-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 06 Feb 2024 13:37:19 +0100 Source: postgresql-15 Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-15 postgresql-15-dbgsym postgresql-client-15 postgresql-client-15-dbgsym postgresql-plperl-15 postgresql-plperl-15-dbgsym postgresql-plpython3-15 postgresql-plpython3-15-dbgsym postgresql-pltcl-15 postgresql-pltcl-15-dbgsym postgresql-server-dev-15 Architecture: arm64 Version: 15.6-0+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: arm Build Daemon (arm-ubc-01) Changed-By: Christoph Berg Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 15 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql-15 - The World's Most Advanced Open Source Relational Database postgresql-client-15 - front-end programs for PostgreSQL 15 postgresql-plperl-15 - PL/Perl procedural language for PostgreSQL 15 postgresql-plpython3-15 - PL/Python 3 procedural language for PostgreSQL 15 postgresql-pltcl-15 - PL/Tcl procedural language for PostgreSQL 15 postgresql-server-dev-15 - development files for PostgreSQL 15 server-side programming Changes: postgresql-15 (15.6-0+deb12u1) bookworm-security; urgency=medium . * New upstream version. . * Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY (Heikki Linnakangas) . One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected. . The PostgreSQL Project thanks Pedro Gallegos for reporting this problem. (CVE-2024-0985) Checksums-Sha1: 94c71a55361d7de8a44ccafbfd3b92acb956a5c5 38668 libecpg-compat3-dbgsym_15.6-0+deb12u1_arm64.deb 194d9ac227df7189f6cda50de222f5980e7a5072 20888 libecpg-compat3_15.6-0+deb12u1_arm64.deb 1531afe994aefb816cecebf8c1b8950b8032a763 273840 libecpg-dev-dbgsym_15.6-0+deb12u1_arm64.deb 503596f6d37c696827caeb799fdee81568762f42 279388 libecpg-dev_15.6-0+deb12u1_arm64.deb 7e78929f6fea793d8ee4cc0e53b6594f70a0e775 113164 libecpg6-dbgsym_15.6-0+deb12u1_arm64.deb d7b31390511496bd07424e2253f4029b5eabea0f 56816 libecpg6_15.6-0+deb12u1_arm64.deb ee48507a6b1c296734761c245b65906841bd711d 87296 libpgtypes3-dbgsym_15.6-0+deb12u1_arm64.deb 8c9b438008795d815195372cf18140225cc6cb83 40888 libpgtypes3_15.6-0+deb12u1_arm64.deb 9f7e9506ee5e9c42733196861b158c157f3c8c22 138816 libpq-dev_15.6-0+deb12u1_arm64.deb 1375a08deae85202e262a1981c60b8c74f534da1 274328 libpq5-dbgsym_15.6-0+deb12u1_arm64.deb cdee1e4f86393e8ccda881514f4c9012605a720c 178272 libpq5_15.6-0+deb12u1_arm64.deb b159253ca822ee912f70163f47c1bf236150963a 16426904 postgresql-15-dbgsym_15.6-0+deb12u1_arm64.deb 385c5957549676efafddf853981a2532fbf277f5 16806 postgresql-15_15.6-0+deb12u1_arm64-buildd.buildinfo 13606f6ff78c4fe852930b0c1ca1ad7d3f784261 16321716 postgresql-15_15.6-0+deb12u1_arm64.deb ff656154306b994693d4de04e31263ae4af5f428 2424356 postgresql-client-15-dbgsym_15.6-0+deb12u1_arm64.deb e704aad59c084d77b5d9ee8dfc3ced2a667bc8b9 1647156 postgresql-client-15_15.6-0+deb12u1_arm64.deb c016ba93575225ebb77b507614a0e3718ae155e0 183356 postgresql-plperl-15-dbgsym_15.6-0+deb12u1_arm64.deb 3df8648dc70339224c07c793e6e63971be6ec0a0 84988 postgresql-plperl-15_15.6-0+deb12u1_arm64.deb 53b707f33b327ed7fb4cd872dc5d6e7628638d32 175360 postgresql-plpython3-15-dbgsym_15.6-0+deb12u1_arm64.deb 78a7cf4db9a644c4529dce100d3085d5fd46f5fe 106020 postgresql-plpython3-15_15.6-0+deb12u1_arm64.deb 8c1a8a1bc4351e54f26fd4b79e54d252eba21ba7 79192 postgresql-pltcl-15-dbgsym_15.6-0+deb12u1_arm64.deb 685351f846c5c62c38decd0f7c2cbe21ee7db91e 38800 postgresql-pltcl-15_15.6-0+deb12u1_arm64.deb 3159340b60f929fcc33a9907106630e7e1a3ac72 1135204 postgresql-server-dev-15_15.6-0+deb12u1_arm64.deb Checksums-Sha256: dee14ce04e7d54383987531fbbf390112e66aa3a9170e513c764ffb48a5c54f1 38668 libecpg-compat3-dbgsym_15.6-0+deb12u1_arm64.deb 2805f62dce1dffbc1091368e5f1bf31ad27ad3ac5a5bc16f82b8efa75a0a6d35 20888 libecpg-compat3_15.6-0+deb12u1_arm64.deb 59627340f539f722dd976b490f6304fe6c62c663cfab16157ccef7293f787b5c 273840 libecpg-dev-dbgsym_15.6-0+deb12u1_arm64.deb 886bc8ff38652e768b9db27dbd171991f2f27ffbb13cf5b059d6f052f52da46a 279388 libecpg-dev_15.6-0+deb12u1_arm64.deb 02bb24cc23245bc68bcdc04da04680f4d3881543ab3f9d4639de7bbad94973eb 113164 libecpg6-dbgsym_15.6-0+deb12u1_arm64.deb 96d1c0697285df3542c0904e0c80b9fb0725a5c9f0fa71141c9349ad3a2c2774 56816 libecpg6_15.6-0+deb12u1_arm64.deb 32cde69756e7b04213576d6b5a781efec883c6622168e05cfe4a1501b2321264 87296 libpgtypes3-dbgsym_15.6-0+deb12u1_arm64.deb ccee9f7669947684cb824bf18beca96a233d8f8c1cb5768ee66f1bf99f7c9a99 40888 libpgtypes3_15.6-0+deb12u1_arm64.deb 07ba1061dd4492e815b37fef80e7c0fc0d9d98dcac8c442ad2e78f900d7d668e 138816 libpq-dev_15.6-0+deb12u1_arm64.deb 8d57a7f4288d2745a8c556b471a6c081754daa4c5e1b237b3c01ad395aa48632 274328 libpq5-dbgsym_15.6-0+deb12u1_arm64.deb 549a1eee79def669afeffb234ff2c3a20fc7740eb377841f305f08dfaacefbf7 178272 libpq5_15.6-0+deb12u1_arm64.deb 16edc449ac2a51564630c5888ccb8fd186491b235bfbe5f4c6085eee5877c21e 16426904 postgresql-15-dbgsym_15.6-0+deb12u1_arm64.deb 21da7bc059d469144373aaaacdf3d9712e8f64e04da3cb2addc5419ec3232dd9 16806 postgresql-15_15.6-0+deb12u1_arm64-buildd.buildinfo bee7cc864ce9ef865c664c4e5a4385fa124f51defe34be0589c743e58b6082f8 16321716 postgresql-15_15.6-0+deb12u1_arm64.deb 1bdef14f86fc2893233e246aea104f51747737a1e08cc147e0bf8860e6e5f740 2424356 postgresql-client-15-dbgsym_15.6-0+deb12u1_arm64.deb fa28ccb52136ed82e3e7ddeecbf1105993961db87009234c0c5c6d2f9283c900 1647156 postgresql-client-15_15.6-0+deb12u1_arm64.deb 337e9743f6894ad6cfdebfa0e4da14ef9c15c863cb2f90fa96992a8a14977095 183356 postgresql-plperl-15-dbgsym_15.6-0+deb12u1_arm64.deb ac4ba08a109a1c8f8b2cbe8c893bd99eb40faed7687e1228fc4fbf079f5e6de7 84988 postgresql-plperl-15_15.6-0+deb12u1_arm64.deb 1496217dc7c96c12675460e30fe9b6ebd80f5e88937e997ea401f7e0860e710c 175360 postgresql-plpython3-15-dbgsym_15.6-0+deb12u1_arm64.deb 442e1131fdd35755c556d5fd4a05d6b29e11a4211f232827cec08da27b7e0cd5 106020 postgresql-plpython3-15_15.6-0+deb12u1_arm64.deb 8b78f36d93c4b1c5709b788802a11a2fe2f06514180e0bbc2ecda9a9cc972c31 79192 postgresql-pltcl-15-dbgsym_15.6-0+deb12u1_arm64.deb 49282264dc2906b71ceeb2c008b74333f9766bc280595337b88204fb0190448d 38800 postgresql-pltcl-15_15.6-0+deb12u1_arm64.deb 4289e7af2210eaaa93b70fcc5082aa69aa2470ee57bdf32d562e56fb6cae2728 1135204 postgresql-server-dev-15_15.6-0+deb12u1_arm64.deb Files: 5d0ceb34cbf5480856e637b0316d1755 38668 debug optional libecpg-compat3-dbgsym_15.6-0+deb12u1_arm64.deb 4971b221c8a8be2f2246f6338b8b49b3 20888 libs optional libecpg-compat3_15.6-0+deb12u1_arm64.deb 204b40058682320bff31c5dfb0e834f4 273840 debug optional libecpg-dev-dbgsym_15.6-0+deb12u1_arm64.deb bafdade86bea4418b9ff2e4f3667fe6a 279388 libdevel optional libecpg-dev_15.6-0+deb12u1_arm64.deb 0e0ecade00077a8f075056243b33527f 113164 debug optional libecpg6-dbgsym_15.6-0+deb12u1_arm64.deb 7a5e40c59cd04ae01aca5cb07befce7d 56816 libs optional libecpg6_15.6-0+deb12u1_arm64.deb c419242bade45f5830e92bd08d4b0997 87296 debug optional libpgtypes3-dbgsym_15.6-0+deb12u1_arm64.deb f17f177bc847747c20711c48c2ba9aae 40888 libs optional libpgtypes3_15.6-0+deb12u1_arm64.deb 56ebab0cfd9308ede2ec3de108ef4166 138816 libdevel optional libpq-dev_15.6-0+deb12u1_arm64.deb 57022eeac79e9e1dddd250a81c0aa2d3 274328 debug optional libpq5-dbgsym_15.6-0+deb12u1_arm64.deb 8b685c17d2b62a2b826e7ec48e51b11b 178272 libs optional libpq5_15.6-0+deb12u1_arm64.deb eb1fb045765c43a444571536ca63fccd 16426904 debug optional postgresql-15-dbgsym_15.6-0+deb12u1_arm64.deb b8757b251873222f9c5e18342b8b5d4f 16806 database optional postgresql-15_15.6-0+deb12u1_arm64-buildd.buildinfo d75b2a804b675bd97fe65e7fe874b2e3 16321716 database optional postgresql-15_15.6-0+deb12u1_arm64.deb 9bfcc9f34cbd792ec9fc98ec217d6201 2424356 debug optional postgresql-client-15-dbgsym_15.6-0+deb12u1_arm64.deb 8d4450022210bd7a0640ad689ebd6478 1647156 database optional postgresql-client-15_15.6-0+deb12u1_arm64.deb 6faf95d3fe68b2411a3e919f49af0ffd 183356 debug optional postgresql-plperl-15-dbgsym_15.6-0+deb12u1_arm64.deb 4683a714b5102593ab00ee6fb4db6ce2 84988 database optional postgresql-plperl-15_15.6-0+deb12u1_arm64.deb 911f30bb7a2cad5d35b74e7f066ff003 175360 debug optional postgresql-plpython3-15-dbgsym_15.6-0+deb12u1_arm64.deb f0997d1eec97526abfc1998f9ba6626d 106020 database optional postgresql-plpython3-15_15.6-0+deb12u1_arm64.deb da2e2adffa1b4cc7e4c38eee0f00f3f9 79192 debug optional postgresql-pltcl-15-dbgsym_15.6-0+deb12u1_arm64.deb 5a87331633fea68dc4ca690c5ae0669b 38800 database optional postgresql-pltcl-15_15.6-0+deb12u1_arm64.deb 3d7406f03574fbdf991f73c4862d4d1d 1135204 libdevel optional postgresql-server-dev-15_15.6-0+deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvH8AOGUMuGQ9yWfAdEqOeknEYfEFAmXMz8AACgkQdEqOeknE YfFrrhAAhebhVV9FgzV9lFR1biGui/DJXxXg7Je+5LWm16qgUjl2TRQ5AXxdCep4 l2LEjhMyG7fp6rkYQMg//svxiXO9Uw02MLVy6nfjMYcOw+/q0xMdIp8hiJn19GEp irnLjYPqK1TwYsddUroNmZ72zAehuwpnpx303pXIagGQv05hyVyh3OjrfjSK6sVY pQvYe7AbSY+X0GVUmcFuy+6J4snWpmj2mjHSZmKKrCdqwUaMDijcWdt0jb1cbkei w7fuIx765Oy5eMVuQLwTN8Ze6TYoGTm2OXLAYglfzEJmpdWcwPLnjV6JrG9hN+GG KK1Crrj/TRThAORSrtoRPZiGCSGecPTa+qofmYSPDv1KCeywersi//Og3MMwNxpf 2w5zitc9Ki8OispxWnDMpYnVv7kVCXBJWSTHFMRr5XJAcYsy9XCU5+8GVx9I2LMx iLHZZi5AXKSJ7mSsgraFm7hMAJK4Vt619ooAoKp93BXytIdgVZMEnSJ0vtKj5Inx ZFLitYH4z9J6c2bq2AMHqzRpdmZFymJlQUDLbqk48qF4Rk0zZPp752cztqbSdkir 6Nlg+MmM9wjHD9tZQ6ALC1kLC1xLZTBfmKwYSRCScXy4kSZkUG9/K8aCc8bTVCYH W7Ce2QNgYt9pdJG84f8brQuEdn2gv67OIatbNBMW8KXPOIOfjo4= =4EUZ -----END PGP SIGNATURE-----