-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 May 2026 22:57:44 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: arm64
Version: 17.10-0+deb13u1
Distribution: trixie-security
Urgency: medium
Maintainer: arm64 Build Daemon (arm-ubc-01) <buildd_arm64-arm-ubc-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Changes:
 postgresql-17 (17.10-0+deb13u1) trixie-security; urgency=medium
 .
   * New upstream version 17.10.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Properly quote subscription names in pg_createsubscriber
       (Nathan Bossart)
 .
       The given subscription name was inserted into SQL commands without
       quoting, so that SQL injection could be achieved in the (perhaps
       unlikely) case that the subscription name comes from an untrusted
       source.
 .
       The PostgreSQL Project thanks Yu Kunpeng for reporting this problem.
       (CVE-2026-6476)
 .
     + Properly quote object names in logical replication origin checks
       (Pavel Kohout)
 .
       ALTER SUBSCRIPTION ... REFRESH PUBLICATION interpolated schema and
       relation names into SQL commands without quoting them, allowing
       execution of arbitrary SQL on the publisher.
 .
       The PostgreSQL Project thanks Pavel Kohout for reporting this problem.
       (CVE-2026-6638)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 e72b065c61c05d9a7e74da861d9a1d39327e5858 16964 libecpg-compat3-dbgsym_17.10-0+deb13u1_arm64.deb
 3d473982ab615bd907ff1a37eb07a1cbaf5e9c4e 19864 libecpg-compat3_17.10-0+deb13u1_arm64.deb
 e131de57ae497448c5004e04c8ca350e04339c7f 271656 libecpg-dev-dbgsym_17.10-0+deb13u1_arm64.deb
 c16277a8d537e54da15dfcf727c75cc666b72f18 288940 libecpg-dev_17.10-0+deb13u1_arm64.deb
 15c631901e4fc2668b95a9508a519ea0a9930a07 115216 libecpg6-dbgsym_17.10-0+deb13u1_arm64.deb
 6f13ec236024ac29bd7441242937af016f481f1b 62660 libecpg6_17.10-0+deb13u1_arm64.deb
 db9267ae913c67665b858f8796eacde3f3726cd7 89320 libpgtypes3-dbgsym_17.10-0+deb13u1_arm64.deb
 0d13ec86144986461d5583167733fbe2536f2f5f 46296 libpgtypes3_17.10-0+deb13u1_arm64.deb
 bede365c1253264904d90d6bd80c066a9b7a5f2a 151200 libpq-dev_17.10-0+deb13u1_arm64.deb
 4467e50ca5c7e70a884175aae0130622d99bbd4c 297880 libpq5-dbgsym_17.10-0+deb13u1_arm64.deb
 c0402c9ffd62dcdb3ca93ac91f244abf9396d436 222708 libpq5_17.10-0+deb13u1_arm64.deb
 8b6303e27407e2053ab5f40616b026e9e37d959d 19630252 postgresql-17-dbgsym_17.10-0+deb13u1_arm64.deb
 23cf3591c79e03aedcd3de8022936c7c3a1b00bd 17342 postgresql-17_17.10-0+deb13u1_arm64-buildd.buildinfo
 46c11c9411ef78edfbf6232b93af1e703fa8f3c9 16149792 postgresql-17_17.10-0+deb13u1_arm64.deb
 e2191cf52e7c8fce76b2f07926d44b0b36b841ec 3092152 postgresql-client-17-dbgsym_17.10-0+deb13u1_arm64.deb
 62336228fbcb48ac1a1ef8d6dc5448bccb6d863a 1998416 postgresql-client-17_17.10-0+deb13u1_arm64.deb
 92bf5596c19fff263d445db95cef34cd8061df0d 198324 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 68c444746bc8162ad1897cad62259e5ce85fd8da 85064 postgresql-plperl-17_17.10-0+deb13u1_arm64.deb
 e04d8ca2cb850bd5df6c4afe7f28ac40f9e9f964 201144 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_arm64.deb
 6c6bdd8dda2b075bd3e08cc2f5afd9c86a8d45b1 109204 postgresql-plpython3-17_17.10-0+deb13u1_arm64.deb
 6cb876e9837fbda18d450d55c08228f853a10381 84544 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 5fce9507f1220513011d0345f7f914bf087a08d3 44252 postgresql-pltcl-17_17.10-0+deb13u1_arm64.deb
 0e95d4d62e497181d1ecffe42aff151ed5b941f2 56524 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_arm64.deb
 de3356e7c3f6d6a083b5821d84377976b2f5ece5 1316936 postgresql-server-dev-17_17.10-0+deb13u1_arm64.deb
Checksums-Sha256:
 0f5d65b2fd11bda8291ee16faf51be0fea7f7dc2d6f13cb806e459f86bbab68c 16964 libecpg-compat3-dbgsym_17.10-0+deb13u1_arm64.deb
 4fe8a94ab7184678fba1c9035dab1a9be45242a09a52409aa02d742726c46ed4 19864 libecpg-compat3_17.10-0+deb13u1_arm64.deb
 99ada263ccb4941f93069470d1d26d6891d4463e2244b00f66f0d57d11bbc787 271656 libecpg-dev-dbgsym_17.10-0+deb13u1_arm64.deb
 7d1cdc4f450c4eabfcf88de2d26df360d5ad90a6ca79daa777d651bc60481dbb 288940 libecpg-dev_17.10-0+deb13u1_arm64.deb
 c32f0cd0c0e3798b2b7cfebce729f065c3dc47165fd815cbc5dcae1e399b71e9 115216 libecpg6-dbgsym_17.10-0+deb13u1_arm64.deb
 44cdc5365248675e5027b507bc14876c63c6d6c3799ca9c1523fc69d6dc5c143 62660 libecpg6_17.10-0+deb13u1_arm64.deb
 3b85b5fde967e472ba913873851623b09170adb729e704a0870f7b49383f9d7b 89320 libpgtypes3-dbgsym_17.10-0+deb13u1_arm64.deb
 c0e3bd2adb81a18dfbc1a02625c63860f45f0997b4169db79476b2c32c9ef64a 46296 libpgtypes3_17.10-0+deb13u1_arm64.deb
 b031a5d4337db830cc73130d1dda1421a2b6a047b7ec9199bbef3afe0602c729 151200 libpq-dev_17.10-0+deb13u1_arm64.deb
 da250c809fa3072acc05c097bdc61aaec79372a083ecbcebeffdd39fcbe6085a 297880 libpq5-dbgsym_17.10-0+deb13u1_arm64.deb
 cf50c5b4b5c40283b4f9d95c6222eb36df2bdd88b5dd79626463a9af07235bd2 222708 libpq5_17.10-0+deb13u1_arm64.deb
 57971d8d9444d088df77f226c13c0b5fbc08e87c810549af9ac75380450ec4c6 19630252 postgresql-17-dbgsym_17.10-0+deb13u1_arm64.deb
 1d07b58df87dc002395d3966f7416aa65554004496110c94acbd9b14b31dd444 17342 postgresql-17_17.10-0+deb13u1_arm64-buildd.buildinfo
 81f2b2e5fb4e249a6d7b13e0e4d73458bd9986b64d9466dc557a53975dcd10e5 16149792 postgresql-17_17.10-0+deb13u1_arm64.deb
 f00aa03c8655449ad77f529f9a7f13c79c2364a065c8b76f1f1de1ea57ea70b7 3092152 postgresql-client-17-dbgsym_17.10-0+deb13u1_arm64.deb
 0e5744f55523de8680d94abf44f2f61af3b6665658520db6936fe68dcdceac7a 1998416 postgresql-client-17_17.10-0+deb13u1_arm64.deb
 1862656650e09e37bbc8aca4c5f49b72f45fcf8e107d1c92f92ada004dd62e69 198324 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 f6943157ff3963798f6a3386498e983fe3a1005517c7a2b2098e51e2e7876c83 85064 postgresql-plperl-17_17.10-0+deb13u1_arm64.deb
 8a2c780a8b9534426ede4d0a0d5678bea350bd5b1e1f7c865b1570fd943064a5 201144 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_arm64.deb
 08f4d31b53fe63a4124932ba10bf22986fc01c19c9ae044e252627843aa45e96 109204 postgresql-plpython3-17_17.10-0+deb13u1_arm64.deb
 edfacfb9b9afa4604e12edd99810b916f4fab92828d41325ad823f79b0e736fa 84544 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 944759f4078a989147397c487fe54d1b422db5446306dd2b41916cc4cc75f833 44252 postgresql-pltcl-17_17.10-0+deb13u1_arm64.deb
 b3b98b96468dfa5f94f0fdfd8e29ec2c20f13d0fbf00f9e4e2850ec440902d37 56524 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_arm64.deb
 ceebba71f495f887f6296c674ef55b36bf9a52f4d8569cd2932fa03d8bcaf02d 1316936 postgresql-server-dev-17_17.10-0+deb13u1_arm64.deb
Files:
 8a056423429d10e470fafe1a005a1a19 16964 debug optional libecpg-compat3-dbgsym_17.10-0+deb13u1_arm64.deb
 ee1efe2370036a1f58823a9ebc822fdb 19864 libs optional libecpg-compat3_17.10-0+deb13u1_arm64.deb
 522d94e1712bf76e9d700a7cfea16dec 271656 debug optional libecpg-dev-dbgsym_17.10-0+deb13u1_arm64.deb
 2b7c5dc38a35d79065f4dfbc29d6997c 288940 libdevel optional libecpg-dev_17.10-0+deb13u1_arm64.deb
 78096c02d5868c0649eea43297920c78 115216 debug optional libecpg6-dbgsym_17.10-0+deb13u1_arm64.deb
 aa05bbea3345b1cb45d2ab6d3f401491 62660 libs optional libecpg6_17.10-0+deb13u1_arm64.deb
 a12247c744d7900260f3ff6abbe8527b 89320 debug optional libpgtypes3-dbgsym_17.10-0+deb13u1_arm64.deb
 1b01827ab0ead2d239497e3bb042777d 46296 libs optional libpgtypes3_17.10-0+deb13u1_arm64.deb
 526df5be9000fc52fb3ec058f7a894fb 151200 libdevel optional libpq-dev_17.10-0+deb13u1_arm64.deb
 00db30673ce1e0e42300c53480d86bd2 297880 debug optional libpq5-dbgsym_17.10-0+deb13u1_arm64.deb
 b042c4796eb2b5bb5842bdef910e2349 222708 libs optional libpq5_17.10-0+deb13u1_arm64.deb
 39a8538c51fbd02d3fb5a61933cbb50d 19630252 debug optional postgresql-17-dbgsym_17.10-0+deb13u1_arm64.deb
 b09e9f5d6f130d6f3d5df06d4a9f6204 17342 database optional postgresql-17_17.10-0+deb13u1_arm64-buildd.buildinfo
 7cf8a4b9e88a80a13be76a0d961244b0 16149792 database optional postgresql-17_17.10-0+deb13u1_arm64.deb
 15f8045b02c63dcc5538188c4f6aa8af 3092152 debug optional postgresql-client-17-dbgsym_17.10-0+deb13u1_arm64.deb
 de62ae2a8b5e753815066b0e9d5c3e0d 1998416 database optional postgresql-client-17_17.10-0+deb13u1_arm64.deb
 2e18d1108b9dcfe9e5ad955e46a60255 198324 debug optional postgresql-plperl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 93d4475fb4cd87a9ec9be7cab68211ed 85064 database optional postgresql-plperl-17_17.10-0+deb13u1_arm64.deb
 1b0e380109c657e7fcb11b655c2abed2 201144 debug optional postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_arm64.deb
 362084a86778700f0a79f1daefefe8e0 109204 database optional postgresql-plpython3-17_17.10-0+deb13u1_arm64.deb
 397fe93fc830685ef6b7254553eda501 84544 debug optional postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_arm64.deb
 75f1ac4e2f2338acc089e3fa3830a95a 44252 database optional postgresql-pltcl-17_17.10-0+deb13u1_arm64.deb
 6211f989ff3c50a39c7c535ed5bb2e0a 56524 debug optional postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_arm64.deb
 c08479f7bbe78f429f58bf02b6b32ef3 1316936 libdevel optional postgresql-server-dev-17_17.10-0+deb13u1_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE0Ha//LlsGOpbQ/H4xqCFmsOWgoYFAmoDPlIACgkQxqCFmsOW
goajLQ/7BBJYACoP2RznWXIoL/jY2ycvA1eMDxV0WM+WYJb0XqCg6SDPPzB4+ggg
ylvTZ50v3Ev6VqUUM1DPXx9m/XjYF2hvnbrob6Ea1kE8Ks7gSx5up6L2Njg54Iyu
wCUbMu5bzxS15NREa5Mv3hS1Qf45d+/rICyMG/A2skr9B5uIZlVUTPMBat9Nzs0+
5HZXOIJnFFCRbCosNeQ2WCSh9F0RAgzysLnISeShv3fXo02YRi7ish3e8Y4Fg7m6
TISjIb2K4m22x0Lc13DipxzrHBOH9x18QimSMQfI40W01kx3uPU1V7pPE8ES+EYj
04C38EQWuV5bf7+bDAiHm5pG62/Jd70+GwN6+B6eB1Fgxa60MZhSFOuo9ztcgf06
YkBQ7ez++ZDB/NNo8acj2XOsoQ86uvAc8iUAbDOZekPC1JJOTWvIh4pXobHDn7G6
5bMgtc8XHdWFzAeP5EbxsZNvz+/T2mFABUb1hM+pa4rC4kXJtzuzX7bNq9qgoMgj
iCDUH1z4BlEUYK5hA8xFNJAU8eqTnwqUh5H2V3ztvHrDGLsWP4LgYvkEHc7spz2e
dUVkK+ZQrOnB0CzkQsUMGkzBUGcvc68fio4nvbFKfbi4ck+tEdCCfhUCWoZqp88v
nJxlClMPXfJ9xPCJVu3WBJNNfpgbM2fn7xXXp/C6+OdJNYQj6Oc=
=ZTQ1
-----END PGP SIGNATURE-----