-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 May 2026 22:57:44 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: riscv64
Version: 17.10-0+deb13u1
Distribution: trixie-security
Urgency: medium
Maintainer: riscv64 Build Daemon (rv-osuosl-02) <buildd_riscv64-rv-osuosl-02@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Changes:
 postgresql-17 (17.10-0+deb13u1) trixie-security; urgency=medium
 .
   * New upstream version 17.10.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Properly quote subscription names in pg_createsubscriber
       (Nathan Bossart)
 .
       The given subscription name was inserted into SQL commands without
       quoting, so that SQL injection could be achieved in the (perhaps
       unlikely) case that the subscription name comes from an untrusted
       source.
 .
       The PostgreSQL Project thanks Yu Kunpeng for reporting this problem.
       (CVE-2026-6476)
 .
     + Properly quote object names in logical replication origin checks
       (Pavel Kohout)
 .
       ALTER SUBSCRIPTION ... REFRESH PUBLICATION interpolated schema and
       relation names into SQL commands without quoting them, allowing
       execution of arbitrary SQL on the publisher.
 .
       The PostgreSQL Project thanks Pavel Kohout for reporting this problem.
       (CVE-2026-6638)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 1c165b722f9b3c03759e37a941dfc96acad4d3e2 16740 libecpg-compat3-dbgsym_17.10-0+deb13u1_riscv64.deb
 a70a67b5514060b42691bd5a7368c666b7e2d9d4 20024 libecpg-compat3_17.10-0+deb13u1_riscv64.deb
 2fa125a86f44659aec509ca6726ffaf14a774b94 250292 libecpg-dev-dbgsym_17.10-0+deb13u1_riscv64.deb
 07bb82a03acd8ee4645b2daccae181b2d09c80b1 388324 libecpg-dev_17.10-0+deb13u1_riscv64.deb
 fe5c7ee7d1e98d3d5e38d2dcf8bbe4c59d5ea9fa 107416 libecpg6-dbgsym_17.10-0+deb13u1_riscv64.deb
 9392408d5f10efc605e6af3897389b5377f3a2cf 63720 libecpg6_17.10-0+deb13u1_riscv64.deb
 6ac92ceff87482f0dd7a0e9a283d5186cbe042a3 86208 libpgtypes3-dbgsym_17.10-0+deb13u1_riscv64.deb
 c5971b3822f83af3aa389eb75124d85892c359af 49532 libpgtypes3_17.10-0+deb13u1_riscv64.deb
 abda8f9aa4f7e39db45843306c1f39aeebb53a44 269800 libpq-dev_17.10-0+deb13u1_riscv64.deb
 42ca83356779b473386be2782064e096de8430d8 286660 libpq5-dbgsym_17.10-0+deb13u1_riscv64.deb
 574413b83c541eeaa5d0d1c3a622ef0a3cf992e0 230376 libpq5_17.10-0+deb13u1_riscv64.deb
 409d2495cf54f5b6dafb502b71a19008310607e2 17353936 postgresql-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 8dbc88a43026edebaf9ea6e3aea4bb49b2faad2a 16607 postgresql-17_17.10-0+deb13u1_riscv64-buildd.buildinfo
 4fb7c2ae3e131fb78e4dfb8dac1049c3c20621f5 6948432 postgresql-17_17.10-0+deb13u1_riscv64.deb
 96da123caea722ea9bc2cfd3a9407a40f4dc5d96 2900688 postgresql-client-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 ddfd489130f6483f096be83940b543706fd0c837 2037356 postgresql-client-17_17.10-0+deb13u1_riscv64.deb
 020bd0bd85bdd641727e40d33f6ba9af6b10d776 193288 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 988f2c5dfbcb115e161add1d3ee550576148bafb 72192 postgresql-plperl-17_17.10-0+deb13u1_riscv64.deb
 c1f37ae8a982600df25375c2c8af2276ffdb15d1 196780 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 fca8fa62d0806314a82e7ff1ae88057d7f52af12 92792 postgresql-plpython3-17_17.10-0+deb13u1_riscv64.deb
 a002572a42fa67980cebd59846641923af80da61 83452 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 093ef3e0310e0480db5487179b24b3a792198be7 44532 postgresql-pltcl-17_17.10-0+deb13u1_riscv64.deb
 957695608eace6b8945d361d929a6e9b3b6e365a 54228 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 7dd10bd8d5c452cb7772b6217a314572341281e5 1535144 postgresql-server-dev-17_17.10-0+deb13u1_riscv64.deb
Checksums-Sha256:
 b51803f0102eb090337c98fb7f25697d4dbe92a8c8f550d796886afa92230ea2 16740 libecpg-compat3-dbgsym_17.10-0+deb13u1_riscv64.deb
 6719053717af0551c9ddf3557440883d936cae33134814adee5b65125934bb17 20024 libecpg-compat3_17.10-0+deb13u1_riscv64.deb
 c4a3565c5393637ac7fbe08cdbe69f570cecc7db686f58847be2e56b31ac8461 250292 libecpg-dev-dbgsym_17.10-0+deb13u1_riscv64.deb
 8d59b48713dc14452dc8fd00031c13ed7393feeb74d6597de1525c43ab56a8a9 388324 libecpg-dev_17.10-0+deb13u1_riscv64.deb
 43cef90f5336b36ab9e713d98ad965c5708cdff6df56b233465554769b81d6c5 107416 libecpg6-dbgsym_17.10-0+deb13u1_riscv64.deb
 7e4d7bd1a01ac39bdad0ffbacb9afb1f9a8ab41f42c783edc45fcd14c15adc56 63720 libecpg6_17.10-0+deb13u1_riscv64.deb
 d0db963e9a7a86d6ce287d01b5f807e1456867bcef7d1493cb19d96a292378d3 86208 libpgtypes3-dbgsym_17.10-0+deb13u1_riscv64.deb
 89cb87bc3838605a0bb77220193ac916ddfeaf9d8d321639a4b78f52d63c2800 49532 libpgtypes3_17.10-0+deb13u1_riscv64.deb
 c13bbd1ff6624889d158a2d3ed4c1e56353d8df16230f92d45fef1043c1a68d8 269800 libpq-dev_17.10-0+deb13u1_riscv64.deb
 6b31eb7ae01de265f025f9c58b5d17bc0f7352b2346c5ac5c2b60895dd374cc9 286660 libpq5-dbgsym_17.10-0+deb13u1_riscv64.deb
 d4fce6cf7edfecfad59c55665bc1df81a4d69de999763650821a513bc225e5f0 230376 libpq5_17.10-0+deb13u1_riscv64.deb
 21dfd237d716584a941a80a607ad44eadf1e130be819099caf0eb06a9d34a72c 17353936 postgresql-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 479c2ca6f2268291f6676419ea170d6b5c8cbdfa80a3a4172a55411403e255af 16607 postgresql-17_17.10-0+deb13u1_riscv64-buildd.buildinfo
 0cf3b6ed941c2c6aed607161b9ada99308ec66f7902b2cf20c2bbb421ab1303e 6948432 postgresql-17_17.10-0+deb13u1_riscv64.deb
 f8d34e5f2830a9f054f594c29d1b973957bbc67cd5d5c7093ed3910922f436b0 2900688 postgresql-client-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 becb2e95838609cd9f0d3563a3ec72cfde1407fd05affc5fde8b47a4ac4924a6 2037356 postgresql-client-17_17.10-0+deb13u1_riscv64.deb
 10766bd18165e9eb9bc051894793cd5fb5def2f3dbbf03ec7ef0c726e67598a9 193288 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 75a169981e98fcccc83b3179fe83ad608f6cbaf40c1f1477cfaa8722b3df449b 72192 postgresql-plperl-17_17.10-0+deb13u1_riscv64.deb
 23e06eea609e001055665309c36c51ff1633e323a770f08479aaffa0ffb70dec 196780 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 4bf3d8b33a00f5edc4703796621226a5a67c0c12247bdcedf073f14e91990a7e 92792 postgresql-plpython3-17_17.10-0+deb13u1_riscv64.deb
 430db11aeb0d81c55da7a30d14894eb5fe5a82bb90b08836a03baf0f244e682c 83452 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 df2fb4d3e7ff5a5fd5d1ba131fb2afa2e3243894c0de9dbd1e1b034b6db720b0 44532 postgresql-pltcl-17_17.10-0+deb13u1_riscv64.deb
 35aa8ceb179f07154dc4f9e8b0981e6f430ba2674dffefc4c332dcae233c8598 54228 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 102ae62520adefa141970ae5f887e1b6270bd74893a5e8b8b143ac9f4558ed1b 1535144 postgresql-server-dev-17_17.10-0+deb13u1_riscv64.deb
Files:
 94eec7955149208e1a6628f218247916 16740 debug optional libecpg-compat3-dbgsym_17.10-0+deb13u1_riscv64.deb
 68a6c8b2c64d8cf087d6e4e37f980255 20024 libs optional libecpg-compat3_17.10-0+deb13u1_riscv64.deb
 46ed3d60be748c02d7166cb82233911a 250292 debug optional libecpg-dev-dbgsym_17.10-0+deb13u1_riscv64.deb
 8482502944b6035fb643f9f2bc619aca 388324 libdevel optional libecpg-dev_17.10-0+deb13u1_riscv64.deb
 649619d0a20acc294c80f2a9b730cbe3 107416 debug optional libecpg6-dbgsym_17.10-0+deb13u1_riscv64.deb
 d6a5d45f073271a94538d1a2ad47af4a 63720 libs optional libecpg6_17.10-0+deb13u1_riscv64.deb
 3fedc3741fcda62fd04eee0c517b686b 86208 debug optional libpgtypes3-dbgsym_17.10-0+deb13u1_riscv64.deb
 c9c2a74578993c37ac51c0b9251c16dd 49532 libs optional libpgtypes3_17.10-0+deb13u1_riscv64.deb
 c001e6341775573f7819edb751d2d2d4 269800 libdevel optional libpq-dev_17.10-0+deb13u1_riscv64.deb
 8ae48be29ef86867cd3a05530488a56c 286660 debug optional libpq5-dbgsym_17.10-0+deb13u1_riscv64.deb
 1cd9139c14c30e329dcb5ec2ca7cc325 230376 libs optional libpq5_17.10-0+deb13u1_riscv64.deb
 6558e5a8cc7b96f1e982c99ed5534f4a 17353936 debug optional postgresql-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 0efd571ee88d7431597a780f095bce54 16607 database optional postgresql-17_17.10-0+deb13u1_riscv64-buildd.buildinfo
 650564a35b400cba3630114916f92fbd 6948432 database optional postgresql-17_17.10-0+deb13u1_riscv64.deb
 85aa296cf4b5fe1808dbb90059ffcae8 2900688 debug optional postgresql-client-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 fde7e7863a54eb6063026bb815605f6d 2037356 database optional postgresql-client-17_17.10-0+deb13u1_riscv64.deb
 a0fa5e41aed753001aa700b87ece50f0 193288 debug optional postgresql-plperl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 cc730854a4c3efe563689cfbf10476b0 72192 database optional postgresql-plperl-17_17.10-0+deb13u1_riscv64.deb
 a014a6be4d0f2ee7533cf511bb0713e6 196780 debug optional postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 8bb68cbd3c65f560f63465e776914cd7 92792 database optional postgresql-plpython3-17_17.10-0+deb13u1_riscv64.deb
 ef4b478f1e51ae7f760bd85237997601 83452 debug optional postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 64c5846a3e581d2254f15a7253da127c 44532 database optional postgresql-pltcl-17_17.10-0+deb13u1_riscv64.deb
 43ebef0d3f3731e9b1c249b6456c08b4 54228 debug optional postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_riscv64.deb
 cbd7b2415552282e2b12bc75b029a621 1535144 libdevel optional postgresql-server-dev-17_17.10-0+deb13u1_riscv64.deb

-----BEGIN PGP SIGNATURE-----
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=NIa7
-----END PGP SIGNATURE-----