-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 29 Jul 2014 10:35:47 +0200 Source: postgresql-8.4 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.4 postgresql-client-8.4 postgresql-server-dev-8.4 postgresql-doc-8.4 postgresql-contrib-8.4 postgresql-plperl-8.4 postgresql-plpython-8.4 postgresql-pltcl-8.4 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: source all amd64 Version: 8.4.22-0+deb6u1 Distribution: squeeze-lts Urgency: low Maintainer: Debian PostgreSQL Maintainers <pkg-postgresql-public@lists.alioth.debian.org> Changed-By: Christoph Berg <myon@debian.org> Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.4 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.4 - object-relational SQL database, version 8.4 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.4 - front-end programs for PostgreSQL 8.4 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.4 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.4 - documentation for the PostgreSQL database management system postgresql-plperl-8.4 - PL/Perl procedural language for PostgreSQL 8.4 postgresql-plpython-8.4 - PL/Python procedural language for PostgreSQL 8.4 postgresql-pltcl-8.4 - PL/Tcl procedural language for PostgreSQL 8.4 postgresql-server-dev-8.4 - development files for PostgreSQL 8.4 server-side programming Changes: postgresql-8.4 (8.4.22-0+deb6u1) squeeze-lts; urgency=low . 8.4.22 is the last release in the PostgreSQL 8.4 branch. See /usr/share/doc/postgresql-8.4/NEWS.Debian.gz for upgrade options. . * New upstream release. + Secure Unix-domain sockets of temporary postmasters started during make check (Noah Misch) . Any local user able to access the socket file could connect as the server's bootstrap superuser, then proceed to execute arbitrary code as the operating-system user running the test, as we previously noted in CVE-2014-0067. This change defends against that risk by placing the server's socket in a temporary, mode 0700 subdirectory of /tmp. . * Remove 11-pg_regress-socketpath.patch. * Remove 15-revert-typmod-check.patch. It conflicts with updates in 8.4.22, and the test case from #632028 does not fail without it. Checksums-Sha1: 913a19de43fe074b32d1cd54d54dd3bac06fba4e 3342 postgresql-8.4_8.4.22-0+deb6u1.dsc 5e0aefc6d056a914bf4acc18e3a518d00d27a240 18332542 postgresql-8.4_8.4.22.orig.tar.gz 4c6c1c6b72fe3f1b1d30b6433a7abc5238faf498 64302 postgresql-8.4_8.4.22-0+deb6u1.diff.gz 1d7d077a606c296dbe3bc27f6bbd15df33dd1b02 2223600 postgresql-doc-8.4_8.4.22-0+deb6u1_all.deb c329a918a946500f0bb0d5ae59c8e408e62b55ac 35428 postgresql_8.4.22-0+deb6u1_all.deb 6de9e21150fab5aa6de5d002634ad1777ea9d0ca 35388 postgresql-client_8.4.22-0+deb6u1_all.deb 0a0ce89f54784ca625576df839bbc9741b148b82 35242 postgresql-doc_8.4.22-0+deb6u1_all.deb 25f37fe1611b918d58fb478b109eed49b792631c 35282 postgresql-contrib_8.4.22-0+deb6u1_all.deb 7bf11d21d477d362aaf4383a8cf4b4f59fa81893 256924 libpq-dev_8.4.22-0+deb6u1_amd64.deb c42110e2a797a17e4570724af2f5a98e0d4eedeb 173780 libpq5_8.4.22-0+deb6u1_amd64.deb 47477ae5c6fca5d2eb357ee183ed82804e19b3d2 113586 libecpg6_8.4.22-0+deb6u1_amd64.deb e02eefbcb5dc0116f39ebf84cb15ff2cf7fdf61d 272984 libecpg-dev_8.4.22-0+deb6u1_amd64.deb ebbb16fa9720db7ec2a7ac5f722e6a9e516765f8 43402 libecpg-compat3_8.4.22-0+deb6u1_amd64.deb 361973adadb75fb6d3dac4039a94c4979ac30858 67112 libpgtypes3_8.4.22-0+deb6u1_amd64.deb 5c349d9c13ad7fee9b8c2b5b8f2f648360056085 5780750 postgresql-8.4_8.4.22-0+deb6u1_amd64.deb 7ccb83d5a50942a3d59a114085dd32948480c135 1602678 postgresql-client-8.4_8.4.22-0+deb6u1_amd64.deb bbfaef1499e22eb472396d3b5b77911ef6d80808 656766 postgresql-server-dev-8.4_8.4.22-0+deb6u1_amd64.deb 136ffb97e65e4113b27517c09cdc46453697233c 447794 postgresql-contrib-8.4_8.4.22-0+deb6u1_amd64.deb 16d63c6d05e34815b0be6885489b4504541defc0 74434 postgresql-plperl-8.4_8.4.22-0+deb6u1_amd64.deb 6708f86efe80426aed053051ee28434cf8c04285 75498 postgresql-plpython-8.4_8.4.22-0+deb6u1_amd64.deb 37c19b56874add4ac430b72307554fcd2836e89f 59148 postgresql-pltcl-8.4_8.4.22-0+deb6u1_amd64.deb Checksums-Sha256: f01c6fedc05abcf9c04eabc71795628843709fd0263c71c9e054fcc3374b7067 3342 postgresql-8.4_8.4.22-0+deb6u1.dsc dda6dee53751ef6803f8a38e11d9621b8b02a9b0d7cbb2f4cff27d25d92b0a05 18332542 postgresql-8.4_8.4.22.orig.tar.gz df8a766836f73b79be835beb9de15c54b9bb1d915b2e8bb3fb54eabce121f1b7 64302 postgresql-8.4_8.4.22-0+deb6u1.diff.gz 28570e90faa89e4a53f4b1fd341197691fd63b4edb4911689eb3c384cbacb3d3 2223600 postgresql-doc-8.4_8.4.22-0+deb6u1_all.deb 31e6365c24f5ea7f1d6ace1ac23d7d21fe35b0847d7ae0db632b714db9a9de71 35428 postgresql_8.4.22-0+deb6u1_all.deb 5d2f2ae826e9ea9c75a8e1677dfc9f3b1614189586e0229b21a1465ab9ad13d8 35388 postgresql-client_8.4.22-0+deb6u1_all.deb f724427445c079ce82e3982bd430b782b97649e9970938118fcdaebc1badca2c 35242 postgresql-doc_8.4.22-0+deb6u1_all.deb d81cff5b39ce372f5fbdf34d610d55b4b741613842faa9cea868f701ef362934 35282 postgresql-contrib_8.4.22-0+deb6u1_all.deb 1fd089d31e4298bb85ebe442a12afffacdb01ed75caac382ea4584e9810fc7fc 256924 libpq-dev_8.4.22-0+deb6u1_amd64.deb 08f3b5aa2c2a304ec7aeb4f7d4d8852bb3450ed48ef964f3818b6b43d412cffd 173780 libpq5_8.4.22-0+deb6u1_amd64.deb b41be7f4b73a4564d522bc3074e138d52fd4d256df8b46c3a1c20ad060639c80 113586 libecpg6_8.4.22-0+deb6u1_amd64.deb ea902554d52a8e431758f22d1ce1cc9df735242d24c4c11efe0e13dc06d7c0c5 272984 libecpg-dev_8.4.22-0+deb6u1_amd64.deb 3a815c9c32eace7ee5295915dd93a7081b9c028a6aae503c3e57a600b7f02fc3 43402 libecpg-compat3_8.4.22-0+deb6u1_amd64.deb 2968a692b9c1acaf9d2bfc5cdcb23716d464979f705ba86f0d94d9a1f8fbda91 67112 libpgtypes3_8.4.22-0+deb6u1_amd64.deb 18f4345888335277e1d2f2b14a0a6eafbef5d11b1748ec1af89144c6dcf22448 5780750 postgresql-8.4_8.4.22-0+deb6u1_amd64.deb 845c6d8ba406958141c0d53bd9cfe444e70774c949d618477686b7ac97f0fd81 1602678 postgresql-client-8.4_8.4.22-0+deb6u1_amd64.deb 6140992ac618b158af2f1ad15c7267bfdb485c9206bb60fcfaccc53b9f055839 656766 postgresql-server-dev-8.4_8.4.22-0+deb6u1_amd64.deb 6b73f16a92f19ac1aa1ba26c5f34cce899b786c7c1cd0a024cf5c7e1523b3da1 447794 postgresql-contrib-8.4_8.4.22-0+deb6u1_amd64.deb d33f6446ad8fd051d82527e911d92a0a81202ba1db98e95fdb3212e012e7d0f7 74434 postgresql-plperl-8.4_8.4.22-0+deb6u1_amd64.deb 5524f9dfceeebbf1c986fae01876e851ddefb175fda5d249d86b180f95520605 75498 postgresql-plpython-8.4_8.4.22-0+deb6u1_amd64.deb d9bf0c14692a01c1171588b69d2e4b5ce8d598b286af3ac086d7117675ae4087 59148 postgresql-pltcl-8.4_8.4.22-0+deb6u1_amd64.deb Files: 0c0a0bb1e458c0dcbdabe412d9f8902a 3342 database optional postgresql-8.4_8.4.22-0+deb6u1.dsc 26960b858a1b76e88a1c3a9dd495fe80 18332542 database optional postgresql-8.4_8.4.22.orig.tar.gz 85f76ddb0aa8ca56a0abc9e658cc0258 64302 database optional postgresql-8.4_8.4.22-0+deb6u1.diff.gz 95622330f54f77b85e85b6add4959ead 2223600 doc optional postgresql-doc-8.4_8.4.22-0+deb6u1_all.deb aacbc12c318c884c3c7533c6816eea27 35428 database optional postgresql_8.4.22-0+deb6u1_all.deb 2b561adbec9b9261f5437998e58afd3b 35388 database optional postgresql-client_8.4.22-0+deb6u1_all.deb ae5d400ee50ad80228ea42b797d1fc9f 35242 doc optional postgresql-doc_8.4.22-0+deb6u1_all.deb 09478efd25e01c83f76db90674489462 35282 database optional postgresql-contrib_8.4.22-0+deb6u1_all.deb c618a183fd8cdccbd4eda9a0f08dd674 256924 libdevel optional libpq-dev_8.4.22-0+deb6u1_amd64.deb 13d8cd2d31770532268c75e8837ec0a2 173780 libs optional libpq5_8.4.22-0+deb6u1_amd64.deb 0867a56fadfdf46bbf287dc1c8499c5d 113586 libs optional libecpg6_8.4.22-0+deb6u1_amd64.deb a30d8d3fb361f8d80d241bd8e6161757 272984 libdevel optional libecpg-dev_8.4.22-0+deb6u1_amd64.deb b1afc2916a33dc02cf185dcabfbc000a 43402 libs optional libecpg-compat3_8.4.22-0+deb6u1_amd64.deb 83b599d4b710ecb6fa6429d1fc97e55a 67112 libs optional libpgtypes3_8.4.22-0+deb6u1_amd64.deb 894e8be5647781bca4cd0daa5438985d 5780750 database optional postgresql-8.4_8.4.22-0+deb6u1_amd64.deb d281a6f1cf51372b68cbbda99744e0cc 1602678 database optional postgresql-client-8.4_8.4.22-0+deb6u1_amd64.deb 2a108e25493a78bd4db8a48981d90f44 656766 libdevel optional postgresql-server-dev-8.4_8.4.22-0+deb6u1_amd64.deb e66c870da2d60a9471c63d36b870c6ce 447794 database optional postgresql-contrib-8.4_8.4.22-0+deb6u1_amd64.deb 3c6dee72b7a339d642b29dbae3eb17d9 74434 database optional postgresql-plperl-8.4_8.4.22-0+deb6u1_amd64.deb 8af6fdabca10d7ba2976992010344062 75498 database optional postgresql-plpython-8.4_8.4.22-0+deb6u1_amd64.deb 7da9b76e945befbe7182532831b511b8 59148 database optional postgresql-pltcl-8.4_8.4.22-0+deb6u1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJT12fpAAoJEExaa6sS0qeuHR4P/R0OEuiy3KnNJvJN3Xa6rkpr 8m8BPmTu+h5u3V2E2ZlLnGelzLc7AZ14UNo2yTW7RPO7wtnQUjV9QP3zLqyHfPPz HwQnZIPxBX5FYTTGhdeCUeELemnk5n88sC/Jivn/M4pgVXKeX4oxeGpNLWiKgfAl 8yk1N/nAJeLH1y2JmNMfSpQP9Lkuf+G8V3nYtXQ/6z4xqQtOlqZoKa7SxSsgrLtC fNaYmGpmVWo8onty/EppYPI2Bc1MRLS0d65vLYJinK4/zujN31KL9/CbWv0VsA7b GkIaFoJILtbW25e907clJ2/CV+ck2L22ALxguzJRgz+MdwtM5HF1LBdN4z8SVs9z bsCsZao5r3Cajy1ttHH3cpp5mqqF6vMBAPEQ8+TKPnMK/Wi4vrTnrSycQGvO5Y9q AIkht0STZBgF6utlV2RJjpwVyzCFBk4o8UdFHlXuBWMFkuOv98nJxQ/xHJ+U3TmJ +4lUbPRx4ZuQ7xdqjztzlXCYWZ/6PikTUEDdAqx6qlbZJXZ1Pwhp8ue6CCs6MaOL f91+XiXndkaB2uB7AMjfjR0493En4idRmToCcPFmCKQW/HNpcxg+JWQhF82QiIIb +D3l1xMpwMJ05nMeyYMrvfCT7BK9ZC9U95OS8NgPM1+XKifqUvQX5471fm1BSOiF Snq29RlV7hTtlPj0jVW6 =6NBw -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-lts-changes-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org Archive: https://lists.debian.org/E1XC3qk-0005HQ-1J@franck.debian.org