Format: 1.8 Date: Thu, 23 Nov 2023 11:27:03 -0300 Source: postgresql-15 Binary: libecpg-compat3 libecpg-dev libecpg6 libpgtypes3 libpq-dev libpq5 postgresql-15 postgresql-client-15 postgresql-plperl-15 postgresql-plpython3-15 postgresql-pltcl-15 postgresql-server-dev-15 Built-For-Profiles: noudeb Architecture: s390x s390x_translations Version: 15.5-0ubuntu0.23.04.1 Distribution: lunar Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Athos Ribeiro Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 15 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql-15 - The World's Most Advanced Open Source Relational Database postgresql-client-15 - front-end programs for PostgreSQL 15 postgresql-plperl-15 - PL/Perl procedural language for PostgreSQL 15 postgresql-plpython3-15 - PL/Python 3 procedural language for PostgreSQL 15 postgresql-pltcl-15 - PL/Tcl procedural language for PostgreSQL 15 postgresql-server-dev-15 - development files for PostgreSQL 15 server-side programming Launchpad-Bugs-Fixed: 2040469 Changes: postgresql-15 (15.5-0ubuntu0.23.04.1) lunar-security; urgency=medium . * New upstream version (LP: #2040469). . + A dump/restore is not required for those running 15.X. . + However, several mistakes have been discovered that could lead to certain types of indexes yielding wrong search results or being unnecessarily inefficient. It is advisable to REINDEX potentially-affected indexes after installing this update. . + Also, if you are upgrading from a version earlier than 15.4, see those release notes as well please. . + Fix handling of unknown-type arguments in DISTINCT "any" aggregate functions (Tom Lane) . This error led to a text-type value being interpreted as an unknown-type value (that is, a zero-terminated string) at runtime. This could result in disclosure of server memory following the text value. (CVE-2023-5868) . + Detect integer overflow while computing new array dimensions (Tom Lane) . When assigning new elements to array subscripts that are outside the current array bounds, an undetected integer overflow could occur in edge cases. Memory stomps that are potentially exploitable for arbitrary code execution are possible, and so is disclosure of server memory. (CVE-2023-5869) . + Prevent the pg_signal_backend role from signalling background workers and autovacuum processes (Noah Misch, Jelte Fennema-Nio) . The documentation says that pg_signal_backend cannot issue signals to superuser-owned processes. It was able to signal these background processes, though, because they advertise a role OID of zero. Treat that as indicating superuser ownership. The security implications of cancelling one of these process types are fairly small so far as the core code goes (we'll just start another one), but extensions might add background workers that are more vulnerable. . Also ensure that the is_superuser parameter is set correctly in such processes. No specific security consequences are known for that oversight, but it might be significant for some extensions. (CVE-2023-5870) . + Fix misbehavior during recursive page split in GiST index build (Heikki Linnakangas) . Fix a case where the location of a page downlink was incorrectly tracked, and introduce some logic to allow recovering from such situations rather than silently doing the wrong thing. This error could result in incorrect answers from subsequent index searches. It may be advisable to reindex all GiST indexes after installing this update. . + Prevent de-duplication of btree index entries for interval columns (Noah Misch) . There are interval values that are distinguishable but compare equal, for example 24:00:00 and 1 day. This breaks assumptions made by btree de-duplication, so interval columns need to be excluded from de-duplication. This oversight can cause incorrect results from index-only scans. Moreover, after updating amcheck will report an error for almost all such indexes. Users should reindex any btree indexes on interval columns. . + Process date values more sanely in BRIN datetime_minmax_multi_ops indexes (Tomas Vondra) . The distance calculation for dates was backward, causing poor decisions about which entries to merge. The index still produces correct results, but is much less efficient than it should be. Reindexing BRIN minmax_multi indexes on date columns is advisable. . + Process large timestamp and timestamptz values more sanely in BRIN datetime_minmax_multi_ops indexes (Tomas Vondra) . Infinities were mistakenly treated as having distance zero rather than a large distance from other values, causing poor decisions about which entries to merge. Also, finite-but-very-large values (near the endpoints of the representable timestamp range) could result in internal overflows, again causing poor decisions. The index still produces correct results, but is much less efficient than it should be. Reindexing BRIN minmax_multi indexes on timestamp and timestamptz columns is advisable if the column contains, or has contained, infinities or large finite values. . + Details about these and many further changes can be found at: https://www.postgresql.org/docs/15/release-15-5.html. . * d/p/libpgport-pkglibdir: adjust patch for new release. Checksums-Sha1: 8eb7732af68fbfbc7d99de2d1cbffdbcc7322968 34904 libecpg-compat3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 8c62f72ecdec2fe31970badcc3acf62ee74d31ce 17910 libecpg-compat3_15.5-0ubuntu0.23.04.1_s390x.deb d3e50585133f44bb38154ab573131239631f5818 153762 libecpg-dev-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb cfb43a7320abbd41fa718fd2d2ad63dff05ad4f9 258838 libecpg-dev_15.5-0ubuntu0.23.04.1_s390x.deb d2b3176d1212a4f230e2e6f233942578a81eac59 118486 libecpg6-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 69d5142fcf492c9066e8f4b3fb1e33e23b7be4a0 42990 libecpg6_15.5-0ubuntu0.23.04.1_s390x.deb f5021c99444a93bdff0fcda318e88f120567af93 88002 libpgtypes3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb b58e70dd646c7a2072ac537bddfe11b1c69a3683 44748 libpgtypes3_15.5-0ubuntu0.23.04.1_s390x.deb a892e73403d5797b016f307ccf6cf016ce761ba0 146808 libpq-dev_15.5-0ubuntu0.23.04.1_s390x.deb 0d88d8c390db0d10ee671762f1ea411d5077308c 301744 libpq5-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 3658e73ea8e5e3afb10d652f4e01880bb28dcf48 134082 libpq5_15.5-0ubuntu0.23.04.1_s390x.deb 13256dc744a4f3c761e50728b2ba26f15ddcd335 17405634 postgresql-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 5352bb592320cc961fbe16d0a398aa8dff016716 16691 postgresql-15_15.5-0ubuntu0.23.04.1_s390x.buildinfo c7e42d79892d03475c1d9332a03907ee0f7eec40 5154226 postgresql-15_15.5-0ubuntu0.23.04.1_s390x.deb 0a2d85b1ed4f107d9576b46126510a870e502ea1 9624989 postgresql-15_15.5-0ubuntu0.23.04.1_s390x_translations.tar.gz 2a876f4a848e22809ea24f503d9dff05c2de181a 1918462 postgresql-client-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 03a73d7363a34682b089efbb7d2601f96f024d68 1225790 postgresql-client-15_15.5-0ubuntu0.23.04.1_s390x.deb 1f52d00c33ff3b208089c68f61de6186335fa1f2 181854 postgresql-plperl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb a7000f484a8e8f8201f26696aaecc4b2dd6050e4 49634 postgresql-plperl-15_15.5-0ubuntu0.23.04.1_s390x.deb b5091d6804c612bcec02eb77cc8f82b52c79b8cc 167942 postgresql-plpython3-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 8877ddc9540052009922e65971b2356ca390badb 56876 postgresql-plpython3-15_15.5-0ubuntu0.23.04.1_s390x.deb 3f1d1dcb255b3b7fb499985193db890803995aa7 80704 postgresql-pltcl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb bb604471e875f662fde1c79288fbfb81eb4338da 30816 postgresql-pltcl-15_15.5-0ubuntu0.23.04.1_s390x.deb ece1317ca716d7f7f75aed7512b129d7ed0d34a0 1191332 postgresql-server-dev-15_15.5-0ubuntu0.23.04.1_s390x.deb Checksums-Sha256: 3d673205e15776bde87ba2c71d705f8bbe1bced6c08fb6e098ede89bcf5bb499 34904 libecpg-compat3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 6cdb15687ceae41284455feb57ad2f733e77023c71ea398af03b35bb7ceb4feb 17910 libecpg-compat3_15.5-0ubuntu0.23.04.1_s390x.deb 47c3910005fb4ad30abbe32e3dca4db76e3aef055f7672cfeb226591ff02f704 153762 libecpg-dev-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 71f0ee80e6340d8b753ca3029d87339f0dd4fc27f4c0275cdfc3a8a4b9b4f2e5 258838 libecpg-dev_15.5-0ubuntu0.23.04.1_s390x.deb bd87b8d05d7a7a819048af327f6a97dca6e5de58dcbf3b37aa45ab0835193f4b 118486 libecpg6-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb c74526f05769052da49b0035393e5c4e24599094bf383a6adb982e3e659eb0f9 42990 libecpg6_15.5-0ubuntu0.23.04.1_s390x.deb a1ded5a0a4f3853ebf206c8a1e55bde1951d56beb43d2044a218ba99da8e3f68 88002 libpgtypes3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 0ef1b13ccee6490425a5b4f2223fc340a53b573065a8f7195fcd078453e31eab 44748 libpgtypes3_15.5-0ubuntu0.23.04.1_s390x.deb 3554719954e18976d1ff8d58f587cbc3bda978d19a567d08e0e730b57d7cf32c 146808 libpq-dev_15.5-0ubuntu0.23.04.1_s390x.deb 5a2c43a899d6791cde485ffb800aed7571df13152f2339c717e83a1754bde6ea 301744 libpq5-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb babd524fdb209e2882d4f205d109849098ddae6b3d3cb9b045c9d1b4f8552ab9 134082 libpq5_15.5-0ubuntu0.23.04.1_s390x.deb c7baf17fcafb40ce18751a0c298f32dcf19349c3bb94b0886a06c934b807a02c 17405634 postgresql-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb ba403375aa1864cdf1f65bbd085dc914ebd709cfae0ffd82674eed019c917cbe 16691 postgresql-15_15.5-0ubuntu0.23.04.1_s390x.buildinfo d01d98c3071d196796f9a7f532a10f1c76ffd687b1fb3f98200b41884e70842b 5154226 postgresql-15_15.5-0ubuntu0.23.04.1_s390x.deb c3093a28fa94beaa479b13367d8bcc52a653c0bf903188ea69c17f7960eac7a6 9624989 postgresql-15_15.5-0ubuntu0.23.04.1_s390x_translations.tar.gz b9f55243fa1eb2860b237d46919cbe1eb3e283e9d213e37aab52ffde7d318300 1918462 postgresql-client-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 31f5b9d61438fc4a2884377e2c1017dcbb0b43abd70b7bc366911f997b5e51fb 1225790 postgresql-client-15_15.5-0ubuntu0.23.04.1_s390x.deb f47e002a9537406897c8a8b1ef5d98682c4e08065c9c00cd58f46ae324dc8be1 181854 postgresql-plperl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb f2f9b6c395e5b963d98b7d54350a722dff5c9bfd552f1f9c70322729fd7c6abe 49634 postgresql-plperl-15_15.5-0ubuntu0.23.04.1_s390x.deb a233dbfb07314a79bd1d18e2d175b61773f9fa9fecc6e84c0ac87caab82352fc 167942 postgresql-plpython3-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb f1e099d3c878e6fbbefb2587969cece270b4fd690a927de03e86be396b53964d 56876 postgresql-plpython3-15_15.5-0ubuntu0.23.04.1_s390x.deb 86d5ca049201b71bd9418a5a4d4bc941e6ce9a9edb9a89d5404e9f162548902e 80704 postgresql-pltcl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb fed66eeec3f4bf4e3a4934ef123c8b1f07bbec7dedc998e29356dc5947ead40d 30816 postgresql-pltcl-15_15.5-0ubuntu0.23.04.1_s390x.deb b5d373927637bcfacbf8f3c30920bfc8bf04ecd11f2f13edbd9ccc13f031a66c 1191332 postgresql-server-dev-15_15.5-0ubuntu0.23.04.1_s390x.deb Files: 6baf495b9fe12a4b89483a0a5be750f5 34904 debug optional libecpg-compat3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 204324fb0b6e60bd7a23a4c4887e5581 17910 libs optional libecpg-compat3_15.5-0ubuntu0.23.04.1_s390x.deb 889008d48e15b82ed956fe6404d4c8e4 153762 debug optional libecpg-dev-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 7e3847b21b0c659356bd038cb1f4c02c 258838 libdevel optional libecpg-dev_15.5-0ubuntu0.23.04.1_s390x.deb 4ad3ede9edd10cbdc177d17a57212a65 118486 debug optional libecpg6-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb b72a884464ca74ff6b967819d5ff0942 42990 libs optional libecpg6_15.5-0ubuntu0.23.04.1_s390x.deb 9a4a46371724317e4930259c06b4ed34 88002 debug optional libpgtypes3-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb c6e7d6a5c0028caaa410cbdfc5fe6911 44748 libs optional libpgtypes3_15.5-0ubuntu0.23.04.1_s390x.deb 74bd237b8621e48037b359e3e25cf4ab 146808 libdevel optional libpq-dev_15.5-0ubuntu0.23.04.1_s390x.deb d271568adf26a0036b7616e6841b717e 301744 debug optional libpq5-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb f03bc400f02fa893e3f9623972980fcd 134082 libs optional libpq5_15.5-0ubuntu0.23.04.1_s390x.deb 0bad7d4d91fa82c97ed277f59a186dab 17405634 debug optional postgresql-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 48882d0c1532f77d820f164ec35a7776 16691 database optional postgresql-15_15.5-0ubuntu0.23.04.1_s390x.buildinfo 4a314fd9659dcd2015c74094868769fd 5154226 database optional postgresql-15_15.5-0ubuntu0.23.04.1_s390x.deb 9b6a089ba5e96f45936d59c1fb0b1b20 9624989 raw-translations - postgresql-15_15.5-0ubuntu0.23.04.1_s390x_translations.tar.gz 07a307f563bd900b8e1141722c2ddd9d 1918462 debug optional postgresql-client-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 40d308dcf7e086a9f54d0a9b3a6a28a8 1225790 database optional postgresql-client-15_15.5-0ubuntu0.23.04.1_s390x.deb 56c558ca2c3430ae4834bd5c984c3242 181854 debug optional postgresql-plperl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb f2130173acba977264f23a87d02d1664 49634 database optional postgresql-plperl-15_15.5-0ubuntu0.23.04.1_s390x.deb a1867f6e503c4950d0b4d6658bc03f31 167942 debug optional postgresql-plpython3-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 1f4682f5c02c3c65d8e24bce14a923e3 56876 database optional postgresql-plpython3-15_15.5-0ubuntu0.23.04.1_s390x.deb 366892542335edfb31c2b83f2ed41ff2 80704 debug optional postgresql-pltcl-15-dbgsym_15.5-0ubuntu0.23.04.1_s390x.ddeb 84956c8dd2dc8575f50ec4e812d22423 30816 database optional postgresql-pltcl-15_15.5-0ubuntu0.23.04.1_s390x.deb 95d9232b0677aeb61061c3ae091c8d28 1191332 libdevel optional postgresql-server-dev-15_15.5-0ubuntu0.23.04.1_s390x.deb Original-Maintainer: Debian PostgreSQL Maintainers