-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 10 Feb 2026 11:26:19 +0100 Source: postgresql-17 Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym Architecture: ppc64el Version: 17.8-0+deb13u1 Distribution: trixie-security Urgency: medium Maintainer: ppc64el Build Daemon (ppc64el-conova-01) Changed-By: Christoph Berg Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 17 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql-17 - The World's Most Advanced Open Source Relational Database postgresql-client-17 - front-end programs for PostgreSQL 17 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming Changes: postgresql-17 (17.8-0+deb13u1) trixie-security; urgency=medium . * New upstream version 17.8. . + Guard against unexpected dimensions of oidvector/int2vector (Tom Lane) . These data types are expected to be 1-dimensional arrays containing no nulls, but there are cast pathways that permit violating those expectations. Add checks to some functions that were depending on those expectations without verifying them, and could misbehave in consequence. . The PostgreSQL Project thanks Altan Birler for reporting this problem. (CVE-2026-2003) . + Harden selectivity estimators against being attached to operators that accept unexpected data types (Tom Lane) . contrib/intarray contained a selectivity estimation function that could be abused for arbitrary code execution, because it did not check that its input was of the expected data type. Third-party extensions should check for similar hazards and add defenses using the technique intarray now uses. Since such extension fixes will take time, we now require superuser privilege to attach a non-built-in selectivity estimator to an operator. . The PostgreSQL Project thanks Daniel Firer, as part of zeroday.cloud, for reporting this problem. (CVE-2026-2004) . + Fix buffer overrun in contrib/pgcrypto's PGP decryption functions (Michael Paquier) . Decrypting a crafted message with an overlength session key caused a buffer overrun, with consequences as bad as arbitrary code execution. . The PostgreSQL Project thanks Team Xint Code, as part of zeroday.cloud, for reporting this problem. (CVE-2026-2005) . + Fix inadequate validation of multibyte character lengths (Thomas Munro, Noah Misch) . Assorted bugs allowed an attacker able to issue crafted SQL to overrun string buffers, with consequences as bad as arbitrary code execution. After these fixes, applications may observe invalid byte sequence for encoding errors when string functions process invalid text that has been stored in the database. . The PostgreSQL Project thanks Paul Gerste and Moritz Sanft, as part of zeroday.cloud, for reporting this problem. (CVE-2026-2006) Checksums-Sha1: 845919c022f6499e7acfe4bb6d398521d7130560 17768 libecpg-compat3-dbgsym_17.8-0+deb13u1_ppc64el.deb e18c66a6150c13a4db511d559fb59e88a356ec1b 18856 libecpg-compat3_17.8-0+deb13u1_ppc64el.deb 4591c1b7ae9c8ee0cab7545a8b0bb16fa85f756c 237980 libecpg-dev-dbgsym_17.8-0+deb13u1_ppc64el.deb d4933774fe0330173a34c4f95a4116cab7e2d2ca 307184 libecpg-dev_17.8-0+deb13u1_ppc64el.deb 3264a829778b9b12fe0fbb7cec271ed556013c81 116452 libecpg6-dbgsym_17.8-0+deb13u1_ppc64el.deb 0774b073183c6c17a995ae6af08b78ceb778bccb 65996 libecpg6_17.8-0+deb13u1_ppc64el.deb a472fe5a13a58e9553b766f3c1a86ffe11eae384 94548 libpgtypes3-dbgsym_17.8-0+deb13u1_ppc64el.deb 8aea733e6e0edaa6f96cba2b4dd80024ed950704 49648 libpgtypes3_17.8-0+deb13u1_ppc64el.deb 133786482c120fb8576b94ddb1a263b63ad1aedc 165008 libpq-dev_17.8-0+deb13u1_ppc64el.deb 7e2d77d7d624189bf1fe9daa026e3f0e97ec38fc 309788 libpq5-dbgsym_17.8-0+deb13u1_ppc64el.deb f758167a47b4478159dfce9db2e3a5e32fd456e2 240100 libpq5_17.8-0+deb13u1_ppc64el.deb d869116c3ca0b7cbeefaa5d57678dce267fa9009 19437316 postgresql-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 8476caf0fb4483fd9fb5ca5edd73dc3bd5f82795 17300 postgresql-17_17.8-0+deb13u1_ppc64el-buildd.buildinfo 2c5833ca8f508987fce36f0465f7f2da4bf2945d 16795324 postgresql-17_17.8-0+deb13u1_ppc64el.deb df17051dacac0495423177149afd144017e9bb44 2885704 postgresql-client-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 7912c0039ddc1679303bc50b9cef2641fad7ec00 2069264 postgresql-client-17_17.8-0+deb13u1_ppc64el.deb 2df684a835c5279e07c7aba0832e4b2be3a6e53f 202212 postgresql-plperl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 955ca846bb4f99482fc601f0f7170370b197a123 87280 postgresql-plperl-17_17.8-0+deb13u1_ppc64el.deb 36e438fad76996992dbe7c22d15bbb2ecf1024d1 200700 postgresql-plpython3-17-dbgsym_17.8-0+deb13u1_ppc64el.deb c40d7863c1294c706e47fa00dd0ea13d1ced48a0 110724 postgresql-plpython3-17_17.8-0+deb13u1_ppc64el.deb 85f23aebcee751f002fbf68b2d0ac9f0a16cba58 85332 postgresql-pltcl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 23be22a944d60640925d1d967a91ea60b759afef 43584 postgresql-pltcl-17_17.8-0+deb13u1_ppc64el.deb 72ea4089a07eea8c60e5968bb91f3ec0c74d5a7e 56344 postgresql-server-dev-17-dbgsym_17.8-0+deb13u1_ppc64el.deb f18647499cc69826b25368bb6c5c3981ab53e49d 1335740 postgresql-server-dev-17_17.8-0+deb13u1_ppc64el.deb Checksums-Sha256: f7869c319ffb52330cbbc34465de9171acd430784ff45d15415019fdfb7d5ff6 17768 libecpg-compat3-dbgsym_17.8-0+deb13u1_ppc64el.deb 383bc6f3f431f15c5fdb9698f2f01aef8f0f0e5d6a0cb8d16b66273d151e2e3d 18856 libecpg-compat3_17.8-0+deb13u1_ppc64el.deb 5efe87e05d9f08ab40093c4fcb754e39dd194c95a6888109f3976d87ed173ad5 237980 libecpg-dev-dbgsym_17.8-0+deb13u1_ppc64el.deb 9ac58ada95f53fefd7a1e5846970db8724df0b38e6692f8b6af813e243de54e3 307184 libecpg-dev_17.8-0+deb13u1_ppc64el.deb 22898560f888f36b6edc6bcb01298da55090f3a790020111401c0a3f14e2cd7e 116452 libecpg6-dbgsym_17.8-0+deb13u1_ppc64el.deb f6077bf1152dc67dbd0d57d54c5f9ad914869fff03d28a3509b546b72e95e860 65996 libecpg6_17.8-0+deb13u1_ppc64el.deb 5904a9453593bac583c87e42986ae1c8c84f6e69b6f6b47cb1f2b9d3cabfeac7 94548 libpgtypes3-dbgsym_17.8-0+deb13u1_ppc64el.deb d6c3876bf2d4e3b4554ef23cbde863a5d2913cb775c07b8351ca8faab5ebc2b1 49648 libpgtypes3_17.8-0+deb13u1_ppc64el.deb 5be0edaf4a078069d88d16346684be26822a068d5feec6a735623b68a2e18135 165008 libpq-dev_17.8-0+deb13u1_ppc64el.deb 31f8cda499ed0f8aaa3b6165f576351b04770b56377576f14b232cf499dcaf7e 309788 libpq5-dbgsym_17.8-0+deb13u1_ppc64el.deb b1e7c8179997405dc02df5bab46c09f2ce7e6c7c9d1364d4b6b5862560160132 240100 libpq5_17.8-0+deb13u1_ppc64el.deb c96622204b3331a355265f4a51e6b792d63c7ef9c251a1337d9086ea4c12e54c 19437316 postgresql-17-dbgsym_17.8-0+deb13u1_ppc64el.deb ef2fe24080da3625e9158eb9e738d8eefb40751a0e97e70b2e8d9940be60a695 17300 postgresql-17_17.8-0+deb13u1_ppc64el-buildd.buildinfo 716fed249be2f922db424db9eb873437827ab81594d18fb3eafaac72642d1167 16795324 postgresql-17_17.8-0+deb13u1_ppc64el.deb 0bc68a57fca493443074460af93c1e2b04f7f9cdf4a4f447f8c25a8c4505ee51 2885704 postgresql-client-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 87725cf5e21bd4294bd70330c9eb9fbea6bc3dcad68c3df68f98a49fd6eac8ca 2069264 postgresql-client-17_17.8-0+deb13u1_ppc64el.deb f125c92e0dfcbd074b57d61b6d1921ab25727441136635428e86bf6a513d7a46 202212 postgresql-plperl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 9c54152562f85ddc77b03a0de92aba1ab45169cb1530e845742316e83a1e8a66 87280 postgresql-plperl-17_17.8-0+deb13u1_ppc64el.deb 04d82f33a2e859655b6fc3a924dccf58a2c997752075042032b0e9a5d61a1d3d 200700 postgresql-plpython3-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 9f6c873e5e507d5bbdb612dd1f6f6b554c513a4473f47b5cd4d61d623f491aaa 110724 postgresql-plpython3-17_17.8-0+deb13u1_ppc64el.deb 69ca232a2fcae1dbc2bd5b1f4739e531edce3fbe894232dcc485ae17b4366fe2 85332 postgresql-pltcl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb fee246c9c4a1171782cb2394e3b26c3d7641f52c230db60227d7994df24448b0 43584 postgresql-pltcl-17_17.8-0+deb13u1_ppc64el.deb 3c559683a1bf17189506f0c8e85bb837c3c4086e077611f6110cc55095a89d86 56344 postgresql-server-dev-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 7d0af0186e9ef928496ba9eb52443a254939c1d64d9d5b38ad392ecaf93b9833 1335740 postgresql-server-dev-17_17.8-0+deb13u1_ppc64el.deb Files: 2e88bb0fe1647da07c3b7608d4085972 17768 debug optional libecpg-compat3-dbgsym_17.8-0+deb13u1_ppc64el.deb 3014b3eb67daf73dad01df88f5596945 18856 libs optional libecpg-compat3_17.8-0+deb13u1_ppc64el.deb 743bb211379ff41ba5ac01a5d062bdc5 237980 debug optional libecpg-dev-dbgsym_17.8-0+deb13u1_ppc64el.deb 94c949feab3a43a6606a0e7f9dcef45f 307184 libdevel optional libecpg-dev_17.8-0+deb13u1_ppc64el.deb e128b22690c5fe395afcbde5ebe602bf 116452 debug optional libecpg6-dbgsym_17.8-0+deb13u1_ppc64el.deb 75d094a72b72914084d4d4e0f4a8c1d3 65996 libs optional libecpg6_17.8-0+deb13u1_ppc64el.deb f831d9fe296f803147773682ab452b7a 94548 debug optional libpgtypes3-dbgsym_17.8-0+deb13u1_ppc64el.deb 30b79027141a11ba218ac14e2efab592 49648 libs optional libpgtypes3_17.8-0+deb13u1_ppc64el.deb 369a42b523d9a092d58a5e930aac37ee 165008 libdevel optional libpq-dev_17.8-0+deb13u1_ppc64el.deb 5122bcd76db74fdc7c84937155475a08 309788 debug optional libpq5-dbgsym_17.8-0+deb13u1_ppc64el.deb 7af27776440fd4b503ee97c74e4c19e9 240100 libs optional libpq5_17.8-0+deb13u1_ppc64el.deb 8da86c40b3712e7a32911b2b0af4d737 19437316 debug optional postgresql-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 530abff4c8214f72812334980f68484c 17300 database optional postgresql-17_17.8-0+deb13u1_ppc64el-buildd.buildinfo 032e232f1d374634b4c97ac6e2767816 16795324 database optional postgresql-17_17.8-0+deb13u1_ppc64el.deb 28dcf35f3c6fa3568ecadc78ed5601d5 2885704 debug optional postgresql-client-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 1f77ebffdd7be866c09c186dfd2ee6f0 2069264 database optional postgresql-client-17_17.8-0+deb13u1_ppc64el.deb f83237505249f9c192740c09d496df71 202212 debug optional postgresql-plperl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 62265da0b7a032113c7d6f13a0b93944 87280 database optional postgresql-plperl-17_17.8-0+deb13u1_ppc64el.deb 190b46a3468cb1c391672b1fc1c57b8b 200700 debug optional postgresql-plpython3-17-dbgsym_17.8-0+deb13u1_ppc64el.deb a8033647a83f16a5749de15975e49792 110724 database optional postgresql-plpython3-17_17.8-0+deb13u1_ppc64el.deb 54d6a29b636756e662ebe85d00bf0ac1 85332 debug optional postgresql-pltcl-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 9eb545993a5c2b1b95d6de87e2395043 43584 database optional postgresql-pltcl-17_17.8-0+deb13u1_ppc64el.deb e5ab4692c0e27f107919a744dcb2da6d 56344 debug optional postgresql-server-dev-17-dbgsym_17.8-0+deb13u1_ppc64el.deb 1582ae7392300bd536de44ffd39d5212 1335740 libdevel optional postgresql-server-dev-17_17.8-0+deb13u1_ppc64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEDoRc43uRWMOoIqIgDNLUPhbmg7MFAmmLdZAACgkQDNLUPhbm g7ON6xAAr0/zzuCFUfEtGkPQvh1p2n96z33QWQwUQZqIXdAdm5HoPH0Oo8bRlyzt W3W/Ug34PLeHhGm4gxpTxoydDlexyAKxPxUZO3d53YNFWvMcxvgznTpnimZ0HEY9 Z651HL62hT2QXwfpFcWPbzwbhsU88Pzx9q6/0PX6YAETeX+LopTzmTMcMwsXDK/Q 07lC/tSgJ8VjLKFeD55NicpFXZrrxQgLBkSWTOHBnz363C5NDduCsMkOSKH+hH2p l3bNS59tda7i5+JoXkb3cWeikJYbd30zDWYtvsoKMLli3GXkAaRN/NGU922WK7i/ SU8KK1J5IxraKZRMlnQltLhCFO5oMRZM+tefjccJVlLm1D0YU9660G+X98T9R8R7 lT4h93v9xwludYltWQOCAqWq9SZjhoS0ESaSqLi7QzaT93jTaLaLATwKaXhvWVvW F/vZecNXINWTWgvGp185PXDRZ3NTCBMgUfRLnXThD3Yjfd5lSrcsMrJ8QJmzfqIu MIl4yPmrzCkKVctxKiKAMu+/L5o/1D5j2Y4KeRGsmQCj4y5Os54cYL8PtK+OU7R4 eC1fRm97nAN3xT1ehTzXA/6dLHYuXWe7D2ygEAhj4cQZsKLMhp48CZ7IKXrGU/ch pkVt9ciXHObI17sB1ZW4h9T/fpV7a9r9l0RiVeOc5dphGPDtU+g= =2MwO -----END PGP SIGNATURE-----