-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 10 May 2023 20:35:39 +0200
Source: postgresql-13
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-13 postgresql-13-dbgsym postgresql-client-13 postgresql-client-13-dbgsym postgresql-plperl-13 postgresql-plperl-13-dbgsym postgresql-plpython3-13 postgresql-plpython3-13-dbgsym postgresql-pltcl-13 postgresql-pltcl-13-dbgsym postgresql-server-dev-13
Architecture: i386
Version: 13.11-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 13
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-13 - The World's Most Advanced Open Source Relational Database
 postgresql-client-13 - front-end programs for PostgreSQL 13
 postgresql-plperl-13 - PL/Perl procedural language for PostgreSQL 13
 postgresql-plpython3-13 - PL/Python 3 procedural language for PostgreSQL 13
 postgresql-pltcl-13 - PL/Tcl procedural language for PostgreSQL 13
 postgresql-server-dev-13 - development files for PostgreSQL 13 server-side programming
Changes:
 postgresql-13 (13.11-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version.
 .
     + Prevent CREATE SCHEMA from defeating changes in search_path
       (Report and fix by Alexander Lakhin, CVE-2023-2454)
 .
       Within a CREATE SCHEMA command, objects in the prevailing search_path,
       as well as those in the newly-created schema, would be visible even
       within a called function or script that attempted to set a secure
       search_path.  This could allow any user having permission to create a
       schema to hijack the privileges of a security definer function or
       extension script.
 .
     + Enforce row-level security policies correctly after inlining a
       set-returning function (Report by Wolfgang Walther, CVE-2023-2455)
 .
       If a set-returning SQL-language function refers to a table having
       row-level security policies, and it can be inlined into a calling query,
       those RLS policies would not get enforced properly in some cases
       involving re-using a cached plan under a different role. This could
       allow a user to see or modify rows that should have been invisible.
Checksums-Sha1:
 26555a37689379f7c14bf18a90034e97df396dbd 33388 libecpg-compat3-dbgsym_13.11-0+deb11u1_i386.deb
 68d6640a3cdb740b47d0c169fa8365558efa9d10 26520 libecpg-compat3_13.11-0+deb11u1_i386.deb
 1254e1b80216d37093e0a790be12469169764b29 227300 libecpg-dev-dbgsym_13.11-0+deb11u1_i386.deb
 f88e3295adb7550ce060e86f5cd0883aa29a61fb 297320 libecpg-dev_13.11-0+deb11u1_i386.deb
 3b13a79c1ecc8febfb1a1fa552551b93a5a32d8a 97140 libecpg6-dbgsym_13.11-0+deb11u1_i386.deb
 448428a35d658ed3e9c46f5c16236820710f4116 65360 libecpg6_13.11-0+deb11u1_i386.deb
 7051219a9ea8bedbe4b037fe2b9960e7ff366eb3 80316 libpgtypes3-dbgsym_13.11-0+deb11u1_i386.deb
 6b49338c4c60f605869bc2865af3263e0c564ed6 50392 libpgtypes3_13.11-0+deb11u1_i386.deb
 bd3a99fc8a9dfa48aa6b263be755aa8295114fab 149748 libpq-dev_13.11-0+deb11u1_i386.deb
 b920a94c4fb6e53714ecbbafe5cc98bdbd74990d 218404 libpq5-dbgsym_13.11-0+deb11u1_i386.deb
 5c92cc31c51756c9973536422e055d2c5cb6f310 188812 libpq5_13.11-0+deb11u1_i386.deb
 5c6b3c539380cd6216e8bbbb64113ed250491892 13461836 postgresql-13-dbgsym_13.11-0+deb11u1_i386.deb
 75b8fc6603e30e0a144cf619d83f06fcedf04a41 16245 postgresql-13_13.11-0+deb11u1_i386-buildd.buildinfo
 713bfbc03d5164bc455fda29ad5a0961510c4746 15325672 postgresql-13_13.11-0+deb11u1_i386.deb
 d238a71512404dd76e578d0ddbaa8cddba1cffd1 1549816 postgresql-client-13-dbgsym_13.11-0+deb11u1_i386.deb
 8def4740513f850a2959567235df4db51cfd0357 1535900 postgresql-client-13_13.11-0+deb11u1_i386.deb
 15a69caa29f71cf29cdfd86dead5e1b326915802 143456 postgresql-plperl-13-dbgsym_13.11-0+deb11u1_i386.deb
 e2a7a5d5c8d10f8647e0614232ea3a462c8a3645 91532 postgresql-plperl-13_13.11-0+deb11u1_i386.deb
 8599ee1fa9cadda808e3222d8a65e1d6cafdea95 143688 postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_i386.deb
 b8c41a6f526b12c4224c673593bb64122442456c 111056 postgresql-plpython3-13_13.11-0+deb11u1_i386.deb
 8fb0b756260efce6496b617ea0dc9266d11b613a 68324 postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_i386.deb
 56559d85ac9f65b80b6fe25d8dbf5a08e85cb6bb 43128 postgresql-pltcl-13_13.11-0+deb11u1_i386.deb
 0548398822598eff85c2e434a5ddbb63b4c866f3 1052932 postgresql-server-dev-13_13.11-0+deb11u1_i386.deb
Checksums-Sha256:
 b52cda818520ee2b94b6289127a0d70ba5746845a8361a3ddf56cb59cfde5005 33388 libecpg-compat3-dbgsym_13.11-0+deb11u1_i386.deb
 8745818e88bf5177927892ec303a9d9944f67d6a78b6aa7e5121f0f03f1075ab 26520 libecpg-compat3_13.11-0+deb11u1_i386.deb
 dcda0f9131f602d0142ba4527f29ab55a6570f5043e5b40e1ee51ad3e16278b1 227300 libecpg-dev-dbgsym_13.11-0+deb11u1_i386.deb
 9d89c1097b132ca7d175f0fc5cd4e3f9e94df6fbdf0a6bd85f69d59f68641cab 297320 libecpg-dev_13.11-0+deb11u1_i386.deb
 2cba295a7b4277d9c04037376d5ae3db46efdca60faf78432e35b20a3f98d2bd 97140 libecpg6-dbgsym_13.11-0+deb11u1_i386.deb
 6cff942d2496d60d62154778b65d3847b95a9b7c43cc5d0b94c1a12a824b0814 65360 libecpg6_13.11-0+deb11u1_i386.deb
 dcd8f10aa07c2fedf97edf70a52779721e23007913f2303a2f1bd549111d8283 80316 libpgtypes3-dbgsym_13.11-0+deb11u1_i386.deb
 76ac7108a4f2426429eb372ece93c7fa6285c267e2887262f9cb992f2d21df79 50392 libpgtypes3_13.11-0+deb11u1_i386.deb
 d40e8a51a14c2a10b31f0e5d8608f78b19ac844dab870c113c156bfe2c0ff436 149748 libpq-dev_13.11-0+deb11u1_i386.deb
 810a4aa8d8e4cf5970544ea5307f0eb381f9dade3ad82d88ab037fb30409de46 218404 libpq5-dbgsym_13.11-0+deb11u1_i386.deb
 89526b4426f831948f17e34424dd72d763da7bf34c5d76aa2db0d3dd2fa18b48 188812 libpq5_13.11-0+deb11u1_i386.deb
 333ec329fbf3d2950961d5cfd37c1de6697a4a7f33218865a16ad377af444e56 13461836 postgresql-13-dbgsym_13.11-0+deb11u1_i386.deb
 618a583b0f2855f9f5c06570ae6b159e37f31d6c80d09e8995806b1429074805 16245 postgresql-13_13.11-0+deb11u1_i386-buildd.buildinfo
 b1f88f0eecad694f470c613609739aedeb96a299c4a6ad4df90d11929c30d092 15325672 postgresql-13_13.11-0+deb11u1_i386.deb
 a09a69c1bd76da2bb48b659d7244eb7d3b2819306347cc4f9536ef5ffb84296c 1549816 postgresql-client-13-dbgsym_13.11-0+deb11u1_i386.deb
 c448bfa327a7eb1018495e3bb574ea43622fc55b55e2fd381fc229a07e4232c3 1535900 postgresql-client-13_13.11-0+deb11u1_i386.deb
 d72a3ff18b76427dfaaf7d3c3cdc0c50ca3a97a2e3e45b82b1f39e4c6f5c9d13 143456 postgresql-plperl-13-dbgsym_13.11-0+deb11u1_i386.deb
 369d53f39cc4c91b97deb6a421f7d3cb401b31897759fa6d919f1ec2f3b8ce0d 91532 postgresql-plperl-13_13.11-0+deb11u1_i386.deb
 f6f7698a03ec721cc51c0664e9d06893d7ecb46fbdf94c9461a72a0bc85809c2 143688 postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_i386.deb
 56545ce574b80e77e6cb9c081b2247bc1779c408556d2a701b4ac9dadca971cb 111056 postgresql-plpython3-13_13.11-0+deb11u1_i386.deb
 a8770a87d0a1d2e6d8392698e4b71d4f6b920156f8b20be942e30b75a38b0fa2 68324 postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_i386.deb
 b652c6ed88fdcebed6cbad6d230a8f6d8e824a2fd8de281c81b5c3f92ca4fc8c 43128 postgresql-pltcl-13_13.11-0+deb11u1_i386.deb
 e022403fe9dca2456146dc25983a9aa4f2fd1ef3d81a6d4a23eee81098f088c2 1052932 postgresql-server-dev-13_13.11-0+deb11u1_i386.deb
Files:
 98745889ea3b7e92582a507632c61047 33388 debug optional libecpg-compat3-dbgsym_13.11-0+deb11u1_i386.deb
 ca230c612645e710bc7f80569907cf58 26520 libs optional libecpg-compat3_13.11-0+deb11u1_i386.deb
 6fd445fb8fb86d795fcf3dab34a19ee7 227300 debug optional libecpg-dev-dbgsym_13.11-0+deb11u1_i386.deb
 fa5f8744213b0913a2917915ae14d8c3 297320 libdevel optional libecpg-dev_13.11-0+deb11u1_i386.deb
 04a167cffd63d46efb27992bd79f0465 97140 debug optional libecpg6-dbgsym_13.11-0+deb11u1_i386.deb
 aa2fdd6cee9bf0b809f0ad086901a6d4 65360 libs optional libecpg6_13.11-0+deb11u1_i386.deb
 7dd9b5eb71f3005b1ca521f1b7d70c5a 80316 debug optional libpgtypes3-dbgsym_13.11-0+deb11u1_i386.deb
 f979d1d45e0ad2fa0e03847002600dc4 50392 libs optional libpgtypes3_13.11-0+deb11u1_i386.deb
 541a1e61a7c85687d5870e34be21f180 149748 libdevel optional libpq-dev_13.11-0+deb11u1_i386.deb
 da24b0ec25904e2a2de13a7f7a30d38c 218404 debug optional libpq5-dbgsym_13.11-0+deb11u1_i386.deb
 742d2f00ff9839690225c6fbb06b8ba2 188812 libs optional libpq5_13.11-0+deb11u1_i386.deb
 36e5b2edd68092b00084064d03fcc8d5 13461836 debug optional postgresql-13-dbgsym_13.11-0+deb11u1_i386.deb
 41d168368d031c7e8ce789c29afe61e8 16245 database optional postgresql-13_13.11-0+deb11u1_i386-buildd.buildinfo
 fa33d498b821415834a00b6cd081e848 15325672 database optional postgresql-13_13.11-0+deb11u1_i386.deb
 8a3fcd1582fab3b1ebdafb4761a6e0e9 1549816 debug optional postgresql-client-13-dbgsym_13.11-0+deb11u1_i386.deb
 2b0ff360cfb97692bf0cc47a77ca4290 1535900 database optional postgresql-client-13_13.11-0+deb11u1_i386.deb
 bb6b1ee0b5791d85370caed83f7a86c9 143456 debug optional postgresql-plperl-13-dbgsym_13.11-0+deb11u1_i386.deb
 0df8e53e92374b507060f2d5f20be3d6 91532 database optional postgresql-plperl-13_13.11-0+deb11u1_i386.deb
 d50937aaf64d242c844c5c9f7821736b 143688 debug optional postgresql-plpython3-13-dbgsym_13.11-0+deb11u1_i386.deb
 697064facf702916b179a0edffcfebe7 111056 database optional postgresql-plpython3-13_13.11-0+deb11u1_i386.deb
 18d5b9ee382e6838ef3993d4db5339ad 68324 debug optional postgresql-pltcl-13-dbgsym_13.11-0+deb11u1_i386.deb
 f68da6dbf7951efe0ed647e3a338c7c6 43128 database optional postgresql-pltcl-13_13.11-0+deb11u1_i386.deb
 de0c4c227f620b9cfa15ab57b65f3f6b 1052932 libdevel optional postgresql-server-dev-13_13.11-0+deb11u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=RK/n
-----END PGP SIGNATURE-----