Accepted postgresql-9.1 9.1.6-1~bpo60+1 (source all amd64)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 13 Oct 2012 11:58:39 +0200
Source: postgresql-9.1
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-9.1 postgresql-9.1-dbg postgresql-client-9.1 postgresql-server-dev-9.1 postgresql-doc-9.1 postgresql-contrib-9.1 postgresql-plperl-9.1 postgresql-plpython-9.1 postgresql-plpython3-9.1 postgresql-pltcl-9.1
Architecture: source amd64 all
Version: 9.1.6-1~bpo60+1
Distribution: squeeze-backports
Urgency: medium
Maintainer: Debian PostgreSQL Maintainers <pkg-postgresql-public@lists.alioth.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
libecpg-compat3 - older version of run-time library for ECPG programs
libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
libecpg6 - run-time library for ECPG programs
libpgtypes3 - shared library libpgtypes for PostgreSQL 9.1
libpq-dev - header files for libpq5 (PostgreSQL library)
libpq5 - PostgreSQL C client library
postgresql-9.1 - object-relational SQL database, version 9.1 server
postgresql-9.1-dbg - debug symbols for postgresql-9.1
postgresql-client-9.1 - front-end programs for PostgreSQL 9.1
postgresql-contrib-9.1 - additional facilities for PostgreSQL
postgresql-doc-9.1 - documentation for the PostgreSQL database management system
postgresql-plperl-9.1 - PL/Perl procedural language for PostgreSQL 9.1
postgresql-plpython-9.1 - PL/Python procedural language for PostgreSQL 9.1
postgresql-plpython3-9.1 - PL/Python 3 procedural language for PostgreSQL 9.1
postgresql-pltcl-9.1 - PL/Tcl procedural language for PostgreSQL 9.1
postgresql-server-dev-9.1 - development files for PostgreSQL 9.1 server-side programming
Closes: 681966 688678
Changes:
postgresql-9.1 (9.1.6-1~bpo60+1) squeeze-backports; urgency=low
.
* Rebuild for squeeze-backports.
.
postgresql-9.1 (9.1.6-1) unstable; urgency=medium
.
* Urgency medium because of data loss bug fix.
* New upstream bug fix release:
- Fix persistence marking of shared buffers during WAL replay.
This mistake can result in buffers not being written out during
checkpoints, resulting in data corruption if the server later
crashes without ever having written those buffers. Corruption can
occur on any server following crash recovery, but it is
significantly more likely to occur on standby slave servers since
those perform much more WAL replay. There is a low probability of
corruption of btree and GIN indexes. There is a much higher
probability of corruption of table "visibility maps". Fortunately,
visibility maps are non-critical data in 9.1, so the worst
consequence of such corruption in 9.1 installations is transient
inefficiency of vacuuming. Table data proper cannot be corrupted by
this bug.
While no index corruption due to this bug is known to have occurred
in the field, as a precautionary measure it is recommended that
production installations "REINDEX" all btree and GIN indexes at a
convenient time after upgrading to 9.1.6.
Also, if you intend to do an in-place upgrade to 9.2.X, before
doing so it is recommended to perform a "VACUUM" of all tables
while having vacuum_freeze_table_age set to zero. This will ensure
that any lingering wrong data in the visibility maps is corrected
before 9.2.X can depend on it. vacuum_cost_delay can be adjusted to
reduce the performance impact of vacuuming, while causing it to
take longer to finish.
- See HISTORY/changelog.gz for the other bug fixes.
* debian/rules: Compress all binaries with xz. Thanks Cyril Brulebois!
(Closes: #688678)
.
postgresql-9.1 (9.1.5-2) unstable; urgency=low
.
* debian/rules: Re-enable hardening functions (regression from 9.1.3-2 when
hardening-wrapper is not installed). Use "hardening=all", but disable
"pie" (as that's not compatible with -fPIC) and add -pie to CFLAGS
explicitly. Also drop the explicit "-Wl,-z,now" linker option, as this is
now implied with "all". (LP: #1039618)
* Fix upgrades from older 9.1 releases in stable Ubuntu -updates/-security
releasese. The strict "<< 9.1.4-2~" check for moving pg_basebackup.1.gz is
not sufficient, as Ubuntu stables have newer upstream releases by now.
- debian/control: Move Breaks/Replaces: from static version to
${binary:Version}.
- debian/postgresql-9.1.preinst: Also fix the alternatives when upgrading
from a -0something version.
- (LP: #1043449)
.
postgresql-9.1 (9.1.5-1) unstable; urgency=medium
.
* Urgency medium due to security fixes and bug fixes which should reach
Wheezy quickly.
* New upstream bug fix/security release:
- Prevent access to external files/URLs via XML entity references.
xml_parse() would attempt to fetch external files or URLs as needed
to resolve DTD and entity references in an XML value, thus allowing
unprivileged database users to attempt to fetch data with the
privileges of the database server. While the external data wouldn't
get returned directly to the user, portions of it could be exposed
in error messages if the data didn't parse as valid XML; and in any
case the mere ability to check existence of a file might be useful
to an attacker. (CVE-2012-3489)
- Prevent access to external files/URLs via "contrib/xml2"'s
xslt_process().
libxslt offers the ability to read and write both files and URLs
through stylesheet commands, thus allowing unprivileged database
users to both read and write data with the privileges of the
database server. Disable that through proper use of libxslt's
security options. (CVE-2012-3488)
Also, remove xslt_process()'s ability to fetch documents and
stylesheets from external files/URLs. While this was a documented
"feature", it was long regarded as a bad idea. The fix for
CVE-2012-3489 broke that capability, and rather than expend effort
on trying to fix it, we're just going to summarily remove it.
- Lots of other bug fixes, see HISTORY/changelog.gz.
.
postgresql-9.1 (9.1.4-3) unstable; urgency=medium
.
Urgency medium: Trivial changes, and fixes RC bug.
.
[ Christoph Berg ]
* debian/source/options: Ignore test suite .sql files, to fix building
twice in a row; ignore .bzr-builddeb/default.conf so bzr checkouts can be
built using dpkg-buildpackage.
.
[ Martin Pitt ]
* debian/postgresql-9.1.postrm: Do not remove the directories
/var/{lib,log}/postgresql/, they are owned by the postgresql-common
package. (Closes: #681966)
Checksums-Sha1:
2b411247016e45b3f5d0e2888bc663d514177715 3319 postgresql-9.1_9.1.6-1~bpo60+1.dsc
a24b7c002463572ee7371f055e566b69e39cda3e 15621370 postgresql-9.1_9.1.6.orig.tar.bz2
6009affbf079f2d84c90a287fcde57a802e40d71 35637 postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
1fcbd842948397c1d397194ad6c2b940fc3d8183 561372 libpq-dev_9.1.6-1~bpo60+1_amd64.deb
05a6c023af5de31eccb65a895a97256b7625930d 506822 libpq5_9.1.6-1~bpo60+1_amd64.deb
7bee82cdcd389486ea2b1feb3a6f040abef1a08b 464092 libecpg6_9.1.6-1~bpo60+1_amd64.deb
d9f4b636da418b0901951c54db847bd9111e9969 594310 libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
a181a348354a1e5b9eed0866a928ec78cdc6a063 401132 libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
8d0b2c53dba93bee98ed9f3dcf12bfd90fbb51ae 422794 libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
cff5251562333a44ae3c7ddf33a31ddccd3ba0b7 3554674 postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
80d87c00a53aa4e079631a9e6b954b46ec5d9e0e 4816314 postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
dcd77e6666aed06af164cce05caf52ba4a97b383 1375952 postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
5c3578ff3ddb49804b687fe13eabf1f6e2c3bf07 919070 postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
80797e92324e7832e809953394a6cd87439910e8 1977676 postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
9220578e0b15ff82db213cab3af6b0297a405c95 730826 postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
213be3182d27f3efe669c5190cf3bfa28ef9871a 440214 postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
1107983931eaed2d9c1b9b0aa20c209c55c6b106 426252 postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
1084c97d5f7331210081811f80ccecc6437eaeb7 426032 postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
21a86535c0882449cbe4e1f932a77acd6c77e64c 416084 postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
Checksums-Sha256:
0b9fde5ae5fab02389a2c9d8868ed3476c16c5d994c728ef498374aaada57977 3319 postgresql-9.1_9.1.6-1~bpo60+1.dsc
6e396aca621a95b9f5f7292a79ebe6ce892e36c7f7021814e1bd94bcfc6c31e7 15621370 postgresql-9.1_9.1.6.orig.tar.bz2
9729f655115a4b65563aaf0ec38a18e5f6d5478833114fbe37dece6eae74ad47 35637 postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
9f67a216016f03b75c242cdbae1fb18f0f070010f887d743e11fdc04c1ec47d0 561372 libpq-dev_9.1.6-1~bpo60+1_amd64.deb
726bda6147a5480455d96d29937d9ad61d40d7f92f8327e5d0746dd6452993e6 506822 libpq5_9.1.6-1~bpo60+1_amd64.deb
a219068dabf949446b2b38af83b880dfe5fcb3f131ad27dc734cb1c302001efe 464092 libecpg6_9.1.6-1~bpo60+1_amd64.deb
a7fa1bbb72a17814b61cd661f04bb939366b11b9e66a3fd461d348ff821e43ff 594310 libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
47a8ef7c22b6a92d3066216248d5a5e0a379672a75b0fe685752516eb5935517 401132 libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
e06914452bc3fca473e2b060054ec2cd363a66acaf21fd8629c9fe48042b0816 422794 libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
c0981e57beb3621c8439e62cfbff697008315758e80e0a99a41d2794d014e712 3554674 postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
1c47f53ab1a04a924481789199a86f5eceb860536b17a31469626a0bef5ddd4d 4816314 postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
046e4fea4ed98bf2e280b8c36c868848be00c5cc3ec5260a0376452d5e1ec229 1375952 postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
1b529caf4c4ea995ecbb06001f48b27c7b8c15cf1b9f81ddc448677a56cc17c4 919070 postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
e8c696a78e6ccbd588e71d861af98f217a2339d4d2cd5bc7d197553a9efa104e 1977676 postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
3cb228ba5412c057ecc58eaa274b80f54aa0f851fc864aa4ab6ea6591ba2479a 730826 postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
f64258fa21135f72d8b211d87c6c7dbd4586d79d99eaa3f5461426a5067e580f 440214 postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
7d7ed19b77a583add6166cba0fdc2d6c7533a1ce4843503c99db17e7e509a3de 426252 postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
69482d492a1729324a2c9ef37af4bea95e28bc3c6af6d441ed03303998aad2d1 426032 postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
72d878e109aa941d9b8ba03abca257b586c97f770c309ad45723742738855dbd 416084 postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
Files:
768b475b950830633a8833f73d764cd3 3319 database optional postgresql-9.1_9.1.6-1~bpo60+1.dsc
000755f66c0de58bbd4cd2b89b45b8e2 15621370 database optional postgresql-9.1_9.1.6.orig.tar.bz2
b3d8f70b12f05cb3857c4cb0a7aefa49 35637 database optional postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
e71e13badfd8c26682da653973924766 561372 libdevel optional libpq-dev_9.1.6-1~bpo60+1_amd64.deb
a7ba78f16b737146472f9b26d4d2c52e 506822 libs optional libpq5_9.1.6-1~bpo60+1_amd64.deb
254e9d2849739a617a749e392b970fe4 464092 libs optional libecpg6_9.1.6-1~bpo60+1_amd64.deb
f7e7b7506ed932bfe30308e5acd22a11 594310 libdevel optional libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
e3a61ce1dbc8bf35e303cabfa17954e7 401132 libs optional libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
b9cbb5be769492f76dc3043e0caa6ffc 422794 libs optional libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
685b31ca195cc035bf36b33c419b60f1 3554674 database optional postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
c16721f4e1193fbcdd3f67bfe1305406 4816314 debug extra postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
2e4f7af5b3be5d7902e32baf61f410f4 1375952 database optional postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
6f8d8a088c12586f2b574d2e1201530f 919070 libdevel optional postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
462a76675a9bc23e1a06389ec64dec43 1977676 doc optional postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
50cf01cbe49f5eee0a938f01959bc650 730826 database optional postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
535b86e3224c849161891b6d4c495f06 440214 database optional postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
9132f5cc49eca23969a0a4e5d1e510b5 426252 database optional postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
f265bd8b3e4802568ca6d7e795f8a36d 426032 database optional postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
56486c75d564d4aba16367b21f610b83 416084 database optional postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=3nrm
-----END PGP SIGNATURE-----
Accepted:
libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
libecpg6_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg6_9.1.6-1~bpo60+1_amd64.deb
libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
libpq-dev_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpq-dev_9.1.6-1~bpo60+1_amd64.deb
libpq5_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpq5_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
postgresql-9.1_9.1.6-1~bpo60+1.dsc
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1.dsc
postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1_9.1.6.orig.tar.bz2
to main/p/postgresql-9.1/postgresql-9.1_9.1.6.orig.tar.bz2
postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
to main/p/postgresql-9.1/postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
Reply to: