Accepted sqlite3 3.27.2-3~bpo9+1 (source amd64 all) into stretch-backports->backports-policy, stretch-backports
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 13 Jun 2019 12:31:41 +0200
Source: sqlite3
Binary: lemon sqlite3 sqlite3-doc libsqlite3-0 libsqlite3-dev libsqlite3-tcl
Architecture: source amd64 all
Version: 3.27.2-3~bpo9+1
Distribution: stretch-backports
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
lemon - LALR(1) Parser Generator for C or C++
libsqlite3-0 - SQLite 3 shared library
libsqlite3-dev - SQLite 3 development files
libsqlite3-tcl - SQLite 3 Tcl bindings
sqlite3 - Command line interface for SQLite 3
sqlite3-doc - SQLite 3 documentation
Closes: 500095 858569 864185 867387 867618 873762 878680 883556 893195 916046 922163 923038 925289 925290 928770
Changes:
sqlite3 (3.27.2-3~bpo9+1) stretch-backports; urgency=medium
.
* Rebuild for stretch-backports.
* No changes.
.
sqlite3 (3.27.2-3) unstable; urgency=high
.
* Backport security related patches:
- CVE-2019-8457: heap out-of-bound read in the rtreenode() function when
handling invalid rtree tables,
- prevent aliases of window functions expressions from being used as
arguments to aggregate or other window functions (probably fixing
CVE-2019-5018) (closes: #928770),
- enforce the SQLITE_LIMIT_COLUMN limit on virtual tables (probably
fixing most of CVE-2019-5827),
- use the 64-bit memory allocator interfaces in extensions, whenever
possible (probably additional fix for CVE-2019-5827).
.
sqlite3 (3.27.2-2) unstable; urgency=high
.
* Backport security related patches:
- use unsigned integers to count the number of pages in a freelist
during an integrity_check, to avoid any possibility of a signed integer
overflow,
- fix a crash that could occur if the RHS of an IN expression is a
correlated sub-query that refers to the outer query from within a
window frame definition only,
- ensure that ALTER TABLE commands open statement transactions,
- CVE-2019-9937: fix an fts5 problem with interleaving reads and writes
in a single transaction (closes: #925290),
- CVE-2019-9936: fix a buffer overread that could occur when running fts5
prefix queries inside a transaction (closes: #925289).
.
sqlite3 (3.27.2-1) unstable; urgency=medium
.
* New upstream release (closes: #923038).
.
sqlite3 (3.27.1-2) unstable; urgency=medium
.
* Backport upstream fix for assertion fault in self-join with a IN
constraint.
.
sqlite3 (3.27.1-1) unstable; urgency=medium
.
* New upstream release.
* Compile with URI filename support.
* Update libsqlite3-0 symbols.
.
[ Helmut Grohne <helmut@subdivi.de> ]
* Mark lemon Multi-Arch: foreign (closes: #922163).
.
sqlite3 (3.26.0+fossilbc891ac6b-2) unstable; urgency=medium
.
* Backport upstream fix for a problem with bytecode generation when a
query involves two or more indexes on expressions connected by OR.
* Update Standards-Version to 4.3.0 .
.
sqlite3 (3.26.0+fossilbc891ac6b-1) unstable; urgency=medium
.
* New Fossil snapshot release:
- ensure that ALTER TABLE modifies table and column names embedded,
- fix a potential NULL pointer dereference that can occur in ALTER TABLE,
- fix the sqlite3ExprDup() function so that it correctly duplicates the
Window object list,
- do not use a partial index as a table scan in an IN operator,
- fix a problem with using "<db>-vacuum",
- OSSFuzz found a case where an assert() inside sqlite3ExprCompare() can
be true.
* Revert version number bump.
* Fix a problem with the CSV extension when it uses the "header" option on
a real file.
.
sqlite3 (3.26.0-3) unstable; urgency=medium
.
* Declare that SQLite3 version 3.26.0 breaks unfixed python{,3}-migrate
(closes: #916046).
.
sqlite3 (3.26.0-2) unstable; urgency=medium
.
* Backport upstream fix to ensure that ALTER TABLE modifies table and
column names embedded in WITH clauses that are part of views and
triggers.
.
sqlite3 (3.26.0-1) unstable; urgency=medium
.
* New upstream release.
* Update libsqlite3-0 symbols.
.
sqlite3 (3.25.3-2) unstable; urgency=medium
.
* Backport security related patches:
- fix a buffer overread associated with sqlite3_deserialize() ,
- fix a potential buffer overread in the dbstat virtual table when
processing a corrupt database file.
.
sqlite3 (3.25.3-1) unstable; urgency=medium
.
* New upstream release.
.
sqlite3 (3.25.2-1) unstable; urgency=medium
.
* New upstream release.
.
sqlite3 (3.25.1-1) unstable; urgency=medium
.
* New upstream release.
.
sqlite3 (3.25.0-1) unstable; urgency=medium
.
* New upstream release.
* Update libsqlite3-0 symbols.
* Update Standards-Version to 4.2.1 .
.
sqlite3 (3.24.0-1) unstable; urgency=medium
.
* New upstream release.
* Update libsqlite3-0 symbols.
* Update debhelper level to 11:
- update documentation path.
* Update Standards-Version to 4.1.4 .
.
sqlite3 (3.23.1-1) unstable; urgency=medium
.
* New upstream release.
.
sqlite3 (3.23.0-1) unstable; urgency=medium
.
* New upstream release.
* Update libsqlite3-0 symbols.
* Remove backport fix of CVE-2018-8740 as this release contains it.
.
sqlite3 (3.22.0-2) unstable; urgency=high
.
* Backport upstream security fix for CVE-2018-8740: NULL pointer dereference
(closes: #893195).
.
sqlite3 (3.22.0-1) unstable; urgency=medium
.
* New upstream release (closes: #867387).
* Update libsqlite3-0 symbols.
* Replace autotools updateconfig with the debhelper one.
* Update Standards-Version to 4.1.3:
- remove libsqlite3-0-dbg package and use the auto-generated one
(closes: #883556).
.
sqlite3 (3.21.0-1) unstable; urgency=medium
.
* New upstream release.
.
sqlite3 (3.20.1-2) unstable; urgency=high
.
* Backport fix for CVE-2017-15286, NULL pointer dereference in
tableColumnList() (closes: #878680).
* Update Standards-Version to 4.1.1:
- change libsqlite3-0-dbg priority to optional.
.
sqlite3 (3.20.1-1) unstable; urgency=medium
.
* New upstream release.
* Backport fix for CVE-2017-13685, '.dump' command crashes following
PRAGMA empty_result_callbacks=1 (closes: #873762).
.
sqlite3 (3.20.0-1) experimental; urgency=medium
.
* New upstream release:
- adds tab completion support (closes: #500095).
* Enable the SQLITE_STMT virtual table extension.
* Remove dh-autoreconf build dependency.
.
sqlite3 (3.19.3-3) unstable; urgency=high
.
* Backport fix for CVE-2017-10989, heap-based buffer over-read via
undersized RTree blobs (closes: #867618).
.
sqlite3 (3.19.3-2) unstable; urgency=medium
.
* Update Standards-Version to 4.0.0 and debhelper level to 10 .
.
sqlite3 (3.19.3-1) experimental; urgency=medium
.
* New upstream release.
.
sqlite3 (3.19.2-2) experimental; urgency=medium
.
* Backport configure fix for FTS4 and FTS5 builds (closes: #864185).
* Add required sqlite3_fts5_may_be_corrupt@Base symbol to the libsqlite3-0
package.
.
sqlite3 (3.19.2-1) experimental; urgency=medium
.
* New upstream, bugfix release.
.
sqlite3 (3.19.0-1) experimental; urgency=low
.
* New upstream release.
* Update library symbols file:
- remove no longer available sqlite3_fts5_may_be_corrupt@Base symbol,
- add new sqlite3_set_last_insert_rowid@Base symbol.
.
sqlite3 (3.17.0-1) experimental; urgency=medium
.
* New upstream release (closes: #858569).
* Remove backported patches.
Checksums-Sha1:
857c730b37db171c5f89d52d39496e3a2b8cd1e9 2081 sqlite3_3.27.2-3~bpo9+1.dsc
eaf56b1920547ec2e5758e5deb00939f81c6599b 30460 sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
ac736f3979af43d412c33876d68159ae90022713 65614 lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
e7f663e587fc161dfbe272fc4ec8e6b3e879afa2 163916 lemon_3.27.2-3~bpo9+1_amd64.deb
94d466bf1cc7e11931c89110bd14fa2fb3a51c9a 1445836 libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
792a0923f449bee7a78a23391cf73d77ed9631ec 638120 libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
3114ecfc0c60a89842818792d397997911571d01 785378 libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
1146cc84effab0dd12fa1fe1ea583622d773460f 58998 libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
260a8ec143b0de42be25872a12fce1be2951c2f0 129698 libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
7a0a721fd52b07e34c07b604bcee329574d2d9b1 3171464 sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
8297cc76e75724d2abc88fcf9b5731791805db7b 7020968 sqlite3-doc_3.27.2-3~bpo9+1_all.deb
45f6e194b1ffb78c32b931d59c814588c204750c 8406 sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
53f6af3e3594426c9f0502d26c7945fc442b7627 911364 sqlite3_3.27.2-3~bpo9+1_amd64.deb
Checksums-Sha256:
942268f9aa153034e0da004104fa1c36eed44577ec3695cba0f6fd30b08ecfa5 2081 sqlite3_3.27.2-3~bpo9+1.dsc
3a1523226167126f646977ef1e4a5ec110b85380eaaab19ef082b48103d1594a 30460 sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
39bb69a36da98a76136e45119513896025fadad2e5b5a44c2fb0a2fe9b1f3dea 65614 lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
dd145d8e64f9c3e34d922cdbce24856d98a07c92b5fec3d019535d70d6502a7a 163916 lemon_3.27.2-3~bpo9+1_amd64.deb
5a037262762f60842909eccd81488a9cf1924a3902f4dde7a368f5e39365f92a 1445836 libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
e0e94c40c23db15a099135e475842fe749b02f3f2eaf43da93ab7f39217add90 638120 libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
a6ec97fef86c69ad4ca0ad25e26cd035b0e75d3bfd9ba6847f2cc71f5de49491 785378 libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
b6c55bae11883511864c43f71a23e91ca48b87c93368f3618affee60e9dd5c95 58998 libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
fa3a0c3f86057f4eec7e4b3c77b406de6312f6dec1334f2c5e680582d484eafc 129698 libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
c9ce40e0af26589dfdbd7fdfa351fa79ad9fb3b65ede26d6291e30939b13e02d 3171464 sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
d42f958b0c7b3575c79247f01c1e1941196ca1fe8d4feb712506b3ed7ae3764b 7020968 sqlite3-doc_3.27.2-3~bpo9+1_all.deb
1c6a4afe3db2502cce397e2a1c5f669f42fe9d46a25cf4f415b94449d70cb3cb 8406 sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
8fb9fbf5129e0b425d5a5d4cf5b4f8d40b235af42f5f10d2774c005727895898 911364 sqlite3_3.27.2-3~bpo9+1_amd64.deb
Files:
3702758b1b14a13cf5b5517b06e8903d 2081 devel optional sqlite3_3.27.2-3~bpo9+1.dsc
fac65dfe74010f73579333ed5dcb93c3 30460 devel optional sqlite3_3.27.2-3~bpo9+1.debian.tar.xz
f94ec408d5bdd7b637a43cb8b00fa515 65614 debug optional lemon-dbgsym_3.27.2-3~bpo9+1_amd64.deb
6d2b4ce6264d3b8c5824bd9e78555683 163916 devel optional lemon_3.27.2-3~bpo9+1_amd64.deb
b555733a1ddec39211f0d3780f11be21 1445836 debug optional libsqlite3-0-dbgsym_3.27.2-3~bpo9+1_amd64.deb
7ad941bbf733ffbffe659be3d43b731e 638120 libs optional libsqlite3-0_3.27.2-3~bpo9+1_amd64.deb
6cafc3ed5b3d3c32e517edb439b208ad 785378 libdevel optional libsqlite3-dev_3.27.2-3~bpo9+1_amd64.deb
5fa3d5351ea00b3fa8c79852111dbd4a 58998 debug optional libsqlite3-tcl-dbgsym_3.27.2-3~bpo9+1_amd64.deb
82dfada24af7fb8fc10ea8b5e04b0a6a 129698 interpreters optional libsqlite3-tcl_3.27.2-3~bpo9+1_amd64.deb
5a9b6039841d5a9980236828d0116732 3171464 debug optional sqlite3-dbgsym_3.27.2-3~bpo9+1_amd64.deb
25b3d99ef65c1f5138ac625d2019e48d 7020968 doc optional sqlite3-doc_3.27.2-3~bpo9+1_all.deb
fb0a2949211007a4ab65a6049f244ff9 8406 devel optional sqlite3_3.27.2-3~bpo9+1_amd64.buildinfo
f9a2de19b53e48d627c6e0e118031b45 911364 database optional sqlite3_3.27.2-3~bpo9+1_amd64.deb
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAl0CKJUACgkQj/HLbo2J
BZ/UxAf9HdlmYM43hv2oN/T30cTADydOJDLS/hgQPu9T1Jw+t5eXLJoLDWnGMLLV
8XuuRlTKboWhYeHiRjwwh0dVi/rwa4fo0jnRS+6chxc4aGpYvR/1tDL+H48YtDeQ
KE5sMua12cBnFBbOA5GvjFjVw98cuPAXcVYKPwfUXfbOw0gAZMeqKA5Ngp0NDjJj
/EMZKnDwkUaR9U8qjuzFzJ+SnUqxScjzSMPAeEOP/ZwUKKkMeN+Z2RZiN74rWRK0
cquDKuI16sQd0FlXLekooR1aiKQeWGD0hj3DwXH4n2hTrMs/wye666ujJ1/g/pvP
cMaOsWEm1GDrU1QdXQUV6MXXE7QOJw==
=QDw8
-----END PGP SIGNATURE-----
Reply to: