where RLS policies on the tables should restrict
       access to statistics data, but did not.
 .
       The other gap applies to cases where the query accesses a table via a
       view, and the view owner has permissions to read the underlying table
       but the calling user does not have permissions on the view. The view
       owner's permissions satisfied the security checks, and the leaky
       function would get applied to the underlying table's statistics before
       we check the calling user's permissions on the view.  This has been
       fixed by making security checks on views occur at the start of planning.
       That might cause permissions failures to occur earlier than before.
 .
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2025-8713)
 .
     + Prevent pg_dump scripts from being used to attack the user running the
       restore (Nathan Bossart)
 .
       Since dump/restore operations typically involve running SQL commands as
       superuser, the target database installation must trust the source
       server.  However, it does not follow that the operating system user who
       executes psql to perform the restore should have to trust the source
       server.  The risk here is that an attacker who has gained
       superuser-level control over the source server might be able to cause it
       to emit text that would be interpreted as psql meta-commands. That would
       provide shell-level access to the restoring user's own account,
       independently of access to the target database.
 .
       To provide a positive guarantee that this can't happen, extend psql with
       a \restrict command that prevents execution of further meta-commands,
       and teach pg_dump to issue that before any data coming from the source
       server.
 .
       The PostgreSQL Project thanks Martin Rakhmanov, Matthieu Denais, and
       RyotaK for reporting this problem. (CVE-2025-8714)
 .
     + Convert newlines to spaces in names included in comments in pg_dump
       output (Noah Misch)
 .
       Object names containing newlines offered the ability to inject arbitrary
       SQL commands into the output script.  (Without the preceding fix,
       injection of psql meta-commands would also be possible this way.)
       CVE-2012-0868 fixed this class of problem at the time, but later work
       reintroduced several cases.
 .
       The PostgreSQL Project thanks Noah Misch for reporting this problem.
       (CVE-2025-8715)
 .
   * Add Turkish debconf translation by Atila KOÇ, thanks! (Closes: #1107984)
   * Drop hurd-iovec patch, implemented upstream.
Checksums-Sha1:
 78116a9c73985a74367565be63386c46ffaea98a 16660 libecpg-compat3-dbgsym_17.6-0+deb13u1_armel.deb
 6d9f039c1e657ce2aa44b95131e133eb7a8d39e8 15428 libecpg-compat3_17.6-0+deb13u1_armel.deb
 13395aec9299e0885ac3fababf4212a425527a9c 248048 libecpg-dev-dbgsym_17.6-0+deb13u1_armel.deb
 486bf5092a3d8ddd3e71126253ebd969b2101405 281372 libecpg-dev_17.6-0+deb13u1_armel.deb
 89ede9cda16407000404c101da59d695e24a04be 112756 libecpg6-dbgsym_17.6-0+deb13u1_armel.deb
 e0dffc30c434909f78fdb80950219d69d2a3f839 55348 libecpg6_17.6-0+deb13u1_armel.deb
 ca0f3067f934b502c18764ebccd75fa64eb328b3 90768 libpgtypes3-dbgsym_17.6-0+deb13u1_armel.deb
 9f941738516b4359a4ccba9cb57474737317d697 41616 libpgtypes3_17.6-0+deb13u1_armel.deb
 e3d63e742d02cbf6139cbe22f39e6f0f08cc4b5b 137796 libpq-dev_17.6-0+deb13u1_armel.deb
 16ea726a944bd2db71e0f262371792810d7af233 288824 libpq5-dbgsym_17.6-0+deb13u1_armel.deb
 70881aeafc9110deae1aee1644b1ef5169885338 210456 libpq5_17.6-0+deb13u1_armel.deb
 081cfc4dbe64525522fd334f69bb4cc34137ced6 18745392 postgresql-17-dbgsym_17.6-0+deb13u1_armel.deb
 a069f70228e1ace1ca2800ccd9f9ebfd29f393b0 16811 postgresql-17_17.6-0+deb13u1_armel-buildd.buildinfo
 67dc5af93382a60e9010963cb9f91bc8612fa1e4 15873752 postgresql-17_17.6-0+deb13u1_armel.deb
 e44830edd7b9eedccac4d31180b6ddb4f75c4f95 2750460 postgresql-client-17-dbgsym_17.6-0+deb13u1_armel.deb
 cffd611633038ff17ba509969c8d802fa1264311 1910328 postgresql-client-17_17.6-0+deb13u1_armel.deb
 ce4a0f122db6e66515d10c306b55e40e4e3a72d4 197044 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_armel.deb
 e9bcd339f3dcc29417b6b414848cb5eebc603a84 81312 postgresql-plperl-17_17.6-0+deb13u1_armel.deb
 eef030a6738085d1cfd246a4137235f479e5dc69 197588 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_armel.deb
 213443922963773ce7c7cbddec4f81cd4b1adea7 104272 postgresql-plpython3-17_17.6-0+deb13u1_armel.deb
 9121ce3f44da863b1e548ac909077f1888ff2d84 82652 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_armel.deb
 ac77f62fc86adade4637322820eb39e3e7a87eb2 39800 postgresql-pltcl-17_17.6-0+deb13u1_armel.deb
 18ec3518065eeeaabe5e2f5a703f633761d88fee 56396 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_armel.deb
 bceb42a8874355690bfeec0af2b06924d6be0130 1301188 postgresql-server-dev-17_17.6-0+deb13u1_armel.deb
Checksums-Sha256:
 027ed91d075d4acb260ed80efc1167150474bc554dea55c0a6971be8c1856f95 16660 libecpg-compat3-dbgsym_17.6-0+deb13u1_armel.deb
 6e20aef062b13a000ef849b4e3a51610e72c2aab92095e83a8a693e26427c43d 15428 libecpg-compat3_17.6-0+deb13u1_armel.deb
 ad61fab3743fd2d7423dbce5c13a80ba6d0c0c817bac5dea16a4ab367296db08 248048 libecpg-dev-dbgsym_17.6-0+deb13u1_armel.deb
 1be0f1c5818efb9aa32729c209d73dd669aec96f9c6910db2e35447112c4f1e2 281372 libecpg-dev_17.6-0+deb13u1_armel.deb
 6facd1058a145c0c07278d81fd7578c072728922bfc233957dad14522f99e88b 112756 libecpg6-dbgsym_17.6-0+deb13u1_armel.deb
 ac4bdd69e660978305e1394d4e62d420cfa2f841a9a4663eefde5e85f8e6652c 55348 libecpg6_17.6-0+deb13u1_armel.deb
 bf22361967f86e643d36b7ed50a9eb6889484657bed2b1c7f3a806510fbc85cc 90768 libpgtypes3-dbgsym_17.6-0+deb13u1_armel.deb
 4b2048ec95f4fa8a7159c6fbe08ca4bcde00c56d4c9ecb07b9a57f727c298e0b 41616 libpgtypes3_17.6-0+deb13u1_armel.deb
 cc4847bb887eed80a0af5444e04e86d72cc5e91cfe033397bdc8b1aa1d145498 137796 libpq-dev_17.6-0+deb13u1_armel.deb
 d33d9280e2867371771950ee2f0805da15e619d0fefa7eb0128d38049aa0126e 288824 libpq5-dbgsym_17.6-0+deb13u1_armel.deb
 d07f52e90f38b7dea21d1cf6a4b4090e6baf08ba113e484e3ffb8b427bca4b17 210456 libpq5_17.6-0+deb13u1_armel.deb
 544f2b77f8964b2712f751e3f22e42b76c87a8d72825e17b3c9e17c9de038651 18745392 postgresql-17-dbgsym_17.6-0+deb13u1_armel.deb
 c5cb7f37fcbba0b61c3d771a7ac0f8c7ac3c1e64d1b4026e0919b046e22bcfc8 16811 postgresql-17_17.6-0+deb13u1_armel-buildd.buildinfo
 9fce50e0f0b68686c2b04326561aec54166e7bfb7432a62e0ca665ad6bfe98e0 15873752 postgresql-17_17.6-0+deb13u1_armel.deb
 d11128c674b26b980b09e6d08f22e4c70b6a316729fde51e341d439239fc929c 2750460 postgresql-client-17-dbgsym_17.6-0+deb13u1_armel.deb
 61de0147f9cfcfb7709d78c7e5fee8f6f171acc973b7c952f10538a62d3359ad 1910328 postgresql-client-17_17.6-0+deb13u1_armel.deb
 68f2ee208f4067965f1d1da5dda48b669a2f927d3ae49d7aa8a3cfddf11c70d2 197044 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_armel.deb
 50a24956590075d7883709cad36d9474badeea90dc153e2ca021fa60128be62b 81312 postgresql-plperl-17_17.6-0+deb13u1_armel.deb
 d6cb5914fa9afbc83cc410b553cbe9949331c9d96cd4022e7b478f6ca26207a0 197588 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_armel.deb
 c0814a018b81145e3950991112acc31cab2a65a2a5deedcf819ac85217a1eb61 104272 postgresql-plpython3-17_17.6-0+deb13u1_armel.deb
 38e181c6ac0474612a6d6230f31a424111e078301d89a16437ec14285e8a5d36 82652 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_armel.deb
 907a8cece6d80343fc987d78ebf74c07092ef273eddbba472baec0b2a3e0f3e3 39800 postgresql-pltcl-17_17.6-0+deb13u1_armel.deb
 fb8f06768769c7d7750f4c3fbbdbe7fe526e22d9a4132feba846f27f5c4a5cd5 56396 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_armel.deb
 b6c92b2e15b4d136cad72bd523f84d53cbdab2995e911f0b09397775a3908adc 1301188 postgresql-server-dev-17_17.6-0+deb13u1_armel.deb
Files:
 3a86e6640dc10df7640dd627543d1de4 16660 debug optional libecpg-compat3-dbgsym_17.6-0+deb13u1_armel.deb
 7c8119c3431d7e504f11ac85cbde5bc8 15428 libs optional libecpg-compat3_17.6-0+deb13u1_armel.deb
 604490f05504db03a107497a2182748f 248048 debug optional libecpg-dev-dbgsym_17.6-0+deb13u1_armel.deb
 108b649121dcc6a28c3f94b505b2875b 281372 libdevel optional libecpg-dev_17.6-0+deb13u1_armel.deb
 259a8fb1ff596765c201b553d9cf4c24 112756 debug optional libecpg6-dbgsym_17.6-0+deb13u1_armel.deb
 8805626603a8d3a509d9fdf898438efe 55348 libs optional libecpg6_17.6-0+deb13u1_armel.deb
 728dd7df70a850d8c9934d658ddb5bff 90768 debug optional libpgtypes3-dbgsym_17.6-0+deb13u1_armel.deb
 b1b9eec7cf83b9b1888538a4b4c7ff3e 41616 libs optional libpgtypes3_17.6-0+deb13u1_armel.deb
 be9478f0e43b541d8aa481338c7cd8c8 137796 libdevel optional libpq-dev_17.6-0+deb13u1_armel.deb
 b3c4618464ed49fc55a69c2e59cbae24 288824 debug optional libpq5-dbgsym_17.6-0+deb13u1_armel.deb
 186e28d86c9aa702c0d85b6dbb13e63d 210456 libs optional libpq5_17.6-0+deb13u1_armel.deb
 c676e4ed55ea11cd985042692589119a 18745392 debug optional postgresql-17-dbgsym_17.6-0+deb13u1_armel.deb
 f6982fd3215662e8a2e11fb8903e258a 16811 database optional postgresql-17_17.6-0+deb13u1_armel-buildd.buildinfo
 03524938acf8ca09f62b3dc0e0c539a5 15873752 database optional postgresql-17_17.6-0+deb13u1_armel.deb
 6b99d2e8d712b294975ac9205554cfc5 2750460 debug optional postgresql-client-17-dbgsym_17.6-0+deb13u1_armel.deb
 9087388fd0f28d55112d953c5c1832e0 1910328 database optional postgresql-client-17_17.6-0+deb13u1_armel.deb
 57ca1bf58fc828f74de2d704e64f9e89 197044 debug optional postgresql-plperl-17-dbgsym_17.6-0+deb13u1_armel.deb
 8de757bae9054cc7def19accfa466a48 81312 database optional postgresql-plperl-17_17.6-0+deb13u1_armel.deb
 a5c0263bc1de278a52449f3528d3b0a7 197588 debug optional postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_armel.deb
 9c005b91997362dc943a88f07f495f36 104272 database optional postgresql-plpython3-17_17.6-0+deb13u1_armel.deb
 8f17825ce1fdb3e1d4f964a760049841 82652 debug optional postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_armel.deb
 9b672773e7d26ee8f14d05ed9c7e87b0 39800 database optional postgresql-pltcl-17_17.6-0+deb13u1_armel.deb
 5ace04189d3f2ade30012ba68a00e614 56396 debug optional postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_armel.deb
 19800878a98122c8ba59d3abf01fe5bc 1301188 libdevel optional postgresql-server-dev-17_17.6-0+deb13u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=Nkmh
-----END PGP SIGNATURE-----