Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted postgresql-13 13.4-1 (source) into unstable
Date: Thu, 12 Aug 2021 13:03:43 +0000
Signed by: Christoph Berg <myon@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 18 May 2021 13:56:18 +0200
Source: postgresql-13
Architecture: source
Version: 13.4-1
Distribution: unstable
Urgency: medium
Maintainer: Debian PostgreSQL Maintainers <team+postgresql@tracker.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Changes:
 postgresql-13 (13.4-1) unstable; urgency=medium
 .
   * New upstream version.
 .
     + Fix mis-planning of repeated application of a projection step (Tom Lane)
 .
       The planner could create an incorrect plan in cases where two
       ProjectionPaths were stacked on top of each other.  The only known way
       to trigger that situation involves parallel sort operations, but there
       may be other instances.  The result would be crashes or incorrect query
       results. Disclosure of server memory contents is also possible.
       (CVE-2021-3677)
 .
     + Disallow SSL renegotiation more completely (Michael Paquier)
 .
       SSL renegotiation has been disabled for some time, but the server would
       still cooperate with a client-initiated renegotiation request. A
       maliciously crafted renegotiation request could result in a server crash
       (see OpenSSL issue CVE-2021-3449).  Disable the feature altogether on
       OpenSSL versions that permit doing so, which are 1.1.0h and newer.
 .
   * Remove obsolete #dbg# and #PIE# code.
Checksums-Sha1:
 ac840b1a42845c35d14529614317addd6c40725d 3655 postgresql-13_13.4-1.dsc
 92146ec62ad80e8f5d2959b5cc1766311dc00d64 21157443 postgresql-13_13.4.orig.tar.bz2
 acaa93cdba02deac334514b171f8db5a4ce95941 28080 postgresql-13_13.4-1.debian.tar.xz
Checksums-Sha256:
 e49950fb8d2865c45f3a57d75d875499974b88203118e7da335957cc9b9ea0cc 3655 postgresql-13_13.4-1.dsc
 ea93e10390245f1ce461a54eb5f99a48d8cabd3a08ce4d652ec2169a357bc0cd 21157443 postgresql-13_13.4.orig.tar.bz2
 a6421ddc8bf36674087e352570c459193fb7196188bcfa1ab574fd5a735c88fb 28080 postgresql-13_13.4-1.debian.tar.xz
Files:
 6e042cc5d2ff2ef2242a64900a6b891a 3655 database optional postgresql-13_13.4-1.dsc
 7bda65a37c46b8b2c1933d9d1cd677f2 21157443 database optional postgresql-13_13.4.orig.tar.bz2
 f1a50ee5562e977a1160187f37bf5262 28080 database optional postgresql-13_13.4-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=KFFh
-----END PGP SIGNATURE-----
News for package postgresql-13
