Format: 1.7
Date: Sat, 15 May 2010 14:02:22 +0200
Source: postgresql-8.3
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.3 postgresql-client-8.3 postgresql-server-dev-8.3 postgresql-doc-8.3 postgresql-contrib-8.3 postgresql-plperl-8.3 postgresql-plpython-8.3 postgresql-pltcl-8.3 postgresql postgresql-client postgresql-doc postgresql-contrib
Architecture: powerpc_translations powerpc
Version: 8.3.11-0ubuntu8.04
Distribution: hardy
Urgency: low
Maintainer: Ubuntu/powerpc Build Daemon <buildd@ross.buildd>
Changed-By: Martin Pitt <martin.pitt@ubuntu.com>
Description: 
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 8.3
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql - object-relational SQL database (latest version)
 postgresql-8.3 - object-relational SQL database, version 8.3 server
 postgresql-client - front-end programs for PostgreSQL (latest version)
 postgresql-client-8.3 - front-end programs for PostgreSQL 8.3
 postgresql-contrib - additional facilities for PostgreSQL (latest version)
 postgresql-contrib-8.3 - additional facilities for PostgreSQL
 postgresql-doc - documentation for the PostgreSQL database management system
 postgresql-doc-8.3 - documentation for the PostgreSQL database management system
 postgresql-plperl-8.3 - PL/Perl procedural language for PostgreSQL 8.3
 postgresql-plpython-8.3 - PL/Python procedural language for PostgreSQL 8.3
 postgresql-pltcl-8.3 - PL/Tcl procedural language for PostgreSQL 8.3
 postgresql-server-dev-8.3 - development files for PostgreSQL 8.3 server-side programming
Changes: 
 postgresql-8.3 (8.3.11-0ubuntu8.04) hardy-security; urgency=low
 .
   * New upstream security/bug fix release:
     - Enforce restrictions in plperl using an opmask applied to the whole
       interpreter, instead of using "Safe.pm".
       Recent developments have convinced us that "Safe.pm" is too
       insecure to rely on for making plperl trustable. This change
       removes use of "Safe.pm" altogether, in favor of using a separate
       interpreter with an opcode mask that is always applied. Pleasant
       side effects of the change include that it is now possible to use
       Perl's strict pragma in a natural way in plperl, and that Perl's $a
       and $b variables work as expected in sort routines, and that
       function compilation is significantly faster. (CVE-2010-1169)
     - Prevent PL/Tcl from executing untrustworthy code from pltcl_modules.
       PL/Tcl's feature for autoloading Tcl code from a database table
       could be exploited for trojan-horse attacks, because there was no
       restriction on who could create or insert into that table. This
       change disables the feature unless pltcl_modules is owned by a
       superuser. (However, the permissions on the table are not checked,
       so installations that really need a less-than-secure modules table
       can still grant suitable privileges to trusted non-superusers.)
       Also, prevent loading code into the unrestricted "normal" Tcl
       interpreter unless we are really going to execute a pltclu
       function. (CVE-2010-1170)
     - Fix possible crash if a cache reset message is received during
       rebuild of a relcache entry.
       This error was introduced in 8.3.10 while fixing a related failure.
     - Apply per-function GUC settings while running the language
       validator for the function.
       This avoids failures if the function's code is invalid without the
       setting; an example is that SQL functions may not parse if the
       search_path is not correct.
     - Do not allow an unprivileged user to reset superuser-only parameter
       settings.
       Previously, if an unprivileged user ran ALTER USER ... RESET ALL
       for himself, or ALTER DATABASE ... RESET ALL for a database he
       owns, this would remove all special parameter settings for the user
       or database, even ones that are only supposed to be changeable by a
       superuser. Now, the "ALTER" will only remove the parameters that
       the user has permission to change.
     - Avoid possible crash during backend shutdown if shutdown occurs
       when a CONTEXT addition would be made to log entries.
       In some cases the context-printing function would fail because the
       current transaction had already been rolled back when it came time
       to print a log message.
     - Ensure the archiver process responds to changes in archive_command
       as soon as possible.
     - Update pl/perl's "ppport.h" for modern Perl versions.
     - Fix assorted memory leaks in pl/python.
     - Prevent infinite recursion in psql when expanding a variable that
       refers to itself.
     - Fix psql's \copy to not add spaces around a dot within \copy
       (select ...).
       Addition of spaces around the decimal point in a numeric literal
       would result in a syntax error.
     - Fix unnecessary "GIN indexes do not support whole-index scans"
       errors for unsatisfiable queries using "contrib/intarray" operators.
     - Ensure that "contrib/pgstattuple" functions respond to cancel
       interrupts promptly.
Files: 
 43a9fdf1cfddc7a029063bfaa757dc89 2599325 raw-translations - postgresql-8.3_8.3.11-0ubuntu8.04_powerpc_translations.tar.gz
 2375701cd7fe8123883476dbba50764f 190340 libdevel optional libpq-dev_8.3.11-0ubuntu8.04_powerpc.deb
 f9c9221e13516e0ca8c3e9caffcbc2f7 326088 libs optional libpq5_8.3.11-0ubuntu8.04_powerpc.deb
 2c1df1b5f9e5676cebea9c8c7d60cefb 34070 libs optional libecpg6_8.3.11-0ubuntu8.04_powerpc.deb
 4ac6c829eaeb244a090beb677dad374b 217832 libdevel optional libecpg-dev_8.3.11-0ubuntu8.04_powerpc.deb
 92b958ba0dd3c602533681614c33fb54 11252 libs optional libecpg-compat3_8.3.11-0ubuntu8.04_powerpc.deb
 de40c6bf04dd032b9be4682c1532042e 293250 libs optional libpgtypes3_8.3.11-0ubuntu8.04_powerpc.deb
 49e81e8277b8114a171c05a30e4f8243 4101952 misc optional postgresql-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 c7d1d2a3bc3a4588a25b66aa45bad3f0 766996 misc optional postgresql-client-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 88901caa2f7e8c510c480673fe1b1901 830110 libdevel optional postgresql-server-dev-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 8a84ea6f1f9cd79e6d5d886fef92c6ae 416368 misc optional postgresql-contrib-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 b930681446ec23dae1e122acc11679d2 293908 misc optional postgresql-plperl-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 bace4603ed5d89faf7eb3a4c5494efca 284712 misc optional postgresql-plpython-8.3_8.3.11-0ubuntu8.04_powerpc.deb
 d63fcb8852991a828d1032c1763726d6 283356 misc optional postgresql-pltcl-8.3_8.3.11-0ubuntu8.04_powerpc.deb
Original-Maintainer: Martin Pitt <mpitt@debian.org>