-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 06 Feb 2024 13:54:51 +0100 Source: postgresql-13 Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-13 postgresql-13-dbgsym postgresql-client-13 postgresql-client-13-dbgsym postgresql-plperl-13 postgresql-plperl-13-dbgsym postgresql-plpython3-13 postgresql-plpython3-13-dbgsym postgresql-pltcl-13 postgresql-pltcl-13-dbgsym postgresql-server-dev-13 Architecture: i386 Version: 13.14-0+deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: Christoph Berg Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 13 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql-13 - The World's Most Advanced Open Source Relational Database postgresql-client-13 - front-end programs for PostgreSQL 13 postgresql-plperl-13 - PL/Perl procedural language for PostgreSQL 13 postgresql-plpython3-13 - PL/Python 3 procedural language for PostgreSQL 13 postgresql-pltcl-13 - PL/Tcl procedural language for PostgreSQL 13 postgresql-server-dev-13 - development files for PostgreSQL 13 server-side programming Changes: postgresql-13 (13.14-0+deb11u1) bullseye-security; urgency=medium . * New upstream version. . * Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY (Heikki Linnakangas) . One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected. . The PostgreSQL Project thanks Pedro Gallegos for reporting this problem. (CVE-2024-0985) Checksums-Sha1: c2251f6ff62ed376c32ce746ad68e1a6641ba1ca 33420 libecpg-compat3-dbgsym_13.14-0+deb11u1_i386.deb 9a1881b85e11b4f82e1446d1f138e7b8788dce4b 27952 libecpg-compat3_13.14-0+deb11u1_i386.deb 338c4db9139e531092bb76796243ce659075f09e 227056 libecpg-dev-dbgsym_13.14-0+deb11u1_i386.deb bdd24827247a3609477a1035699f15dfc61945aa 298568 libecpg-dev_13.14-0+deb11u1_i386.deb abf9186fb1bf5332781da07917a38b7c11b58a81 97188 libecpg6-dbgsym_13.14-0+deb11u1_i386.deb 7aad42e2a4bc05e65a5aecbf662162aeedabcf13 66816 libecpg6_13.14-0+deb11u1_i386.deb b7b3c9447ad306ed288881ee3959fc76eaa2fec0 80308 libpgtypes3-dbgsym_13.14-0+deb11u1_i386.deb 7f69e15d459dbac63355557c8a22bdd5f6953679 51820 libpgtypes3_13.14-0+deb11u1_i386.deb 1f34d975793f18bac33f7849eca3db085a624921 151212 libpq-dev_13.14-0+deb11u1_i386.deb 77996b705e5aa244f2b36006472d124b6567c4c6 218372 libpq5-dbgsym_13.14-0+deb11u1_i386.deb 038cecad23afd2e4f0b3470e6ea8b15c5c133f78 190000 libpq5_13.14-0+deb11u1_i386.deb 7e7a760195656a7efb477779a2e2f1bd9b62612f 13576144 postgresql-13-dbgsym_13.14-0+deb11u1_i386.deb 2ea1fbe81fef89f18f79951ae1ade5845c622ea4 16298 postgresql-13_13.14-0+deb11u1_i386-buildd.buildinfo 8a336df6c35a81b05be9600af04b04c03da741d6 15374480 postgresql-13_13.14-0+deb11u1_i386.deb 0252e7d8a24bef9f036dba00c48f5c971c1562a2 1551436 postgresql-client-13-dbgsym_13.14-0+deb11u1_i386.deb f7040d0c5863badf9ef34c3912e95b423bc5043c 1537744 postgresql-client-13_13.14-0+deb11u1_i386.deb 51647806194749015c4fe9d3b2e53a1b2c9cc5c4 143368 postgresql-plperl-13-dbgsym_13.14-0+deb11u1_i386.deb 1860d45fc9262f060b119ddb5be5b671eb78d363 92932 postgresql-plperl-13_13.14-0+deb11u1_i386.deb 76d8684961c7456c8160321c3519c9cfb8f74bb5 143748 postgresql-plpython3-13-dbgsym_13.14-0+deb11u1_i386.deb d56a42fdada5f64b912af98a976afde95aca8451 112536 postgresql-plpython3-13_13.14-0+deb11u1_i386.deb 16c4d0f55750f99fc2d5c1d619fee0939523e1cb 68320 postgresql-pltcl-13-dbgsym_13.14-0+deb11u1_i386.deb 915f79b98ffd016e682484948585c30f9d2a1ad7 44532 postgresql-pltcl-13_13.14-0+deb11u1_i386.deb 3142005c4e58f27a3964f0e24f88fe5a83ddecd5 1054080 postgresql-server-dev-13_13.14-0+deb11u1_i386.deb Checksums-Sha256: 382b3d80ba7207fa26a1fc107610ce815d00893e5bed7eb8f95d65327089c214 33420 libecpg-compat3-dbgsym_13.14-0+deb11u1_i386.deb aee64c5d2ce0d0c249d5882c4b331eb9804e8691c59320acf8d7263d542e0596 27952 libecpg-compat3_13.14-0+deb11u1_i386.deb bc64086a8ee98016afc7e4a158d6bed2b9036f02dff731e5b1a3ebd10dfc46bc 227056 libecpg-dev-dbgsym_13.14-0+deb11u1_i386.deb e98f30b48bd75d240cc264bd8da3f93831e60411d445848a8a151d23e3cb4a88 298568 libecpg-dev_13.14-0+deb11u1_i386.deb 289625fe3b8eee9e990606ae4435c1889374729fa55e6a971cd6d5475b40e7e9 97188 libecpg6-dbgsym_13.14-0+deb11u1_i386.deb 23fb7e5c481b064c0ec325bf983345cf50ba3ca85d23e6e89bd06f8966e87977 66816 libecpg6_13.14-0+deb11u1_i386.deb 9d634342848edebbfabd54b9056c75b3953c8580ca373301f2814b1b3957e758 80308 libpgtypes3-dbgsym_13.14-0+deb11u1_i386.deb 11738edfe82c18dde74131a017426ceff5f22bc759f9fb7edc26bc693ba88c20 51820 libpgtypes3_13.14-0+deb11u1_i386.deb 9b54b0c2433ce6f4a0c8336d6fc53762af07a9b4c6a0ef01e40d108d9af12afd 151212 libpq-dev_13.14-0+deb11u1_i386.deb 9ee2ce45d31f323634977ff2335a340cce56d4b5ca93265e984db25ebb578077 218372 libpq5-dbgsym_13.14-0+deb11u1_i386.deb a0cd652d95b7af04eb3a78336a101f14fed8ea3cb3bb8b41f7552494d29e23b7 190000 libpq5_13.14-0+deb11u1_i386.deb bc2cafc01ccbc1dc2bc9c9212d7e4179d5a458248d715ad33ad5287412447899 13576144 postgresql-13-dbgsym_13.14-0+deb11u1_i386.deb 6f6e0e17f8299be59149eaa5d67ac67a7fce450cc3f48c60f7d9a5be0bfa109e 16298 postgresql-13_13.14-0+deb11u1_i386-buildd.buildinfo 1fd27d0ce9a31818526744bbc1574ea1f1fedd8af8aee147e85ed7aab42858b6 15374480 postgresql-13_13.14-0+deb11u1_i386.deb 1414215fa2f087ee8b6a23676db814c901b96bc27fa95a2d1deb073f7836ddf3 1551436 postgresql-client-13-dbgsym_13.14-0+deb11u1_i386.deb a8f37cbd6378524feeb3e6559128b0f9d623c92b5fd1dfa85f3f2116c5c3b6f6 1537744 postgresql-client-13_13.14-0+deb11u1_i386.deb eae37bcbdc4298603441a4338a24551472d9c107715a61c444fd6beaf7f8230e 143368 postgresql-plperl-13-dbgsym_13.14-0+deb11u1_i386.deb fac4beb3529f3f69faacddc1890558df57011aad116b13618c98a6ca072c73ae 92932 postgresql-plperl-13_13.14-0+deb11u1_i386.deb 42549701832d75bb3e46dab3b884b594b5571f40f0a0a1e6413c454d4656c09b 143748 postgresql-plpython3-13-dbgsym_13.14-0+deb11u1_i386.deb 8fd705df58e126abe6f6ca53dd114818a18b807b456d0d6495df715683257016 112536 postgresql-plpython3-13_13.14-0+deb11u1_i386.deb 761e1ede9e27e6f18f2c0dd3d1ba1d8729020ac81e21e5d995214fb6df9d587a 68320 postgresql-pltcl-13-dbgsym_13.14-0+deb11u1_i386.deb 0a3df1a5bbddff27484122a163750ddf1a0924d8c49c1c49f9d759d36e1691f0 44532 postgresql-pltcl-13_13.14-0+deb11u1_i386.deb e05b53b317211491decce87887fc15f254b4e6f0cf106e7cb77f277911776583 1054080 postgresql-server-dev-13_13.14-0+deb11u1_i386.deb Files: 3af4fc8dac7e35d898393b4a726ba94f 33420 debug optional libecpg-compat3-dbgsym_13.14-0+deb11u1_i386.deb 43f566558d998ac2285e8e7d77d1e5f6 27952 libs optional libecpg-compat3_13.14-0+deb11u1_i386.deb ff1952f216b01e5f730ba6587757762f 227056 debug optional libecpg-dev-dbgsym_13.14-0+deb11u1_i386.deb d365238d13827556a105c417426f1bd6 298568 libdevel optional libecpg-dev_13.14-0+deb11u1_i386.deb eef64ba62a9c20f6a1af46027099733d 97188 debug optional libecpg6-dbgsym_13.14-0+deb11u1_i386.deb ebf45b7454d072d57ca9d0e03c4a444f 66816 libs optional libecpg6_13.14-0+deb11u1_i386.deb 6e6b8ade6525a4d2a88bed2c82556b51 80308 debug optional libpgtypes3-dbgsym_13.14-0+deb11u1_i386.deb d2d9d5da3823e7583c07f2ad2fb39216 51820 libs optional libpgtypes3_13.14-0+deb11u1_i386.deb 1cc004f0eb0338300d39099c6e80164a 151212 libdevel optional libpq-dev_13.14-0+deb11u1_i386.deb 31ad383756d7b74993c35fc40a923fab 218372 debug optional libpq5-dbgsym_13.14-0+deb11u1_i386.deb 4eb4eaa57e295be1f616f15a50758581 190000 libs optional libpq5_13.14-0+deb11u1_i386.deb e0f83bc0dc272ee3dc8db190d57e1d69 13576144 debug optional postgresql-13-dbgsym_13.14-0+deb11u1_i386.deb 6f7232cb6bec7d29607e70e5b61fd6c6 16298 database optional postgresql-13_13.14-0+deb11u1_i386-buildd.buildinfo 2818139cee4f8d39f00aa41a1fd711e8 15374480 database optional postgresql-13_13.14-0+deb11u1_i386.deb d9fd3b1f025c77d7815cc5c66e64e7ce 1551436 debug optional postgresql-client-13-dbgsym_13.14-0+deb11u1_i386.deb 327c6d4954b34a970eb1f651eb27448c 1537744 database optional postgresql-client-13_13.14-0+deb11u1_i386.deb a3eb96100b046540a1954916280c621f 143368 debug optional postgresql-plperl-13-dbgsym_13.14-0+deb11u1_i386.deb 87d5ea2e8d32f087b66b7902f73521bc 92932 database optional postgresql-plperl-13_13.14-0+deb11u1_i386.deb 201075ac2f067b78989840a96b6f793d 143748 debug optional postgresql-plpython3-13-dbgsym_13.14-0+deb11u1_i386.deb 5f3229e006eb53861352e616f49ec276 112536 database optional postgresql-plpython3-13_13.14-0+deb11u1_i386.deb a48ea042d25e38180952d7553cd8bb5d 68320 debug optional postgresql-pltcl-13-dbgsym_13.14-0+deb11u1_i386.deb e656f5511dfbb0ed703d0463dc749d3d 44532 database optional postgresql-pltcl-13_13.14-0+deb11u1_i386.deb d9c23066d33fd0fe8a332cb671208d97 1054080 libdevel optional postgresql-server-dev-13_13.14-0+deb11u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEJyRdn7p9tGRfxctAots23/koc0EFAmXMxwIACgkQots23/ko c0HmHA/+LGbsiSBNGaIgYFk07AR+nVs22nVrye0kVLwMEh++iZpySRzHkISYQinI GMqVLc66QAnG7dMgThJnbPoOBN3NtOUpxlFj46eDLQrqEtYXr9wYW7ITObaKS2Y6 Z8niA9Ozn4oPTIQd0gSCOonutPyIPtZf99NKaJb/pdnYoT0PNF5xvMoO9KJw6gWQ ZqyYZ3DCvouzKD/AC3/pcFj+LyCeoI9rKV0IZJGRJtJON71rUbYXNVobzGvcHfjX M1wrJs8Thwz8NHpBn5Iau914OHvOPD0e7qkq22fTa+Ti/4ctV7GuUSKoYjkAal2A HyioQEvVVz7oTvQc+UaBJyxz9md6WOb2j7ayRm9xV6KiohLt+yANSJtcrvt8sjTe YFaIetT4zaoa20/v20C/1kDnM+alvbCRgS6elPfcMYgZQG5J3WzjIMrTaBx8fYEa Snonpit+wUwp6fNoE9dB8JDu/spENsccl9jc1kNZOBvu8SatOv+LYkCkWoUBzjnt ldFG286AGrfhj3ZBLvScSCewncTkddvsdw3Dt4+AM/PdywRk30prKjrHE+9dpdAS p300KiiTARtBaqe6lx1dSoaN8CIF4dNXq0J+dRUpFMc7/vNnbasAp5bNEXY+vdvQ LZ50/mfCd8tCpbypXmS3xnwqD4QlrhR1RBquR1XvQcy5OHsaOQ8= =2/8W -----END PGP SIGNATURE-----