-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 11 May 2022 15:03:33 +0200 Source: postgresql-13 Binary: postgresql-doc-13 Architecture: all Version: 13.7-0+deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: all Build Daemon (x86-grnet-02) Changed-By: Christoph Berg Description: postgresql-doc-13 - documentation for the PostgreSQL database management system Changes: postgresql-13 (13.7-0+deb11u1) bullseye-security; urgency=medium . * New upstream release. . * Confine additional operations within security restricted operation sandboxes (Sergey Shinderuk, Noah Misch) . Autovacuum, CLUSTER, CREATE INDEX, REINDEX, REFRESH MATERIALIZED VIEW, and pg_amcheck activated the security restricted operation protection mechanism too late, or even not at all in some code paths. A user having permission to create non-temporary objects within a database could define an object that would execute arbitrary SQL code with superuser permissions the next time that autovacuum processed the object, or that some superuser ran one of the affected commands against it. . The PostgreSQL Project thanks Alexander Lakhin for reporting this problem. (CVE-2022-1552) . * Fix default signature length for gist_ltree_ops indexes (Tomas Vondra, Alexander Korotkov) . The default signature length (hash size) for GiST indexes on ltree columns was accidentally changed while upgrading that operator class to support operator class parameters. If any operations had been done on such an index without first upgrading the ltree extension to version 1.2, they were done assuming that the signature length was 28 bytes rather than the intended 8. This means it is very likely that such indexes are now corrupt. For safety we recommend re-indexing all GiST indexes on ltree columns after installing this update. (Note that GiST indexes on ltree[] columns, that is arrays of ltree, are not affected.) Checksums-Sha1: 64f0e0b41273633ec1040317377650007692a38f 9455 postgresql-13_13.7-0+deb11u1_all-buildd.buildinfo c90172dd7df77b896da527259f38c1bb82e98e18 1939504 postgresql-doc-13_13.7-0+deb11u1_all.deb Checksums-Sha256: 649d4b95166b86b6cfe2000dc280bccfe0d2ab99c599b37cb5dfc8341e7550cf 9455 postgresql-13_13.7-0+deb11u1_all-buildd.buildinfo e4d6676efd3a5f3554ca125f6b43421ab023f9962a56bc30dc093f9a980eb659 1939504 postgresql-doc-13_13.7-0+deb11u1_all.deb Files: d06ed4d3220f6179ab43fb7e701f3520 9455 database optional postgresql-13_13.7-0+deb11u1_all-buildd.buildinfo f0529df2143899359d8597a642e23352 1939504 doc optional postgresql-doc-13_13.7-0+deb11u1_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEfA7dsu0ZDzzHaw+5NX/smi6DkKgFAmJ7vCMACgkQNX/smi6D kKioIhAAkvRdxopUSng9GzSYSSJDO3C/bXg1FDX8lAKoMV5MZTzfuqx26g1vNz8L uhMlO2yS0yQ3x7VTdI3CbBPFp8mmCHVioEluFdiqQ4MYfprrC+wuUNVE3E++AJ77 Fjoi4pxJQ8URFAMzHJIH0guaG95yFbckgill+ShO8btS8KC4HVO1UJ6eV19+aj7b bGKLFNJQXqzdVUiFqdKJo6BS1vg0l8TxPSZYMlZ6GQSOYOjW2k4PIH1QHPgOdGtm vRIqLDZoO/wRte47ui3OzUAO1zlQC6LrwWmhO5Z6KggjQZxm2Vmp1OFrY++VbrFX mbdsd24bE9dPBe8BRoVZUr7FPa4U9LZBQszv3cst1KXvn8Te9Dcs6WW1hDfOIsHb 3TPXqYNee2Ej2hchYjVHrXiHhYs4rrpSQ7z7OTVUFuldDF2iGiA3VcdQZpiadj3t 9HXE5Mj5jUlWbsFCVM26Yw91ku0v6t4lkH5y2XnPY2cqNTXQ4r20HK5GAYaGsXOW rnKcnIEFHbNkWrW2xDKEA5XBNQmQN3ClEwL/orsJJxTZ1nJvTnEGQa37myt6ZZIi sOPmO0nzCruT+5gpf7Coa4S6FBVaSwW83AVIAmS1JQOZRDNj4c2KcysORwEddc3y 6BvYZiHV9OkxBTwT2xHE/yNOaxMgy3aPm3Q0GlUI9UhPYKkCzeU= =IurA -----END PGP SIGNATURE-----