Accepted sqlite3 3.27.2-3~bpo9+1 (source amd64 all) into stretch-backports->backports-policy, stretch-backports

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 13 Jun 2019 12:31:41 +0200
Source: sqlite3
Binary: lemon sqlite3 sqlite3-doc libsqlite3-0 libsqlite3-dev libsqlite3-tcl
Architecture: source amd64 all
Version: 3.27.2-3~bpo9+1
Distribution: stretch-backports
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 lemon      - LALR(1) Parser Generator for C or C++
 libsqlite3-0 - SQLite 3 shared library
 libsqlite3-dev - SQLite 3 development files
 libsqlite3-tcl - SQLite 3 Tcl bindings
 sqlite3    - Command line interface for SQLite 3
 sqlite3-doc - SQLite 3 documentation
Closes: 500095 858569 864185 867387 867618 873762 878680 883556 893195 916046 922163 923038 925289 925290 928770
Changes:
 sqlite3 (3.27.2-3~bpo9+1) stretch-backports; urgency=medium
 .
   * Rebuild for stretch-backports.
   * No changes.
 .
 sqlite3 (3.27.2-3) unstable; urgency=high
 .
   * Backport security related patches:
     - CVE-2019-8457: heap out-of-bound read in the rtreenode() function when
       handling invalid rtree tables,
     - prevent aliases of window functions expressions from being used as
       arguments to aggregate or other window functions (probably fixing
       CVE-2019-5018) (closes: #928770),
     - enforce the SQLITE_LIMIT_COLUMN limit on virtual tables (probably
       fixing most of CVE-2019-5827),
     - use the 64-bit memory allocator interfaces in extensions, whenever
       possible (probably additional fix for CVE-2019-5827).
 .
 sqlite3 (3.27.2-2) unstable; urgency=high
 .
   * Backport security related patches:
     - use unsigned integers to count the number of pages in a freelist
       during an integrity_check, to avoid any possibility of a signed integer
       overflow,
     - fix a crash that could occur if the RHS of an IN expression is a
       correlated sub-query that refers to the outer query from within a
       window frame definition only,
     - ensure that ALTER TABLE commands open statement transactions,
     - CVE-2019-9937: fix an fts5 problem with interleaving reads and writes
       in a single transaction (closes: #925290),
     - CVE-2019-9936: fix a buffer overread that could occur when running fts5
       prefix queries inside a transaction (closes: #925289).
 .
 sqlite3 (3.27.2-1) unstable; urgency=medium
 .
   * New upstream release (closes: #923038).
 .
 sqlite3 (3.27.1-2) unstable; urgency=medium
 .
   * Backport upstream fix for assertion fault in self-join with a IN
     constraint.
 .
 sqlite3 (3.27.1-1) unstable; urgency=medium
 .
   * New upstream release.
   * Compile with URI filename support.
   * Update libsqlite3-0 symbols.
 .
   [ Helmut Grohne <helmut@subdivi.de> ]
   * Mark lemon Multi-Arch: foreign (closes: #922163).
 .
 sqlite3 (3.26.0+fossilbc891ac6b-2) unstable; urgency=medium
 .
   * Backport upstream fix for a problem with bytecode generation when a
     query involves two or more indexes on expressions connected by OR.
   * Update Standards-Version to 4.3.0 .
 .
 sqlite3 (3.26.0+fossilbc891ac6b-1) unstable; urgency=medium
 .
   * New Fossil snapshot release:
     - ensure that ALTER TABLE modifies table and column names embedded,
     - fix a potential NULL pointer dereference that can occur in ALTER TABLE,
     - fix the sqlite3ExprDup() function so that it correctly duplicates the
       Window object list,
     - do not use a partial index as a table scan in an IN operator,
     - fix a problem with using "<db>-vacuum",
     - OSSFuzz found a case where an assert() inside sqlite3ExprCompare() can
       be true.
   * Revert version number bump.
   * Fix a problem with the CSV extension when it uses the "header" option on
     a real file.
 .
 sqlite3 (3.26.0-3) unstable; urgency=medium
 .
   * Declare that SQLite3 version 3.26.0 breaks unfixed python{,3}-migrate
     (closes: #916046).
 .
 sqlite3 (3.26.0-2) unstable; urgency=medium
 .
   * Backport upstream fix to ensure that ALTER TABLE modifies table and
     column names embedded in WITH clauses that are part of views and
     triggers.
 .
 sqlite3 (3.26.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update libsqlite3-0 symbols.
 .
 sqlite3 (3.25.3-2) unstable; urgency=medium
 .
   * Backport security related patches:
     - fix a buffer overread associated with sqlite3_deserialize() ,
     - fix a potential buffer overread in the dbstat virtual table when
       processing a corrupt database file.
 .
 sqlite3 (3.25.3-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.25.2-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.25.1-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.25.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update libsqlite3-0 symbols.
   * Update Standards-Version to 4.2.1 .
 .
 sqlite3 (3.24.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update libsqlite3-0 symbols.
   * Update debhelper level to 11:
     - update documentation path.
   * Update Standards-Version to 4.1.4 .
 .
 sqlite3 (3.23.1-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.23.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update libsqlite3-0 symbols.
   * Remove backport fix of CVE-2018-8740 as this release contains it.
 .
 sqlite3 (3.22.0-2) unstable; urgency=high
 .
   * Backport upstream security fix for CVE-2018-8740: NULL pointer dereference
     (closes: #893195).
 .
 sqlite3 (3.22.0-1) unstable; urgency=medium
 .
   * New upstream release (closes: #867387).
   * Update libsqlite3-0 symbols.
   * Replace autotools updateconfig with the debhelper one.
   * Update Standards-Version to 4.1.3:
     - remove libsqlite3-0-dbg package and use the auto-generated one
       (closes: #883556).
 .
 sqlite3 (3.21.0-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.20.1-2) unstable; urgency=high
 .
   * Backport fix for CVE-2017-15286, NULL pointer dereference in
     tableColumnList() (closes: #878680).
   * Update Standards-Version to 4.1.1:
     - change libsqlite3-0-dbg priority to optional.
 .
 sqlite3 (3.20.1-1) unstable; urgency=medium
 .
   * New upstream release.
   * Backport fix for CVE-2017-13685, '.dump' command crashes following
     PRAGMA empty_result_callbacks=1 (closes: #873762).
 .
 sqlite3 (3.20.0-1) experimental; urgency=medium
 .
   * New upstream release:
     - adds tab completion support (closes: #500095).
   * Enable the SQLITE_STMT virtual table extension.
   * Remove dh-autoreconf build dependency.
 .
 sqlite3 (3.19.3-3) unstable; urgency=high
 .
   * Backport fix for CVE-2017-10989, heap-based buffer over-read via
     undersized RTree blobs (closes: #867618).
 .
 sqlite3 (3.19.3-2) unstable; urgency=medium
 .
   * Update Standards-Version to 4.0.0 and debhelper level to 10 .
 .
 sqlite3 (3.19.3-1) experimental; urgency=medium
 .
   * New upstream release.
 .
 sqlite3 (3.19.2-2) experimental; urgency=medium
 .
   * Backport configure fix for FTS4 and FTS5 builds (closes: #864185).
   * Add required sqlite3_fts5_may_be_corrupt@Base symbol to the libsqlite3-0
     package.
 .
 sqlite3 (3.19.2-1) experimental; urgency=medium
 .
   * New upstream, bugfix release.
 .
 sqlite3 (3.19.0-1) experimental; urgency=low
 .
   * New upstream release.
   * Update library symbols file:
     - remove no longer available sqlite3_fts5_may_be_corrupt@Base symbol,
     - add new sqlite3_set_last_insert_rowid@Base symbol.
 .
 sqlite3 (3.17.0-1) experimental; urgency=medium
 .
   * New upstream release (closes: #858569).
   * Remove backported patches.
Checksums-Sha1:
 857c730b37db171c5f89d52d39496e3a2b8cd1e9 2081 sqlite3_3.27.2-3~bpo9+1.dsc
 eaf56b1920547ec2e5758e5deb00939f81c6599b 30460 sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
 ac736f3979af43d412c33876d68159ae90022713 65614 lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 e7f663e587fc161dfbe272fc4ec8e6b3e879afa2 163916 lemon_3.27.2-3~bpo9+1_amd64.deb
 94d466bf1cc7e11931c89110bd14fa2fb3a51c9a 1445836 libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 792a0923f449bee7a78a23391cf73d77ed9631ec 638120 libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
 3114ecfc0c60a89842818792d397997911571d01 785378 libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
 1146cc84effab0dd12fa1fe1ea583622d773460f 58998 libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 260a8ec143b0de42be25872a12fce1be2951c2f0 129698 libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
 7a0a721fd52b07e34c07b604bcee329574d2d9b1 3171464 sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 8297cc76e75724d2abc88fcf9b5731791805db7b 7020968 sqlite3-doc_3.27.2-3~bpo9+1_all.deb
 45f6e194b1ffb78c32b931d59c814588c204750c 8406 sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
 53f6af3e3594426c9f0502d26c7945fc442b7627 911364 sqlite3_3.27.2-3~bpo9+1_amd64.deb
Checksums-Sha256:
 942268f9aa153034e0da004104fa1c36eed44577ec3695cba0f6fd30b08ecfa5 2081 sqlite3_3.27.2-3~bpo9+1.dsc
 3a1523226167126f646977ef1e4a5ec110b85380eaaab19ef082b48103d1594a 30460 sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
 39bb69a36da98a76136e45119513896025fadad2e5b5a44c2fb0a2fe9b1f3dea 65614 lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 dd145d8e64f9c3e34d922cdbce24856d98a07c92b5fec3d019535d70d6502a7a 163916 lemon_3.27.2-3~bpo9+1_amd64.deb
 5a037262762f60842909eccd81488a9cf1924a3902f4dde7a368f5e39365f92a 1445836 libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 e0e94c40c23db15a099135e475842fe749b02f3f2eaf43da93ab7f39217add90 638120 libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
 a6ec97fef86c69ad4ca0ad25e26cd035b0e75d3bfd9ba6847f2cc71f5de49491 785378 libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
 b6c55bae11883511864c43f71a23e91ca48b87c93368f3618affee60e9dd5c95 58998 libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 fa3a0c3f86057f4eec7e4b3c77b406de6312f6dec1334f2c5e680582d484eafc 129698 libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
 c9ce40e0af26589dfdbd7fdfa351fa79ad9fb3b65ede26d6291e30939b13e02d 3171464 sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 d42f958b0c7b3575c79247f01c1e1941196ca1fe8d4feb712506b3ed7ae3764b 7020968 sqlite3-doc_3.27.2-3~bpo9+1_all.deb
 1c6a4afe3db2502cce397e2a1c5f669f42fe9d46a25cf4f415b94449d70cb3cb 8406 sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
 8fb9fbf5129e0b425d5a5d4cf5b4f8d40b235af42f5f10d2774c005727895898 911364 sqlite3_3.27.2-3~bpo9+1_amd64.deb
Files:
 3702758b1b14a13cf5b5517b06e8903d 2081 devel optional sqlite3_3.27.2-3~bpo9+1.dsc
 fac65dfe74010f73579333ed5dcb93c3 30460 devel optional sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
 f94ec408d5bdd7b637a43cb8b00fa515 65614 debug optional lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 6d2b4ce6264d3b8c5824bd9e78555683 163916 devel optional lemon_3.27.2-3~bpo9+1_amd64.deb
 b555733a1ddec39211f0d3780f11be21 1445836 debug optional libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 7ad941bbf733ffbffe659be3d43b731e 638120 libs optional libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
 6cafc3ed5b3d3c32e517edb439b208ad 785378 libdevel optional libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
 5fa3d5351ea00b3fa8c79852111dbd4a 58998 debug optional libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 82dfada24af7fb8fc10ea8b5e04b0a6a 129698 interpreters optional libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
 5a9b6039841d5a9980236828d0116732 3171464 debug optional sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
 25b3d99ef65c1f5138ac625d2019e48d 7020968 doc optional sqlite3-doc_3.27.2-3~bpo9+1_all.deb
 fb0a2949211007a4ab65a6049f244ff9 8406 devel optional sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
 f9a2de19b53e48d627c6e0e118031b45 911364 database optional sqlite3_3.27.2-3~bpo9+1_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAl0CKJUACgkQj/HLbo2J
BZ/UxAf9HdlmYM43hv2oN/T30cTADydOJDLS/hgQPu9T1Jw+t5eXLJoLDWnGMLLV
8XuuRlTKboWhYeHiRjwwh0dVi/rwa4fo0jnRS+6chxc4aGpYvR/1tDL+H48YtDeQ
KE5sMua12cBnFBbOA5GvjFjVw98cuPAXcVYKPwfUXfbOw0gAZMeqKA5Ngp0NDjJj
/EMZKnDwkUaR9U8qjuzFzJ+SnUqxScjzSMPAeEOP/ZwUKKkMeN+Z2RZiN74rWRK0
cquDKuI16sQd0FlXLekooR1aiKQeWGD0hj3DwXH4n2hTrMs/wye666ujJ1/g/pvP
cMaOsWEm1GDrU1QdXQUV6MXXE7QOJw==
=QDw8
-----END PGP SIGNATURE-----