Bug#1106048: unblock: postgresql-17/17.5-1

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1106048: unblock: postgresql-17/17.5-1
From: Christoph Berg <myon@debian.org>
Date: Mon, 19 May 2025 11:20:28 +0200
Message-id: <[🔎] aCr33F-JTQpozgNV@msg.df7cb.de>
Reply-to: Christoph Berg <myon@debian.org>, 1106048@bugs.debian.org

Package: release.debian.org
Severity: normal
X-Debbugs-Cc: postgresql-17@packages.debian.org
Control: affects -1 + src:postgresql-17
User: release.debian.org@packages.debian.org
Usertags: unblock

Please unblock package postgresql-17

[ Reason ]
New upstream version, fixes CVE-2025-4207.

[ Tests ]
Extensive upstream and postgresql-common tests.

unblock postgresql-17/17.5-1

postgresql-17 (17.5-1) unstable; urgency=medium

  * New upstream version 17.5.

    + Avoid one-byte buffer overread when examining invalidly-encoded strings
      that are claimed to be in GB18030 encoding (Noah Misch, Andres Freund)

      While unlikely, a SIGSEGV crash could occur if an incomplete multibyte
      character appeared at the end of memory.  This was possible both in the
      server and in libpq-using applications. (CVE-2025-4207)

 -- Christoph Berg <myon@debian.org>  Tue, 06 May 2025 17:55:19 +0200

Christoph

Reply to:

Follow-Ups:
- Processed: unblock: postgresql-17/17.5-1
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>
- Bug#1106048: marked as done (unblock: postgresql-17/17.5-1)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Prev by Date: Processed: unblock: postgresql-17/17.5-1
Next by Date: Processed: unblock: postgresql-common/278
Previous by thread: Bug#1106047: marked as done (unblock: svxlink/24.02-5)
Next by thread: Processed: unblock: postgresql-17/17.5-1
Index(es):
- Date
- Thread