-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 10 May 2023 20:35:39 +0200
Source: postgresql-13
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-13 postgresql-13-dbgsym postgresql-client-13 postgresql-client-13-dbgsym postgresql-plperl-13 postgresql-plperl-13-dbgsym postgresql-plpython3-13 postgresql-plpython3-13-dbgsym postgresql-pltcl-13 postgresql-pltcl-13-dbgsym postgresql-server-dev-13
Architecture: amd64
Version: 13.11-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 13
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-13 - The World's Most Advanced Open Source Relational Database
 postgresql-client-13 - front-end programs for PostgreSQL 13
 postgresql-plperl-13 - PL/Perl procedural language for PostgreSQL 13
 postgresql-plpython3-13 - PL/Python 3 procedural language for PostgreSQL 13
 postgresql-pltcl-13 - PL/Tcl procedural language for PostgreSQL 13
 postgresql-server-dev-13 - development files for PostgreSQL 13 server-side programming
Changes:
 postgresql-13 (13.11-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version.
 .
     + Prevent CREATE SCHEMA from defeating changes in search_path
       (Report and fix by Alexander Lakhin, CVE-2023-2454)
 .
       Within a CREATE SCHEMA command, objects in the prevailing search_path,
       as well as those in the newly-created schema, would be visible even
       within a called function or script that attempted to set a secure
       search_path.  This could allow any user having permission to create a
       schema to hijack the privileges of a security definer function or
       extension script.
 .
     + Enforce row-level security policies correctly after inlining a
       set-returning function (Report by Wolfgang Walther, CVE-2023-2455)
 .
       If a set-returning SQL-language function refers to a table having
       row-level security policies, and it can be inlined into a calling query,
       those RLS policies would not get enforced properly in some cases
       involving re-using a cached plan under a different role. This could
       allow a user to see or modify rows that should have been invisible.
Checksums-Sha1:
 20951cade8f435761401e9829bff558c66adc905 38096 libecpg-compat3-dbgsym_13.11-0+deb11u1_amd64.deb
 83ca6ca9bb9716c22fceba45d42b7923308a48c8 25676 libecpg-compat3_13.11-0+deb11u1_amd64.deb
 17127041d6e4c88e6f7ea609f447a85c7c3b2539 225964 libecpg-dev-dbgsym_13.11-0+deb11u1_amd64.deb
 36df282bc94007f9cbbd0397fe37da56e97db773 285156 libecpg-dev_13.11-0+deb11u1_amd64.deb
 ed425b0be5b4514500a79331dd42c4a87c0f0f80 111244 libecpg6-dbgsym_13.11-0+deb11u1_amd64.deb
 47875db9b35ea1713e1a04185cc57db251b0a954 61556 libecpg6_13.11-0+deb11u1_amd64.deb
 21aadf09a8f59a0563c7a0c29c015a3e56db19d9 89076 libpgtypes3-dbgsym_13.11-0+deb11u1_amd64.deb
 3bc9206bcbc5a65ae6e08fee8e1d27c84ce41a20 47940 libpgtypes3_13.11-0+deb11u1_amd64.deb
 bd681873ae59fa485eaa8a6499a0a7e733e4f4ca 140164 libpq-dev_13.11-0+deb11u1_amd64.deb
 3b20d7ff4788893ed8eabf54a664f88c4fdcae11 253932 libpq5-dbgsym_13.11-0+deb11u1_amd64.deb
 b01de69be7f6897b817c99fc204e52c3317296a9 180388 libpq5_13.11-0+deb11u1_amd64.deb
 8739711cf13462133d34c57d5d9b9cdf183bd37d 14905820 postgresql-13-dbgsym_13.11-0+deb11u1_amd64.deb
 e97d573549e8459b47c75f872c7be6cdea672bb1 16340 postgresql-13_13.11-0+deb11u1_amd64-buildd.buildinfo
 7b5f1eee9677f2de5c353086e59181ff7c4b1d5a 15135488 postgresql-13_13.11-0+deb11u1_amd64.deb
 c3afe98535983134ddb78261bcf5c8a2ce13a860 1854288 postgresql-client-13-dbgsym_13.11-0+deb11u1_amd64.deb
 f25524142e1d755d4a67c0f9bbeba9dfbdec1cc3 1512172 postgresql-client-13_13.11-0+deb11u1_amd64.deb
 408e8c39222daa21af6af6e0ab944fe2f15a2b2e 157532 postgresql-plperl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 cd4f2f2e92453003ccc00e1304b47028a348a9d6 88096 postgresql-plperl-13_13.11-0+deb11u1_amd64.deb
 9540e9381024470f86110eb77f01df2be73bf1f6 159328 postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_amd64.deb
 e0d9f5aa1aadcf48059278f6479df313f0158f5d 108060 postgresql-plpython3-13_13.11-0+deb11u1_amd64.deb
 61ca64097479b2e7bd50abd1bb803e7d8ca8eb60 74712 postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 c292148fb02eef9ce6a4353f7da702d3c3bca24b 41880 postgresql-pltcl-13_13.11-0+deb11u1_amd64.deb
 1ac5e58afd4b783b7d29123807b5a27162ce4ae2 1039200 postgresql-server-dev-13_13.11-0+deb11u1_amd64.deb
Checksums-Sha256:
 540126b344539b8781c70590cdc0a2bd98ea56d83eae2757dc96e71b7d06cdbb 38096 libecpg-compat3-dbgsym_13.11-0+deb11u1_amd64.deb
 66cd3fdeb1074d748e53271b73b429f9deb060aa43c7c643d2d5e66b2bb95e71 25676 libecpg-compat3_13.11-0+deb11u1_amd64.deb
 9858f1fc55bf14565b53cd499cff0e8b1c95422bbf93ef45da50b782691f862c 225964 libecpg-dev-dbgsym_13.11-0+deb11u1_amd64.deb
 6fcfa2e44945366cadc1bae513394edda272fa78612d66ae4a574aedaf71880c 285156 libecpg-dev_13.11-0+deb11u1_amd64.deb
 f9d08715e9c140b275aeb18e743c86fbb44f771675e549c2dcbc5add79980e7a 111244 libecpg6-dbgsym_13.11-0+deb11u1_amd64.deb
 d426a7419ededcaeb56ea1887432d2ef5b643d0d8b8d396496c88d280c1f4de8 61556 libecpg6_13.11-0+deb11u1_amd64.deb
 5de26359440f97f68857bea301835c4bce052d34711ebcc7e989cbc94a21d56b 89076 libpgtypes3-dbgsym_13.11-0+deb11u1_amd64.deb
 07a08b833938ad9ea5e1ca273f161e10ac0fa43399ad32083adbc1e258b2f602 47940 libpgtypes3_13.11-0+deb11u1_amd64.deb
 0387e5b8f1d64a8cb1e5183b24bf61243291216055bfa0b2d9182c627f11a674 140164 libpq-dev_13.11-0+deb11u1_amd64.deb
 9289300fea810d1cfac6f4e9d9844e0c42e4b98ead34fb217f9475740bd4c2c5 253932 libpq5-dbgsym_13.11-0+deb11u1_amd64.deb
 e215d06c1ff7a6fd2f7e7056d3c26ebb0cf2bd76424cf19535341a51bf471dfd 180388 libpq5_13.11-0+deb11u1_amd64.deb
 556e410480526129256f92b9d62a055f6656daa4006c2c518305055305ad1ed7 14905820 postgresql-13-dbgsym_13.11-0+deb11u1_amd64.deb
 84e38154732dbba5768a3f5d3b474188a7025b47438a7d8ea5fe157b2cbcb7b6 16340 postgresql-13_13.11-0+deb11u1_amd64-buildd.buildinfo
 418d001fd93303411fb6d0d2c6ecce59b0e971d6b31d36dffdaf36e1829f1bb1 15135488 postgresql-13_13.11-0+deb11u1_amd64.deb
 b676c13d0d1169b6f0a08d1e618344c75955db1faa040bf3cdd2b78519a33d72 1854288 postgresql-client-13-dbgsym_13.11-0+deb11u1_amd64.deb
 ceb45bf414858d4585cba5a9e33265e7bab37cae756bfdd469eef3fcde07d87c 1512172 postgresql-client-13_13.11-0+deb11u1_amd64.deb
 a2ff414bb82a95497d35e549176a4a985d1eeaa685f3d598ab8a41c263fb70b6 157532 postgresql-plperl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 88e60f4ffaae14d7073eef9316f806be534f82b4abc177a01be92a12ca23e0de 88096 postgresql-plperl-13_13.11-0+deb11u1_amd64.deb
 2d51f8fbd2c296b33e4fd78da8dfce8926db5b750b897a8a3c06ee517f2297c6 159328 postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_amd64.deb
 30a78d2ff336fa1150e9072a49e43b0340c6ca3222fc27369b5e2a64a9633380 108060 postgresql-plpython3-13_13.11-0+deb11u1_amd64.deb
 5316e8dde5f6e3d3c07d7abee587481636b5f24bee45a5af75076bfd5434c9ed 74712 postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 ce75b50fdfc37cd4d528c339a45be2f3cff5c49f66f1776364b228df95cf356c 41880 postgresql-pltcl-13_13.11-0+deb11u1_amd64.deb
 5f5f32faf97baf4b48ac22689230a9674005e43c2e49ee83f0976b8cfab5dac5 1039200 postgresql-server-dev-13_13.11-0+deb11u1_amd64.deb
Files:
 601103f65a8d8f01d0a5a8b112d6794f 38096 debug optional libecpg-compat3-dbgsym_13.11-0+deb11u1_amd64.deb
 ced55568fc5e534284110618d72b974f 25676 libs optional libecpg-compat3_13.11-0+deb11u1_amd64.deb
 d8771f1c4b05824f7a9eda83b268b785 225964 debug optional libecpg-dev-dbgsym_13.11-0+deb11u1_amd64.deb
 116d91d951161ef32ec2f1543737c46a 285156 libdevel optional libecpg-dev_13.11-0+deb11u1_amd64.deb
 65b28cc47ee83c169a86300fd0aed1f8 111244 debug optional libecpg6-dbgsym_13.11-0+deb11u1_amd64.deb
 4768403ca1ad27160a4cdd6a6be885dd 61556 libs optional libecpg6_13.11-0+deb11u1_amd64.deb
 8b8b366bac69753723e3b00be1f4a1fc 89076 debug optional libpgtypes3-dbgsym_13.11-0+deb11u1_amd64.deb
 4843e9be55d528706d39add1924c0cb8 47940 libs optional libpgtypes3_13.11-0+deb11u1_amd64.deb
 37a602732cbfee2b2de38a6abb4b0a8e 140164 libdevel optional libpq-dev_13.11-0+deb11u1_amd64.deb
 d1e1aef9bb35be040b852ee8dd9c5630 253932 debug optional libpq5-dbgsym_13.11-0+deb11u1_amd64.deb
 d8e6b11b88c88c1584a13e4cca4acfc0 180388 libs optional libpq5_13.11-0+deb11u1_amd64.deb
 edf147e8070a5a6fda38c81e1c35b63b 14905820 debug optional postgresql-13-dbgsym_13.11-0+deb11u1_amd64.deb
 4f7a1b3523b8ab0d04d0130bf95cf126 16340 database optional postgresql-13_13.11-0+deb11u1_amd64-buildd.buildinfo
 96f225d209dbbecac105481fe532c1cf 15135488 database optional postgresql-13_13.11-0+deb11u1_amd64.deb
 10128225c4c994ca47abc74be15e51a0 1854288 debug optional postgresql-client-13-dbgsym_13.11-0+deb11u1_amd64.deb
 b4668fa7bfd383cf62c9a62c3de82a1c 1512172 database optional postgresql-client-13_13.11-0+deb11u1_amd64.deb
 25cc74181d86999a50b00ef7d5394016 157532 debug optional postgresql-plperl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 399f89f3cbe8535f91a68501b55c0eef 88096 database optional postgresql-plperl-13_13.11-0+deb11u1_amd64.deb
 07e865587f651d55306d7b20512bfaaa 159328 debug optional postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_amd64.deb
 a0fe6268c71e701e00ef7f4917a1d361 108060 database optional postgresql-plpython3-13_13.11-0+deb11u1_amd64.deb
 39c234dd705e6976b66087bf3772005b 74712 debug optional postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_amd64.deb
 3438d84afef33a11e089ccf60772d841 41880 database optional postgresql-pltcl-13_13.11-0+deb11u1_amd64.deb
 f96316bd4da585d9f09a66bc1a3d51f6 1039200 libdevel optional postgresql-server-dev-13_13.11-0+deb11u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=KnQy
-----END PGP SIGNATURE-----