-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Aug 2025 13:03:55 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: s390x
Version: 17.6-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: s390x Build Daemon (zani) <buildd_s390x-zani@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Closes: 1107984
Changes:
 postgresql-17 (17.6-0+deb13u1) trixie; urgency=medium
 .
   * New upstream version 17.6.
 .
     + Tighten security checks in planner estimation functions (Dean Rasheed)
 .
       The fix for CVE-2017-7484, plus followup fixes, intended to prevent
       leaky functions from being applied to statistics data for columns that
       the calling user does not have permission to read.  Two gaps in that
       protection have been found.  One gap applies to partitioning and
       inheritance hierarchies where RLS policies on the tables should restrict
       access to statistics data, but did not.
 .
       The other gap applies to cases where the query accesses a table via a
       view, and the view owner has permissions to read the underlying table
       but the calling user does not have permissions on the view. The view
       owner's permissions satisfied the security checks, and the leaky
       function would get applied to the underlying table's statistics before
       we check the calling user's permissions on the view.  This has been
       fixed by making security checks on views occur at the start of planning.
       That might cause permissions failures to occur earlier than before.
 .
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2025-8713)
 .
     + Prevent pg_dump scripts from being used to attack the user running the
       restore (Nathan Bossart)
 .
       Since dump/restore operations typically involve running SQL commands as
       superuser, the target database installation must trust the source
       server.  However, it does not follow that the operating system user who
       executes psql to perform the restore should have to trust the source
       server.  The risk here is that an attacker who has gained
       superuser-level control over the source server might be able to cause it
       to emit text that would be interpreted as psql meta-commands. That would
       provide shell-level access to the restoring user's own account,
       independently of access to the target database.
 .
       To provide a positive guarantee that this can't happen, extend psql with
       a \restrict command that prevents execution of further meta-commands,
       and teach pg_dump to issue that before any data coming from the source
       server.
 .
       The PostgreSQL Project thanks Martin Rakhmanov, Matthieu Denais, and
       RyotaK for reporting this problem. (CVE-2025-8714)
 .
     + Convert newlines to spaces in names included in comments in pg_dump
       output (Noah Misch)
 .
       Object names containing newlines offered the ability to inject arbitrary
       SQL commands into the output script.  (Without the preceding fix,
       injection of psql meta-commands would also be possible this way.)
       CVE-2012-0868 fixed this class of problem at the time, but later work
       reintroduced several cases.
 .
       The PostgreSQL Project thanks Noah Misch for reporting this problem.
       (CVE-2025-8715)
 .
   * Add Turkish debconf translation by Atila KOÇ, thanks! (Closes: #1107984)
   * Drop hurd-iovec patch, implemented upstream.
Checksums-Sha1:
 5e164e8d7de9ca7bd07518f6a1adec7652a49405 16976 libecpg-compat3-dbgsym_17.6-0+deb13u1_s390x.deb
 6589c6eedaf8038cfd9b945bfd918538ac9dce94 16744 libecpg-compat3_17.6-0+deb13u1_s390x.deb
 2789443f96fdae2f6c09e9bfa889ecc1aa1b560b 231284 libecpg-dev-dbgsym_17.6-0+deb13u1_s390x.deb
 acc2ab754eb226e32fedc7a9ec14f293910b31b7 299848 libecpg-dev_17.6-0+deb13u1_s390x.deb
 e502245dc585e625aad5221f0e0907489fdcc74a 115644 libecpg6-dbgsym_17.6-0+deb13u1_s390x.deb
 0a0552e76955711cdc2b42fc046cf0ac4c185b33 61996 libecpg6_17.6-0+deb13u1_s390x.deb
 961b0e111894d253dd5c048289f8aab0a3d329b6 92604 libpgtypes3-dbgsym_17.6-0+deb13u1_s390x.deb
 5300dd027595a9a5e2bfd680c2cded9181013bb4 47140 libpgtypes3_17.6-0+deb13u1_s390x.deb
 959b488c18bd9ee7e8107b49cc113156b47ad8df 146756 libpq-dev_17.6-0+deb13u1_s390x.deb
 2279be2bfa78b5a40094d5788bcda521c94872b0 295920 libpq5-dbgsym_17.6-0+deb13u1_s390x.deb
 aab4117a5c27e7332417fd4da900a6a3347f9e84 221844 libpq5_17.6-0+deb13u1_s390x.deb
 52a260ab8e88b9e03cf00990968c6d6614abdd9f 19320788 postgresql-17-dbgsym_17.6-0+deb13u1_s390x.deb
 e99887692cf5f73d68c4818a872103d5075f89db 16821 postgresql-17_17.6-0+deb13u1_s390x-buildd.buildinfo
 19b0a3019ecff4903ad5e08c9394900971241e91 17216920 postgresql-17_17.6-0+deb13u1_s390x.deb
 2373e43d5d3b1f6cf147188a00ca20b743840fb9 2807864 postgresql-client-17-dbgsym_17.6-0+deb13u1_s390x.deb
 2956f70b65fe8ef8e9962bbcd2c9b5c6632646e3 1996512 postgresql-client-17_17.6-0+deb13u1_s390x.deb
 e29de1863bf17678a1653693721942bd6b4b3654 197704 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 0b7323296aa67e04fcab004983a29c13c1fea16e 84752 postgresql-plperl-17_17.6-0+deb13u1_s390x.deb
 17ce87d8861cc15e8b3968903e6b34b7d0237945 197108 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_s390x.deb
 e890c7660e2544b7caada1371ca7082f6810cd97 108264 postgresql-plpython3-17_17.6-0+deb13u1_s390x.deb
 1762afaacf75eb16714fd72e2017ff7633215b81 84044 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 b71d76518aea87f61ea85a6042126a2e80f0db8e 41968 postgresql-pltcl-17_17.6-0+deb13u1_s390x.deb
 1bdbc4ba0dbba584568a9ef3dbecfebe8a5da3a4 55536 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_s390x.deb
 56460e754571e637bce88cd13f214bd25b012a96 1322472 postgresql-server-dev-17_17.6-0+deb13u1_s390x.deb
Checksums-Sha256:
 f1b483f87a1b947b94b6fdccc1e21080e0c00f0badb85e95d41417090ced1207 16976 libecpg-compat3-dbgsym_17.6-0+deb13u1_s390x.deb
 a4e4ef5cb0c0c17f47746e455a813b9d13108b2d568555e53f3f1a0a9e3a7c3c 16744 libecpg-compat3_17.6-0+deb13u1_s390x.deb
 fbeba35334312b9e90b17809b018add4a0c8dc20d3dc647f065d16deaab864b4 231284 libecpg-dev-dbgsym_17.6-0+deb13u1_s390x.deb
 14fa8fa0ae38264639b9a4941813943b2c55d3fd1a38562071b10448baa3ee9e 299848 libecpg-dev_17.6-0+deb13u1_s390x.deb
 ab772826f0e8fc90218203763a59f0be99bf33bebf48642ed81a8d805a30c81e 115644 libecpg6-dbgsym_17.6-0+deb13u1_s390x.deb
 62493b3bf16e2783aa8ab23219d33ae8c8971512bdf2344f7f2e1d1e01607652 61996 libecpg6_17.6-0+deb13u1_s390x.deb
 a178faa9a2b237ecb50ed2651c93e4aedd09283bf84de8461e83d3989db69200 92604 libpgtypes3-dbgsym_17.6-0+deb13u1_s390x.deb
 f97ae0b25d3b9659ffcf8291ee76c67859d575bee459e17c2b1b2531e5f92177 47140 libpgtypes3_17.6-0+deb13u1_s390x.deb
 81d7ea11ae5578f6807836dafad7dd7dbcdb63bf51959454aa5500bcbd124023 146756 libpq-dev_17.6-0+deb13u1_s390x.deb
 89285451438344921158bee6e44e9bfe959c980484b8571604f1d55bdc66223d 295920 libpq5-dbgsym_17.6-0+deb13u1_s390x.deb
 d0efb5184242c233447f06a13981e77a746830769f9ce8852a4a0f3bf9bbdc79 221844 libpq5_17.6-0+deb13u1_s390x.deb
 516b53c085d8133c2445a37992ecf813fbe901cbf0e8305f5ba2ccc61d15e9bb 19320788 postgresql-17-dbgsym_17.6-0+deb13u1_s390x.deb
 64573869af274d6f711fb450f7019d2d148b100813c9373d7126f1bbc4bcf34a 16821 postgresql-17_17.6-0+deb13u1_s390x-buildd.buildinfo
 a9e67946df5336c4d222e30b900d320efdd8ed71a5544b802e774a47f15a1001 17216920 postgresql-17_17.6-0+deb13u1_s390x.deb
 f1e6dc0cdddebed05b28b4a3182b8b6f79d0c3e539a3c1c82c5c21649118b5a8 2807864 postgresql-client-17-dbgsym_17.6-0+deb13u1_s390x.deb
 1c3da0efc3fd521bae1ec6824793db3af3f5a28985f3ba72d96d7a80aa399e7d 1996512 postgresql-client-17_17.6-0+deb13u1_s390x.deb
 055c6d29922b7517694edf2a84442a28b0a179033d10a859cbd9748b9b9f0cc0 197704 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 ad964166d54c9c025f77b96232bed1afdf43c8415b36f95c22ad4daea442fbbe 84752 postgresql-plperl-17_17.6-0+deb13u1_s390x.deb
 aee5b1320a6b639b0385aa586c766650559fd7ebdba0179c43045ea25f66bc6d 197108 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_s390x.deb
 da28d91d010205f4830b398429da457db9e3d3407c9bbef2f928ef2e1f4c5282 108264 postgresql-plpython3-17_17.6-0+deb13u1_s390x.deb
 702b1d88b49a6aad0c9ddcc9d737a0294caf79c63a329fce9878e6c51e4d5771 84044 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 11963c58bcd652f87f1b1b71dd15a5a776169823034e9c5f53b16b793fffd918 41968 postgresql-pltcl-17_17.6-0+deb13u1_s390x.deb
 efb687d2670c2e26b16da04f80cde1fbd54e5569a34b8a68d8d7663ba16095aa 55536 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_s390x.deb
 2d6f1601d5472d6f97f8f7ecd5c9c513a1a305f8d34f7cf69a0eebdc15aa4f9c 1322472 postgresql-server-dev-17_17.6-0+deb13u1_s390x.deb
Files:
 3cc6fe6be90d56766b308808cfb30adb 16976 debug optional libecpg-compat3-dbgsym_17.6-0+deb13u1_s390x.deb
 723088a9c7491c806f5f96e5fc88b737 16744 libs optional libecpg-compat3_17.6-0+deb13u1_s390x.deb
 2005b5fbab4f89fc05e8a9cacbad16d7 231284 debug optional libecpg-dev-dbgsym_17.6-0+deb13u1_s390x.deb
 bbefce95f2664e71b6e65900f0d46deb 299848 libdevel optional libecpg-dev_17.6-0+deb13u1_s390x.deb
 1c58734c0bea2682d25e24d95a2e3375 115644 debug optional libecpg6-dbgsym_17.6-0+deb13u1_s390x.deb
 d38a21b1937e690e7216dd655a339e2e 61996 libs optional libecpg6_17.6-0+deb13u1_s390x.deb
 53862a40788726b0da73c024d330fa65 92604 debug optional libpgtypes3-dbgsym_17.6-0+deb13u1_s390x.deb
 40438ba723ef3bf58218b66983717111 47140 libs optional libpgtypes3_17.6-0+deb13u1_s390x.deb
 6eb6c5c501ecc64a0e0fff51d6a53b53 146756 libdevel optional libpq-dev_17.6-0+deb13u1_s390x.deb
 9ad7f3b97e84ed0374509ce1df1bed85 295920 debug optional libpq5-dbgsym_17.6-0+deb13u1_s390x.deb
 2df2217574bb78610347c7dee7bc4031 221844 libs optional libpq5_17.6-0+deb13u1_s390x.deb
 8189a4219a1797b9c8d78f17be57e1e9 19320788 debug optional postgresql-17-dbgsym_17.6-0+deb13u1_s390x.deb
 c33526d36c4193069b7cb0ffdd6eb3a4 16821 database optional postgresql-17_17.6-0+deb13u1_s390x-buildd.buildinfo
 1f23f3643826fdf2c3ba78016e95c1d1 17216920 database optional postgresql-17_17.6-0+deb13u1_s390x.deb
 250109e04890748a95e9cd7c05c41032 2807864 debug optional postgresql-client-17-dbgsym_17.6-0+deb13u1_s390x.deb
 ced8a21b250c9d3b9aa0552452091185 1996512 database optional postgresql-client-17_17.6-0+deb13u1_s390x.deb
 ab7e6c1c1ee708405d9580159b44e957 197704 debug optional postgresql-plperl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 053fd436028df1348bbbb722a81aaf33 84752 database optional postgresql-plperl-17_17.6-0+deb13u1_s390x.deb
 88079389950908b1376f09f8d7250854 197108 debug optional postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_s390x.deb
 0586c8575f0d1a71ffeac22927aa51ad 108264 database optional postgresql-plpython3-17_17.6-0+deb13u1_s390x.deb
 d4a313057a2d337a0101895e0d0adcdb 84044 debug optional postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_s390x.deb
 e6ec3f0f0889b616fa8ff710bdc6d805 41968 database optional postgresql-pltcl-17_17.6-0+deb13u1_s390x.deb
 6dfd958b2dbdc33781e6ed3141d713e6 55536 debug optional postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_s390x.deb
 a7355d9ca4f4ddef6cb9752aa94a9c27 1322472 libdevel optional postgresql-server-dev-17_17.6-0+deb13u1_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=728u
-----END PGP SIGNATURE-----