Format: 1.8 Date: Thu, 20 Feb 2014 11:35:10 -0800 Source: postgresql-9.1 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-9.1 postgresql-9.1-dbg postgresql-client-9.1 postgresql-server-dev-9.1 postgresql-doc-9.1 postgresql-contrib-9.1 postgresql-plperl-9.1 postgresql-plpython-9.1 postgresql-plpython3-9.1 postgresql-pltcl-9.1 Architecture: amd64 amd64_translations Version: 9.1.12-0ubuntu0.12.04 Distribution: precise Urgency: medium Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 9.1 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql-9.1 - object-relational SQL database, version 9.1 server postgresql-9.1-dbg - debug symbols for postgresql-9.1 postgresql-client-9.1 - front-end programs for PostgreSQL 9.1 postgresql-contrib-9.1 - additional facilities for PostgreSQL postgresql-doc-9.1 - documentation for the PostgreSQL database management system postgresql-plperl-9.1 - PL/Perl procedural language for PostgreSQL 9.1 postgresql-plpython-9.1 - PL/Python procedural language for PostgreSQL 9.1 postgresql-plpython3-9.1 - PL/Python 3 procedural language for PostgreSQL 9.1 postgresql-pltcl-9.1 - PL/Tcl procedural language for PostgreSQL 9.1 postgresql-server-dev-9.1 - development files for PostgreSQL 9.1 server-side programming Launchpad-Bugs-Fixed: 1282677 Changes: postgresql-9.1 (9.1.12-0ubuntu0.12.04) precise-security; urgency=medium . * New upstream security/bugfix release. (LP: #1282677) - Shore up GRANT ... WITH ADMIN OPTION restrictions. Granting a role without ADMIN OPTION is supposed to prevent the grantee from adding or removing members from the granted role, but this restriction was easily bypassed by doing SET ROLE first. The security impact is mostly that a role member can revoke the access of others, contrary to the wishes of his grantor. Unapproved role member additions are a lesser concern, since an uncooperative role member could provide most of his rights to others anyway by creating views or SECURITY DEFINER functions. (CVE-2014-0060) - Prevent privilege escalation via manual calls to PL validator functions. The primary role of PL validator functions is to be called implicitly during CREATE FUNCTION, but they are also normal SQL functions that a user can call explicitly. Calling a validator on a function actually written in some other language was not checked for and could be exploited for privilege-escalation purposes. The fix involves adding a call to a privilege-checking function in each validator function. Non-core procedural languages will also need to make this change to their own validator functions, if any. (CVE-2014-0061) - Avoid multiple name lookups during table and index DDL. If the name lookups come to different conclusions due to concurrent activity, we might perform some parts of the DDL on a different table than other parts. At least in the case of CREATE INDEX, this can be used to cause the permissions checks to be performed against a different table than the index creation, allowing for a privilege escalation attack. (CVE-2014-0062) - Prevent buffer overrun with long datetime strings. The MAXDATELEN constant was too small for the longest possible value of type interval, allowing a buffer overrun in interval_out(). Although the datetime input functions were more careful about avoiding buffer overrun, the limit was short enough to cause them to reject some valid inputs, such as input containing a very long timezone name. The ecpg library contained these vulnerabilities along with some of its own. (CVE-2014-0063) - Prevent buffer overrun due to integer overflow in size calculations. Several functions, mostly type input functions, calculated an allocation size without checking for overflow. If overflow did occur, a too-small buffer would be allocated and then written past. (CVE-2014-0064) - Prevent overruns of fixed-size buffers. Use strlcpy() and related functions to provide a clear guarantee that fixed-size buffers are not overrun. Unlike the preceding items, it is unclear whether these cases really represent live issues, since in most cases there appear to be previous constraints on the size of the input string. Nonetheless it seems prudent to silence all Coverity warnings of this type. (CVE-2014-0065) - Avoid crashing if crypt() returns NULL. There are relatively few scenarios in which crypt() could return NULL, but contrib/chkpass would crash if it did. One practical case in which this could be an issue is if libc is configured to refuse to execute unapproved hashing algorithms (e.g., "FIPS mode"). (CVE-2014-0066) - Document risks of make check in the regression testing instructions Since the temporary server started by make check uses "trust" authentication, another user on the same machine could connect to it as database superuser, and then potentially exploit the privileges of the operating-system user who started the tests. A future release will probably incorporate changes in the testing procedure to prevent this risk, but some public discussion is needed first. So for the moment, just warn people against using make check when there are untrusted users on the same machine. (CVE-2014-0067) * The upstream tarballs no longer contain a plain HISTORY file, but point to the html documentation. Add 70-history.patch to note the location of these files in our changelog.gz file. Checksums-Sha1: 18ce010c283b3e8f10ce742eb995cf7ba82bbdc2 215672 libpq-dev_9.1.12-0ubuntu0.12.04_amd64.deb 6dd90fcc510ab38d474a0d8ec9a2c9831025b04b 95990 libpq5_9.1.12-0ubuntu0.12.04_amd64.deb 45519f7fbdca53e39607adefbe5c431389c3d331 39950 libecpg6_9.1.12-0ubuntu0.12.04_amd64.deb 53d4a01458ccd2788b89556b64057e980654af62 264758 libecpg-dev_9.1.12-0ubuntu0.12.04_amd64.deb 0887fe516b1a380dbfb93888fbdec239495132e3 12636 libecpg-compat3_9.1.12-0ubuntu0.12.04_amd64.deb 55a498b86e1c0bda2c756c8dbcbc9aa4b4cbd923 48852 libpgtypes3_9.1.12-0ubuntu0.12.04_amd64.deb 00cdd18e75a8797deacb2774384acd7742f6134d 4312168 postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 6a47f22cdf13caf96a378cb91b51f7c224fa8017 8644408 postgresql-9.1-dbg_9.1.12-0ubuntu0.12.04_amd64.deb 5236c2235d848c1b9a2a99ded600b6bc5fc7f9e9 959078 postgresql-client-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 8ab870a6788d572004d44d0d6c8ec046fe40f7d2 684126 postgresql-server-dev-9.1_9.1.12-0ubuntu0.12.04_amd64.deb cd8db2d4ff198cb792d51ebb003374b4ada5109f 464056 postgresql-contrib-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 56ac3bdfa2a74ff4503ad2788512f871adbccfd2 47246 postgresql-plperl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb f41819941c39440e468811ae5f470eaae42dd08a 43348 postgresql-plpython-9.1_9.1.12-0ubuntu0.12.04_amd64.deb d56a47d1b56d8604e247c91b746f199572f65150 43174 postgresql-plpython3-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 552dc0a3b036aeb9fa012b1441737c4444d30345 24918 postgresql-pltcl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 107467f898e73b5a6b58e0bb43c1a0071bb31c7b 5019253 postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64_translations.tar.gz Checksums-Sha256: 092e2a87749cbec13a006931ff1583bea79d5fd41ec23762c6e0230fa72fecd5 215672 libpq-dev_9.1.12-0ubuntu0.12.04_amd64.deb dcb8d00aa7810951d629ad9d9a42ccc1a6fc5ab9200526341dabdf4d6a4c535e 95990 libpq5_9.1.12-0ubuntu0.12.04_amd64.deb 71674634ecba4242f663507b998c89ee2441ae3aab3a8178f384e4c50887444e 39950 libecpg6_9.1.12-0ubuntu0.12.04_amd64.deb b387100220cca1abb5d4abf50b06c364c1782950825f2bbab763db6628a51c2d 264758 libecpg-dev_9.1.12-0ubuntu0.12.04_amd64.deb fbf10643b70aa9d081440300181304627c3d2f9f1f23538e95975938bf346ac3 12636 libecpg-compat3_9.1.12-0ubuntu0.12.04_amd64.deb 84193cd50e10758b08f631077846199b8d80d2c280f0ebadbab1cd312efb608b 48852 libpgtypes3_9.1.12-0ubuntu0.12.04_amd64.deb 3db1e08353d6a997d4dfd8e87ff87b626d2efb7a5b0c4695996937c898cc6965 4312168 postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 20642192d6b95e172bee67a00f5cffaf2789019176295b82aa5fed07d34d96d7 8644408 postgresql-9.1-dbg_9.1.12-0ubuntu0.12.04_amd64.deb e8fb804fed659ca34e43d3833aa7e8626f87b04f80b8c5fdb4275b2ba9da6d97 959078 postgresql-client-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 2cf66224801069b4d67c0cf38622d05b4aaca14366d675f17e590dff6099c5a3 684126 postgresql-server-dev-9.1_9.1.12-0ubuntu0.12.04_amd64.deb bce9064c888e52f076a09e6134f475e1a277599621cc87654dd78eaf68ea60f4 464056 postgresql-contrib-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 1139c3aff83ac7446b74bac7903b29a042b33e42565021710defe1efddac707c 47246 postgresql-plperl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 2887f7e3f971947a24797b80733893b30c999e0aa8b438b6794177c0913c1428 43348 postgresql-plpython-9.1_9.1.12-0ubuntu0.12.04_amd64.deb b04fe238a45db808146f520959b76438a29d655aff9bf933e25fb306271a6b20 43174 postgresql-plpython3-9.1_9.1.12-0ubuntu0.12.04_amd64.deb c9f9aa7d407a08e6992c893df6a3ae54124b582716297cd71f34c10c3db9f4f9 24918 postgresql-pltcl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb e3673bae4c48bd716f1ba549e0e0ff2ae89b43be71c1d31fec424bc6da2b6050 5019253 postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64_translations.tar.gz Files: 785f6dff1450cb8537221722a40c7e67 215672 libdevel optional libpq-dev_9.1.12-0ubuntu0.12.04_amd64.deb 8be718d88baa642cde1b3bdf8d0693d7 95990 libs optional libpq5_9.1.12-0ubuntu0.12.04_amd64.deb ee44ffc7be99e7bb3a2f7d02eec93f4b 39950 libs optional libecpg6_9.1.12-0ubuntu0.12.04_amd64.deb ceedb518e1e181dc2f5d0b34159e9f95 264758 libdevel optional libecpg-dev_9.1.12-0ubuntu0.12.04_amd64.deb f495812b515a6a41bade9f3c39813921 12636 libs optional libecpg-compat3_9.1.12-0ubuntu0.12.04_amd64.deb 8f851799978fa589dbcea4c513ab0182 48852 libs optional libpgtypes3_9.1.12-0ubuntu0.12.04_amd64.deb a63f18bba92708c4db992f49445beb7c 4312168 database optional postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 04842305adb4585de9f044afa3f0e618 8644408 debug extra postgresql-9.1-dbg_9.1.12-0ubuntu0.12.04_amd64.deb 8039394e7c231f13de55bad7604d78fe 959078 database optional postgresql-client-9.1_9.1.12-0ubuntu0.12.04_amd64.deb c6628630df55f737ee0f54d94827808d 684126 libdevel optional postgresql-server-dev-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 7c691b20d97c1caa3b1742b396aaa3fa 464056 database optional postgresql-contrib-9.1_9.1.12-0ubuntu0.12.04_amd64.deb fcf1387802c897d993c6940b15bfed45 47246 database optional postgresql-plperl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb ed70e4ed52f7688ef05ed951e930b9b9 43348 database optional postgresql-plpython-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 8657b6931871741bdb6a71c70b59f88e 43174 database optional postgresql-plpython3-9.1_9.1.12-0ubuntu0.12.04_amd64.deb dbd6c5c99b143c40e15e14895d861025 24918 database optional postgresql-pltcl-9.1_9.1.12-0ubuntu0.12.04_amd64.deb 987182f0d67a31cbcc807967046f784a 5019253 raw-translations - postgresql-9.1_9.1.12-0ubuntu0.12.04_amd64_translations.tar.gz Original-Maintainer: Martin Pitt