-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 May 2026 22:57:44 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: armhf
Version: 17.10-0+deb13u1
Distribution: trixie-security
Urgency: medium
Maintainer: armhf Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Changes:
 postgresql-17 (17.10-0+deb13u1) trixie-security; urgency=medium
 .
   * New upstream version 17.10.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Properly quote subscription names in pg_createsubscriber
       (Nathan Bossart)
 .
       The given subscription name was inserted into SQL commands without
       quoting, so that SQL injection could be achieved in the (perhaps
       unlikely) case that the subscription name comes from an untrusted
       source.
 .
       The PostgreSQL Project thanks Yu Kunpeng for reporting this problem.
       (CVE-2026-6476)
 .
     + Properly quote object names in logical replication origin checks
       (Pavel Kohout)
 .
       ALTER SUBSCRIPTION ... REFRESH PUBLICATION interpolated schema and
       relation names into SQL commands without quoting them, allowing
       execution of arbitrary SQL on the publisher.
 .
       The PostgreSQL Project thanks Pavel Kohout for reporting this problem.
       (CVE-2026-6638)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 61aa7ec85b11a1645f52bc10d0c22c0907c2d5cd 16916 libecpg-compat3-dbgsym_17.10-0+deb13u1_armhf.deb
 2d738528cf9eb5ef043c0fe1cbb318d3b1a14e38 18776 libecpg-compat3_17.10-0+deb13u1_armhf.deb
 98e881d3ec26d18535d7d9aeb60f7160b6354d23 251032 libecpg-dev-dbgsym_17.10-0+deb13u1_armhf.deb
 2ba39a12264a746c62d06668e6dc452c2940b178 285144 libecpg-dev_17.10-0+deb13u1_armhf.deb
 5d8253b57769850716382e3913934c2b553f2026 114124 libecpg6-dbgsym_17.10-0+deb13u1_armhf.deb
 dcfa1a769efa3865985c8e586bab90efb20f050a 57428 libecpg6_17.10-0+deb13u1_armhf.deb
 cea09546d4720e0da0b99ecf6043a62d9f2206a7 91344 libpgtypes3-dbgsym_17.10-0+deb13u1_armhf.deb
 ad70c5f21962d03a66e7e6021846afb25d7a622d 43884 libpgtypes3_17.10-0+deb13u1_armhf.deb
 0e9be7051b9d230ff11a24c41ab2c7625c641a4e 141952 libpq-dev_17.10-0+deb13u1_armhf.deb
 b779104ab018d60704ea3d9a584f19c35bd220e5 297376 libpq5-dbgsym_17.10-0+deb13u1_armhf.deb
 65c2a0afade2fc0c8cac9ce060b785cb0c7b77d3 212476 libpq5_17.10-0+deb13u1_armhf.deb
 2d16102371665793a1a9226b3e8dee8a48127b15 18940284 postgresql-17-dbgsym_17.10-0+deb13u1_armhf.deb
 f2c23bffa917a786406587accaf39b5c50592e64 17218 postgresql-17_17.10-0+deb13u1_armhf-buildd.buildinfo
 443185131d9975ec5b0569db51eee8f6c4722609 15921320 postgresql-17_17.10-0+deb13u1_armhf.deb
 7e92433fe3cd526fce48b53dac7f13db485e2c86 2847684 postgresql-client-17-dbgsym_17.10-0+deb13u1_armhf.deb
 eee495e1fa035ef93fa118690bb2081747225da4 1943960 postgresql-client-17_17.10-0+deb13u1_armhf.deb
 bf5e9a452120d79e43633496f98e0c39f3bb7353 196736 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 1b3548c7318bbbb4f80d770450faa779c7f0875c 84560 postgresql-plperl-17_17.10-0+deb13u1_armhf.deb
 62da50211e78290017c0bbb12919c740bf7ee2c1 197912 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armhf.deb
 bcfe17e1ca077bc529c347813941b7786a8cd495 106780 postgresql-plpython3-17_17.10-0+deb13u1_armhf.deb
 08b9cf33d7191935aff0c8b83912d14d01e3dbdd 82908 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 a9e58bcf76a3ee20391c47e92caa4c22628c5495 43212 postgresql-pltcl-17_17.10-0+deb13u1_armhf.deb
 c59c19072136e5abc257c8df0621928b889e55e9 56232 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armhf.deb
 9222d1ed218aa0ef15ec034944dc9a9fb6d39444 1303352 postgresql-server-dev-17_17.10-0+deb13u1_armhf.deb
Checksums-Sha256:
 9cb538cf8f0f8c152e2f25d8c3787c0673f6b3ec1ad38bf20c6a6d4658eaa715 16916 libecpg-compat3-dbgsym_17.10-0+deb13u1_armhf.deb
 b26246cbad1b31a0ed0862b948592089d0a3630880906a46825ae9d842f01bf4 18776 libecpg-compat3_17.10-0+deb13u1_armhf.deb
 94126586d4fa627b940ec2d19874da197e6fd6a2cb9e7bf5a005264a198e71a8 251032 libecpg-dev-dbgsym_17.10-0+deb13u1_armhf.deb
 a055840eb9f62ed8e0fc5460ce79b6c9e4c64d7e10919cf3812dec87bde0420a 285144 libecpg-dev_17.10-0+deb13u1_armhf.deb
 eb5efe73dbd64655b23b71304cd4179b1051e69fb6e5b22f3e1c87ffa064e291 114124 libecpg6-dbgsym_17.10-0+deb13u1_armhf.deb
 fb7115333fc250e65d276b30364bb9c942d3f1bf0a178c412501e416e6c3f897 57428 libecpg6_17.10-0+deb13u1_armhf.deb
 72cdb3571b10966ac86e8bd0311722ace734a7ca17575e4935e9524aa8629563 91344 libpgtypes3-dbgsym_17.10-0+deb13u1_armhf.deb
 899d61facd5802832972f91fb2cd9667f886fdf75cacdc5bc20d3655de195b2f 43884 libpgtypes3_17.10-0+deb13u1_armhf.deb
 020c7846d5f386f277549b86cfe6cb3d5bcf9ef1a4b25d6995338be9c9675ba7 141952 libpq-dev_17.10-0+deb13u1_armhf.deb
 5ee3abbce0624257864b45857a2e2a45517c967035519cc0e944832af9e4cd93 297376 libpq5-dbgsym_17.10-0+deb13u1_armhf.deb
 641b230b02aaf3f65ba9c2cdd280ff57c06609251bc3cd89d04d736ddd112a44 212476 libpq5_17.10-0+deb13u1_armhf.deb
 d0dcb98668173f216b7562af84037d3412a832ad9138a5ba7fa94c1b7a789230 18940284 postgresql-17-dbgsym_17.10-0+deb13u1_armhf.deb
 11523edf13ef4d913b0cbb06ea54f24bc22ff2ca8f2641c2279c20dab6061f4d 17218 postgresql-17_17.10-0+deb13u1_armhf-buildd.buildinfo
 5021e68b61534aaaae21cd47ba255af3b04df4df9df36cdd5b1a4cc358b6dcaa 15921320 postgresql-17_17.10-0+deb13u1_armhf.deb
 6fbcbf630ed6c2be4820dc2f95147349a740cd66833423dd83a3aac3db95b515 2847684 postgresql-client-17-dbgsym_17.10-0+deb13u1_armhf.deb
 ff6dba5ad84809680592f1b9212a356c7a37b688aeaca7841610f4bebd0be876 1943960 postgresql-client-17_17.10-0+deb13u1_armhf.deb
 0390f40ec0309e5165b5f38456f44d0b9c53bccab52d4628cdc11d0aa3496196 196736 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 82e0974e33016a5006c2aac22d2fb21599e93922da51d142b41b8c8dc27d69bf 84560 postgresql-plperl-17_17.10-0+deb13u1_armhf.deb
 7646bcc14194b66a49958c5aee7caa8ab6327ca446fee698c5a4d0687292c865 197912 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armhf.deb
 1045872664c823258dc9ca430ab6b0059e3af8f38b8d05cb23efedb804833fae 106780 postgresql-plpython3-17_17.10-0+deb13u1_armhf.deb
 6f745f86c725de697b3547da1268861d796f8c0055ff52599f54bfb26df35b48 82908 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 8074730f97bbfd6f75ca6973423b910d30d684e80e30cd4c0b3bd1daf068d20c 43212 postgresql-pltcl-17_17.10-0+deb13u1_armhf.deb
 4f21a17d2f75718d8489deeb704d29a02a438eb2af197f79f1a272d5e8c479f7 56232 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armhf.deb
 43c31a4cf5b53d7ac1feb64da255837c75ad916af1dc3c2224ca53f5547ffec5 1303352 postgresql-server-dev-17_17.10-0+deb13u1_armhf.deb
Files:
 3e0817d18b3df626f9b8527ce15a50bd 16916 debug optional libecpg-compat3-dbgsym_17.10-0+deb13u1_armhf.deb
 0b31181cc6dd7914616eea89c83c56fa 18776 libs optional libecpg-compat3_17.10-0+deb13u1_armhf.deb
 9a572bcc9c87ea1fda483c0309d2dc1b 251032 debug optional libecpg-dev-dbgsym_17.10-0+deb13u1_armhf.deb
 fe3703286e7cdec376906e7eb868b340 285144 libdevel optional libecpg-dev_17.10-0+deb13u1_armhf.deb
 4755870e7a1e0e3d2b344571c8a99a6d 114124 debug optional libecpg6-dbgsym_17.10-0+deb13u1_armhf.deb
 2595ea01fcab4cd9ec8de669b86d94c0 57428 libs optional libecpg6_17.10-0+deb13u1_armhf.deb
 8144064886a98f959f1c45113adb381f 91344 debug optional libpgtypes3-dbgsym_17.10-0+deb13u1_armhf.deb
 c51beb96ccef018b9e1dbecefb4f2092 43884 libs optional libpgtypes3_17.10-0+deb13u1_armhf.deb
 8bc12765c4ee2da52e3d8fe76a44766c 141952 libdevel optional libpq-dev_17.10-0+deb13u1_armhf.deb
 7de428821d5d947bcc15eb13d3100483 297376 debug optional libpq5-dbgsym_17.10-0+deb13u1_armhf.deb
 13c6da49170da60c6b23747a0f1ae242 212476 libs optional libpq5_17.10-0+deb13u1_armhf.deb
 c67a97e30bb7e6c4840be020ae33b9e1 18940284 debug optional postgresql-17-dbgsym_17.10-0+deb13u1_armhf.deb
 6ca78f8ce010e8822b4fc1bb96a0a3ce 17218 database optional postgresql-17_17.10-0+deb13u1_armhf-buildd.buildinfo
 95b7d5b2fdfadef442458523d1b01082 15921320 database optional postgresql-17_17.10-0+deb13u1_armhf.deb
 e4ac1e6dd6cb05a23c5e7d13a7751d69 2847684 debug optional postgresql-client-17-dbgsym_17.10-0+deb13u1_armhf.deb
 cf858961442b001596dc0ec27de67e7c 1943960 database optional postgresql-client-17_17.10-0+deb13u1_armhf.deb
 322ccc2037ff35a420e3900cf4cb6dae 196736 debug optional postgresql-plperl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 18ca6721ebb04c45f8435220cb226dfb 84560 database optional postgresql-plperl-17_17.10-0+deb13u1_armhf.deb
 e2582db3861ce2e1c0ffb423a884a823 197912 debug optional postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_armhf.deb
 fffa0d337c2288be04a5a7f9ee63f5fe 106780 database optional postgresql-plpython3-17_17.10-0+deb13u1_armhf.deb
 23a635f6c9a12b3555b87a9304b46dec 82908 debug optional postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_armhf.deb
 e5ad6d3e5424f87c3f687b4006ee0912 43212 database optional postgresql-pltcl-17_17.10-0+deb13u1_armhf.deb
 622dfd7a7ab6c2d3a70b359b1af34e38 56232 debug optional postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_armhf.deb
 74573459eefe7288dd8130a2bee45436 1303352 libdevel optional postgresql-server-dev-17_17.10-0+deb13u1_armhf.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEO4qAQUSIo2p/kVRf8U6eOZMpj68FAmoDPooACgkQ8U6eOZMp
j6/PUQ/9Fq8gyb1BKswA9rScOy6StW+4kfKkOmTO8yadxqczoHNZoisHSiJapS9N
ccevGaj9lLtm2esCJTitqtfGUX0PrcOQQlyDCyLgAom5gTdXPi4zI9nADTd6nBRI
kXzWb/RV9fiWKQKelSZqGd3JMdlG0rgg9LL/G7+M3qRqylNE0UXzFSw7OvQK1DI8
cHRKiyDDdZTEM3p3n2mZMGfrM36byAlIM3Wb7fS1JEnRHklese0V4QT4G+cS3be/
ujqGqY4toO6BBmcXfxkiriZnqcaKJbJ1464gyGcNwCZX2mS4F+Oo5SdhNOxVQ1jV
JsknhiIdmi7rFmWbpdyWAYTkGjx972csJEfVKHonzBEpH0XSLtFE7FXYpiNRsHE7
WLxzvwgb7BGeRuBWjx1cHKnKxNCIxx8fuonmi4tSKiHfrHnXqikhOKdMmFaFE2Id
fTOV9/kmCrDzuNcyMCjc+kFVJuhUhgDE15d1xbyg4aQGI8mC01S90UQq4TZpW8Vg
b/g+Wm/jC/pbwjFSkAbNq3lphNEzpJYw8fOFg/RCaFbnilWdWeK+6UzrtqztsLRu
ZlqwxLfC/9XRqUn1H7yaukLxFd+GSDTYN/IeoUKu4CLKao8upbgLz07ZBr10CUi4
9NMjpNKbgmb23VTorN0wOaXKEAw5egeYCyMXrvNRlBfkOFOSsqk=
=YniS
-----END PGP SIGNATURE-----