-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 May 2026 22:57:44 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: armel
Version: 17.10-0+deb13u1
Distribution: trixie-security
Urgency: medium
Maintainer: armel Build Daemon (arm-conova-02) <buildd_arm64-arm-conova-02@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Changes:
 postgresql-17 (17.10-0+deb13u1) trixie-security; urgency=medium
 .
   * New upstream version 17.10.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Properly quote subscription names in pg_createsubscriber
       (Nathan Bossart)
 .
       The given subscription name was inserted into SQL commands without
       quoting, so that SQL injection could be achieved in the (perhaps
       unlikely) case that the subscription name comes from an untrusted
       source.
 .
       The PostgreSQL Project thanks Yu Kunpeng for reporting this problem.
       (CVE-2026-6476)
 .
     + Properly quote object names in logical replication origin checks
       (Pavel Kohout)
 .
       ALTER SUBSCRIPTION ... REFRESH PUBLICATION interpolated schema and
       relation names into SQL commands without quoting them, allowing
       execution of arbitrary SQL on the publisher.
 .
       The PostgreSQL Project thanks Pavel Kohout for reporting this problem.
       (CVE-2026-6638)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 bc4b18d8a4b23aa40d86926d7ceaa8eb15b0dca6 16656 libecpg-compat3-dbgsym_17.10-0+deb13u1_armel.deb
 2395c3f3445effc72478b6804852b81be34a205b 18716 libecpg-compat3_17.10-0+deb13u1_armel.deb
 ce25a35cdf9f411723eb2c33d9dd4f5f9a6aa325 251684 libecpg-dev-dbgsym_17.10-0+deb13u1_armel.deb
 33f47fce8c79c9e2fa2bc548d15e8a1257aed7f3 285456 libecpg-dev_17.10-0+deb13u1_armel.deb
 61b8f6dca139e3a1338eff781d1f80e4615453ae 112976 libecpg6-dbgsym_17.10-0+deb13u1_armel.deb
 7e7acccd07160a6449eb5c54c107261fe480c895 58756 libecpg6_17.10-0+deb13u1_armel.deb
 68aa1d7689334ab10426bdc6033e8331ab0ad26f 90780 libpgtypes3-dbgsym_17.10-0+deb13u1_armel.deb
 80a3f6721a81ec6f7eec9b438e6c2fbabc73a754 44896 libpgtypes3_17.10-0+deb13u1_armel.deb
 0eda98cb2d78ef10635524d024e3eb206b00bf37 141984 libpq-dev_17.10-0+deb13u1_armel.deb
 d0ecedd4649d0a2af50ccfb5132125ad83f0a6c9 292296 libpq5-dbgsym_17.10-0+deb13u1_armel.deb
 778303e88b741058f1569e0477837dafe81df94c 211824 libpq5_17.10-0+deb13u1_armel.deb
 8dba7ac13ad0c06e0d362efb03d73bbf4f34e8a4 18838200 postgresql-17-dbgsym_17.10-0+deb13u1_armel.deb
 b0285fce0c8c9c2f7785085539a95d74345c5432 17204 postgresql-17_17.10-0+deb13u1_armel-buildd.buildinfo
 438e4e38dd47f05e0b6f0b47318e1144c38b579b 15924076 postgresql-17_17.10-0+deb13u1_armel.deb
 473f3e0d3146ca0c37b704b59e67be71b5f7623f 2821384 postgresql-client-17-dbgsym_17.10-0+deb13u1_armel.deb
 2da2b7eb560e91d8433ba881186e6553a8d69992 1928236 postgresql-client-17_17.10-0+deb13u1_armel.deb
 9b7f8ab9595ae45963c681da79c95b391b1ff5ed 197096 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armel.deb
 da7f95600e379baa89915ee25f3c7ebedb679ce7 84452 postgresql-plperl-17_17.10-0+deb13u1_armel.deb
 8c744474fc8d30d5af0afd5eef86d2b7e23a2f25 197556 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armel.deb
 26549f3fd6ac47f509507c03524af80b14a945f9 108136 postgresql-plpython3-17_17.10-0+deb13u1_armel.deb
 1322e7eaff7b8ae3640da6adfe8f28d2065a7f14 82700 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armel.deb
 2b385c89a132186b8a516943400252e9a6ad6422 43140 postgresql-pltcl-17_17.10-0+deb13u1_armel.deb
 c43d5513dbde8dcb0609aab78b89b0c1f79fe252 56380 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armel.deb
 abc34abd28717da443b5633c37258d2b97cd19ed 1305976 postgresql-server-dev-17_17.10-0+deb13u1_armel.deb
Checksums-Sha256:
 862aa8004bea4919a7bb86cf5d69f69f10734776767188647da3d890d5e7fad5 16656 libecpg-compat3-dbgsym_17.10-0+deb13u1_armel.deb
 b17be09a8926279c7fc043a271fd83839bbf1566dac0cfc4c7e13eae81f5c9e3 18716 libecpg-compat3_17.10-0+deb13u1_armel.deb
 bc4b3e3f6137e24decef0058689c395d4e5476f8102e942814aae11d394fa342 251684 libecpg-dev-dbgsym_17.10-0+deb13u1_armel.deb
 ebac50b10f44c86641b520ce6c065c171989745b31fa4deda8e79508c3c43223 285456 libecpg-dev_17.10-0+deb13u1_armel.deb
 12dea3076b0cfb9a7478f85d29e3394cf33c9f622e8d2697cf5882884a5ab7bc 112976 libecpg6-dbgsym_17.10-0+deb13u1_armel.deb
 5429fd29b7fc998f6c3b1f8bff1ba3cf1a70ef6a9e8cf076c6064f2d8356f241 58756 libecpg6_17.10-0+deb13u1_armel.deb
 d4c973278eb60c4e3b8754add2e7b77e6233f70c88421e8c8b0a489b316ee22e 90780 libpgtypes3-dbgsym_17.10-0+deb13u1_armel.deb
 91a84fdbd4f5207483a982786faa0d8397fff01817f2bb7dce9f1a83af1f2b63 44896 libpgtypes3_17.10-0+deb13u1_armel.deb
 6261c6fd793a8d4405c658966b09d60c015ab46972a7e3a783ae7c5b03e73d77 141984 libpq-dev_17.10-0+deb13u1_armel.deb
 c89bcbb2dc4178912c0240143975d07b13d30dc6ce0183b6c749437a70dd1b4c 292296 libpq5-dbgsym_17.10-0+deb13u1_armel.deb
 93a38bfea63cd1a383919cea61c3443bee6bbf53099d42b03634c91c4dae93eb 211824 libpq5_17.10-0+deb13u1_armel.deb
 c11a46dc932e5936dd20ca4939e479fd151f5cbcec18d553ed08290d6bd88707 18838200 postgresql-17-dbgsym_17.10-0+deb13u1_armel.deb
 6a468fb4cd43598bad2bf38c6d694acaffeb41731fffb7e9dd739eae955cc1e7 17204 postgresql-17_17.10-0+deb13u1_armel-buildd.buildinfo
 3b4ab3ab4aa260a8daad49adba0eb40c183d281c6799ffdd876d256ea327e24f 15924076 postgresql-17_17.10-0+deb13u1_armel.deb
 0b6094b7aba7b0d8de012ff9de383d2de5dd73e64d8839219700745478d864db 2821384 postgresql-client-17-dbgsym_17.10-0+deb13u1_armel.deb
 b83804b198b2f90130791250d1b98cff486bb37cc95d9bfefa2f8067aa276fbb 1928236 postgresql-client-17_17.10-0+deb13u1_armel.deb
 d53a94b0c1320f9da6e6fddca033f953a5be0591c3b4d091d407913079e34c76 197096 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armel.deb
 561c7b60f6108f8e03e4829218e59bbc4b3a79bf6c2e25c0c12287af93bb2152 84452 postgresql-plperl-17_17.10-0+deb13u1_armel.deb
 3ddefb1918f4218ce7989f1acad60c4c0403544d767a51a77712d8070982b951 197556 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armel.deb
 45def06212e6ff88c2e4406c25a84ee6b4ebc7261d983859d9450115e0d501be 108136 postgresql-plpython3-17_17.10-0+deb13u1_armel.deb
 121fa649cdc74f3a1b5777e2e0a6a96a690fc6345f5f6dbbd1982b34cf02795a 82700 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armel.deb
 240f840712201e82a8906bfa29147e53bd1c5a175a222a5b38e69558e1069088 43140 postgresql-pltcl-17_17.10-0+deb13u1_armel.deb
 00ba103f48195dbe5ec51365c2ab9dd190c8c7479425d672675cd2cefe5ec5cc 56380 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armel.deb
 d4f876f9c698a069ccea67cdccb7bcb72fe33d099c1d3b72ba5d160d3425d68b 1305976 postgresql-server-dev-17_17.10-0+deb13u1_armel.deb
Files:
 f5e04baf6c50575fa80ed0a33b15b0ab 16656 debug optional libecpg-compat3-dbgsym_17.10-0+deb13u1_armel.deb
 e6a81cb88671ba74ffa82e1ce82ef14b 18716 libs optional libecpg-compat3_17.10-0+deb13u1_armel.deb
 0b7b5eed8596a056a62153fd467c01bc 251684 debug optional libecpg-dev-dbgsym_17.10-0+deb13u1_armel.deb
 05dd4b15bfaa5d26c1adb685ebab2fcf 285456 libdevel optional libecpg-dev_17.10-0+deb13u1_armel.deb
 b04e94b88dce27a65a4d92ba0d214b9d 112976 debug optional libecpg6-dbgsym_17.10-0+deb13u1_armel.deb
 f22b2e60a9d8ddf0fc47e080e293de4b 58756 libs optional libecpg6_17.10-0+deb13u1_armel.deb
 b4fc18edf78b49f06d4a06c59914884c 90780 debug optional libpgtypes3-dbgsym_17.10-0+deb13u1_armel.deb
 9b60bbc60e2cffbbdbc898463032c9d4 44896 libs optional libpgtypes3_17.10-0+deb13u1_armel.deb
 4e38c35cccef2f253afedbfa54f780a9 141984 libdevel optional libpq-dev_17.10-0+deb13u1_armel.deb
 8232a4a85f4ee4de78e3a2ee743fe097 292296 debug optional libpq5-dbgsym_17.10-0+deb13u1_armel.deb
 c8510209da0ce283ab4c9986acf11475 211824 libs optional libpq5_17.10-0+deb13u1_armel.deb
 7e15d4cf97da9e65cfa0bdcfc388546c 18838200 debug optional postgresql-17-dbgsym_17.10-0+deb13u1_armel.deb
 717836841077d6151a31812fae378306 17204 database optional postgresql-17_17.10-0+deb13u1_armel-buildd.buildinfo
 5c479a895bbe9c75abacdf6f61bedc1c 15924076 database optional postgresql-17_17.10-0+deb13u1_armel.deb
 f2a779a47fa9316b96c98620ae2a0134 2821384 debug optional postgresql-client-17-dbgsym_17.10-0+deb13u1_armel.deb
 74a23b045998664486320a04ce4745fe 1928236 database optional postgresql-client-17_17.10-0+deb13u1_armel.deb
 5cde78a4cad67f9a1164d3bf895f62ba 197096 debug optional postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armel.deb
 31c842e609f94f944bc98628cae1eba2 84452 database optional postgresql-plperl-17_17.10-0+deb13u1_armel.deb
 be0f57127bee6fd3b8e22df35f14023d 197556 debug optional postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armel.deb
 8c2c9b7b3c6c0fe1bf6d659420ad708a 108136 database optional postgresql-plpython3-17_17.10-0+deb13u1_armel.deb
 e3d60cf9cc2ee89eddca2f40870b1ec6 82700 debug optional postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armel.deb
 49f7772a822e105ed72ef93ec3e47e3f 43140 database optional postgresql-pltcl-17_17.10-0+deb13u1_armel.deb
 51335474b42a4222c76903ece31f52ec 56380 debug optional postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armel.deb
 cb9b534e52c909558c112e6cd2027845 1305976 libdevel optional postgresql-server-dev-17_17.10-0+deb13u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=bYVA
-----END PGP SIGNATURE-----