-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Aug 2025 13:03:55 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: ppc64el
Version: 17.6-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-01) <buildd_ppc64el-ppc64el-osuosl-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Closes: 1107984
Changes:
 postgresql-17 (17.6-0+deb13u1) trixie; urgency=medium
 .
   * New upstream version 17.6.
 .
     + Tighten security checks in planner estimation functions (Dean Rasheed)
 .
       The fix for CVE-2017-7484, plus followup fixes, intended to prevent
       leaky functions from being applied to statistics data for columns that
       the calling user does not have permission to read.  Two gaps in that
       protection have been found.  One gap applies to partitioning and
       inheritance hierarchies where RLS policies on the tables should restrict
       access to statistics data, but did not.
 .
       The other gap applies to cases where the query accesses a table via a
       view, and the view owner has permissions to read the underlying table
       but the calling user does not have permissions on the view. The view
       owner's permissions satisfied the security checks, and the leaky
       function would get applied to the underlying table's statistics before
       we check the calling user's permissions on the view.  This has been
       fixed by making security checks on views occur at the start of planning.
       That might cause permissions failures to occur earlier than before.
 .
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2025-8713)
 .
     + Prevent pg_dump scripts from being used to attack the user running the
       restore (Nathan Bossart)
 .
       Since dump/restore operations typically involve running SQL commands as
       superuser, the target database installation must trust the source
       server.  However, it does not follow that the operating system user who
       executes psql to perform the restore should have to trust the source
       server.  The risk here is that an attacker who has gained
       superuser-level control over the source server might be able to cause it
       to emit text that would be interpreted as psql meta-commands. That would
       provide shell-level access to the restoring user's own account,
       independently of access to the target database.
 .
       To provide a positive guarantee that this can't happen, extend psql with
       a \restrict command that prevents execution of further meta-commands,
       and teach pg_dump to issue that before any data coming from the source
       server.
 .
       The PostgreSQL Project thanks Martin Rakhmanov, Matthieu Denais, and
       RyotaK for reporting this problem. (CVE-2025-8714)
 .
     + Convert newlines to spaces in names included in comments in pg_dump
       output (Noah Misch)
 .
       Object names containing newlines offered the ability to inject arbitrary
       SQL commands into the output script.  (Without the preceding fix,
       injection of psql meta-commands would also be possible this way.)
       CVE-2012-0868 fixed this class of problem at the time, but later work
       reintroduced several cases.
 .
       The PostgreSQL Project thanks Noah Misch for reporting this problem.
       (CVE-2025-8715)
 .
   * Add Turkish debconf translation by Atila KOÇ, thanks! (Closes: #1107984)
   * Drop hurd-iovec patch, implemented upstream.
Checksums-Sha1:
 89bbcac342094116a42a739e978dc9618232ebee 17772 libecpg-compat3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 0e7d417561a8813d547b664d055368ebd361f641 17808 libecpg-compat3_17.6-0+deb13u1_ppc64el.deb
 cc466377febabb3c2eb19079209ce530991797fd 237964 libecpg-dev-dbgsym_17.6-0+deb13u1_ppc64el.deb
 485fa3872cf9e17dee497770df69a52522e3dc2b 305632 libecpg-dev_17.6-0+deb13u1_ppc64el.deb
 870cff14c082df5e6cdee5ff57aa8f27815f0699 116448 libecpg6-dbgsym_17.6-0+deb13u1_ppc64el.deb
 aa8aa51803e497f22ecd7f3866e0fb11eee1041b 64988 libecpg6_17.6-0+deb13u1_ppc64el.deb
 6a7baea51e209e15bb319562c10e1dd50a8ccb84 94572 libpgtypes3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 d982ee16655b726182ad2d38745bf106b9ffe8a8 48568 libpgtypes3_17.6-0+deb13u1_ppc64el.deb
 c0657216ce967c72b95def2546ec8315dec03030 163300 libpq-dev_17.6-0+deb13u1_ppc64el.deb
 544fe2bafaa32ae80223cd5271a8ff3a7e938c9e 306804 libpq5-dbgsym_17.6-0+deb13u1_ppc64el.deb
 698bc1ef4f37a664a7040d9f9eee4dc1b618e2c3 240004 libpq5_17.6-0+deb13u1_ppc64el.deb
 c96b04afba4ac63fe8dcc3274d9d14a9643fe895 19394336 postgresql-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 0be405a1a9d48a387b6ea064d02ef93ef740e7c8 17084 postgresql-17_17.6-0+deb13u1_ppc64el-buildd.buildinfo
 5698c7ee65bad2ebd690a97d8e7f3170311b4cd2 16792044 postgresql-17_17.6-0+deb13u1_ppc64el.deb
 2d2b04de792044b9ed7ef78955f8261dbb1316ce 2878844 postgresql-client-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 092d94a5aba08dae07254ca4f4a8dc4e74049308 2054364 postgresql-client-17_17.6-0+deb13u1_ppc64el.deb
 824451c11ea118780feb672c6d82259744e9eb6a 202024 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 1fdc8e2a06bb32667ea8cecbf97c0b45e644c136 86312 postgresql-plperl-17_17.6-0+deb13u1_ppc64el.deb
 134c40e363332c5e1ad15fd84883707998ba118e 200704 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 73fbe9c22af553f87d7596fd6954ba1366716a18 109740 postgresql-plpython3-17_17.6-0+deb13u1_ppc64el.deb
 e3dc831001c1c53753f54160d3285dac442b011d 85324 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 cc2f40589bee5c3d76dfedccdf8c70dd4d834f61 42624 postgresql-pltcl-17_17.6-0+deb13u1_ppc64el.deb
 f60678a4d08ba346f1f20ac3822a2e7c6f686f43 56348 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 f7800a50a87f368e7e37294a420f5a6bb49c56b2 1335628 postgresql-server-dev-17_17.6-0+deb13u1_ppc64el.deb
Checksums-Sha256:
 3f222772a087127d7624b91b2581f52b452e39ccf5a746299f2575cc228009a9 17772 libecpg-compat3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 6ee41a20c39fff813c589000c233113f52228e5b4f61278d4895c1336474bd51 17808 libecpg-compat3_17.6-0+deb13u1_ppc64el.deb
 d992f4089e43668ab1398c4e499524898e41dd06f5d6bce78e10882cbcd611c5 237964 libecpg-dev-dbgsym_17.6-0+deb13u1_ppc64el.deb
 8511a191d3c2183b260d83377135646bf57aea165a7d241e08474009e47dafec 305632 libecpg-dev_17.6-0+deb13u1_ppc64el.deb
 3933548cb9df364cdadff6c4c6616085f6d303eef05eddb77d3d543083650504 116448 libecpg6-dbgsym_17.6-0+deb13u1_ppc64el.deb
 35c6f5e3d62b407a7873fe53c1feb590f6f05a3e03025f0459bcaeb841c2b217 64988 libecpg6_17.6-0+deb13u1_ppc64el.deb
 1a319df314087e0b59c0158ebc86b68465613460210328a44d1e618c7f1d0cf9 94572 libpgtypes3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 91c76362d4ad2076bb2042e72ad972c4d17c55601043f5874ff71a33bd286c41 48568 libpgtypes3_17.6-0+deb13u1_ppc64el.deb
 1f72d732cb62300c10a94ce28058c880ed74eaf60d1524fad11cf66c5df67e7c 163300 libpq-dev_17.6-0+deb13u1_ppc64el.deb
 db6fa20c4190c5c2548cd51094af6064d93c73e8c751729312cd5fe903ec7551 306804 libpq5-dbgsym_17.6-0+deb13u1_ppc64el.deb
 ab6374a0728de2f4415ec8504135e9fd30cb47117d52fde65f9b98f2c7c6f006 240004 libpq5_17.6-0+deb13u1_ppc64el.deb
 1f26b9a8ad2011e4c07f9ea15b59a64ad192635c09f04ff1a5b25dbb1f1ba65c 19394336 postgresql-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 98f331427129f27907751740f7a6724570c4b6bc7b742bda1718565003246259 17084 postgresql-17_17.6-0+deb13u1_ppc64el-buildd.buildinfo
 01d1eaa58fe2e2a0ffd5a22f8e4a2fd542097a6f9040b9f7be79d68c65e3e69b 16792044 postgresql-17_17.6-0+deb13u1_ppc64el.deb
 985b8b333e339356286b3ea5ee1033a92a6a359d58ba3a146d1b3a62f3f6a906 2878844 postgresql-client-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 f5800a8b2c7bcb6a2ed72a30aa15cca237523d624fa69d6640dcf1d70054dd8d 2054364 postgresql-client-17_17.6-0+deb13u1_ppc64el.deb
 11019d46694934c71853dda37adee7487aa1b71307cc38f2530c1b244377205b 202024 postgresql-plperl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 ef59716ac0e0ae4d4660b0e2b6382dcaa43be12e6d6d7b1d43ffc28c677f4773 86312 postgresql-plperl-17_17.6-0+deb13u1_ppc64el.deb
 727e7677768f40700ca9de9c28e9ec07c3ed35997541e2708bae44573dcc8464 200704 postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 8191608982b281b84f8da3a34ac8eea76062431e78285c30232ee0efeef3bb32 109740 postgresql-plpython3-17_17.6-0+deb13u1_ppc64el.deb
 33915be48b46acf4a4be5bf18b7b785bb50a5989129590436b9278e7a3b2f307 85324 postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 e3d7dcd6d343f31f4434de31efdc557a2dc80ab8dffc6fb985712fa5211251d1 42624 postgresql-pltcl-17_17.6-0+deb13u1_ppc64el.deb
 f97f4b473c8283acc250f691c2e6b38f18cefc5cea01c13c5152e24cac2b150c 56348 postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 b903c91051838c5a5564ac72dc5b9d4258ec873cba237d37bb762cc18cb8dd59 1335628 postgresql-server-dev-17_17.6-0+deb13u1_ppc64el.deb
Files:
 198f79b1cc3579f8463a512b163b1d4f 17772 debug optional libecpg-compat3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 aabce4773f598b4388774f9b8fd14dce 17808 libs optional libecpg-compat3_17.6-0+deb13u1_ppc64el.deb
 50f6f5b9ec50670703412ca1a1e5d0ac 237964 debug optional libecpg-dev-dbgsym_17.6-0+deb13u1_ppc64el.deb
 c5b93bce7048269c558033fd36eff602 305632 libdevel optional libecpg-dev_17.6-0+deb13u1_ppc64el.deb
 12250792a5171070df920613e19f06f4 116448 debug optional libecpg6-dbgsym_17.6-0+deb13u1_ppc64el.deb
 37a200f8ae841f444c7ba0436f5f69e4 64988 libs optional libecpg6_17.6-0+deb13u1_ppc64el.deb
 aae2a9d1c2eca83029f30e7f5a3441af 94572 debug optional libpgtypes3-dbgsym_17.6-0+deb13u1_ppc64el.deb
 7f8f4bae3974a8037d899843d325cbe6 48568 libs optional libpgtypes3_17.6-0+deb13u1_ppc64el.deb
 2df7d1dcd2f96cde82d77156231e6453 163300 libdevel optional libpq-dev_17.6-0+deb13u1_ppc64el.deb
 3e41d687ff9ce68b817d19e12842a555 306804 debug optional libpq5-dbgsym_17.6-0+deb13u1_ppc64el.deb
 50e55909f437618352f4c6561a2af85f 240004 libs optional libpq5_17.6-0+deb13u1_ppc64el.deb
 e354625b2dae7cc7d943e56cf0b7a90e 19394336 debug optional postgresql-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 626395316f34677a528ad58089e0be75 17084 database optional postgresql-17_17.6-0+deb13u1_ppc64el-buildd.buildinfo
 14f9b3183c5322a24cdcd5e04bddb1af 16792044 database optional postgresql-17_17.6-0+deb13u1_ppc64el.deb
 65c92718836a0bf29ff24d0689773e2f 2878844 debug optional postgresql-client-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 fed57997a956cfb253446c8f748ada66 2054364 database optional postgresql-client-17_17.6-0+deb13u1_ppc64el.deb
 c24f4dab2054df709259a47b3c01354c 202024 debug optional postgresql-plperl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 4103cd8dac700e23d02ff0dd3c68be62 86312 database optional postgresql-plperl-17_17.6-0+deb13u1_ppc64el.deb
 96b1bd2f524450ed00ff50641245867c 200704 debug optional postgresql-plpython3-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 9fb88f2941f9d803b8ad93fdf3055754 109740 database optional postgresql-plpython3-17_17.6-0+deb13u1_ppc64el.deb
 eab0767db5ce716f1f0a54898140a3b6 85324 debug optional postgresql-pltcl-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 bef0b0d83f57d1c336581c29fe591810 42624 database optional postgresql-pltcl-17_17.6-0+deb13u1_ppc64el.deb
 aea1a4918cfb62937b573fc18d03da48 56348 debug optional postgresql-server-dev-17-dbgsym_17.6-0+deb13u1_ppc64el.deb
 4c7192541653cb0cbee180a8d6dda603 1335628 libdevel optional postgresql-server-dev-17_17.6-0+deb13u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEGHWM+bJZRznwgySGOrVShFbIMGEFAmio4e0ACgkQOrVShFbI
MGFT2g//WzE1DVIDFyOnX/lrB/IphL9ugJ4iBMi5hMKutDtdk5Ld6mif7vDwBlR8
FUt6EkoX2RraleKz0p/SGBRcndV9j3hkbGEI/+B9YqdDuRu6AOT3u3oKgVREiqWg
LSMEZaHzrNO18flqf02+0uzrIu+eKFLN55WirU/PdTEySk+3hXttx+YRkabBSNfj
6rk1y6pC8qEoCTatEDcfFWnkOAfUrsWDT/pER2+b8+QIfH6fvN8SRYgTMGt5pfpc
eNSUAbU4WQZOh6kW/UEpicA9Ea5Fcqhe24YM5xeYzi2wPnVlorsggxiJfU4jtsSx
ln0tthJUmcXsNiov+88pvpu6ncWFLZgufOyOYbNLiZ+Q5FDBVm7tu8OjkBa/qCnU
ZayG6eKeR4WAxEoM5wMhqMPoM8X2k+1cfm3k6T4dFZUPcxlQC+2OZnK3m/XZxpVc
uWGyUD/6MkoQQFZYGAhgcmKzVtTRiMMnQV6ujrUZbSZj1fr+lNhUnlJ/Hv8pczec
TIn3rE/nBAuq/D8xpDmbFV29LXp88BX65dENgE6zbOUIM6ol9QUmt/93ZAIaqwv/
0izoONzLfGwnoOenOTY1LSLhW+bhdDhnzDGuXFEVbhw5jc5RYyPaJ3H8ehXq8m9/
3HgHLrmE9lE5gRB8i0pM4KCMRedLRoEnteiBAgYzHuaVKwZ2ZjI=
=wON0
-----END PGP SIGNATURE-----