-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 12 May 2026 12:51:10 +0200
Source: postgresql-15
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-15 postgresql-15-dbgsym postgresql-client-15 postgresql-client-15-dbgsym postgresql-plperl-15 postgresql-plperl-15-dbgsym postgresql-plpython3-15 postgresql-plpython3-15-dbgsym postgresql-pltcl-15 postgresql-pltcl-15-dbgsym postgresql-server-dev-15
Architecture: mips64el
Version: 15.18-0+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 15
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-15 - The World's Most Advanced Open Source Relational Database
 postgresql-client-15 - front-end programs for PostgreSQL 15
 postgresql-plperl-15 - PL/Perl procedural language for PostgreSQL 15
 postgresql-plpython3-15 - PL/Python 3 procedural language for PostgreSQL 15
 postgresql-pltcl-15 - PL/Tcl procedural language for PostgreSQL 15
 postgresql-server-dev-15 - development files for PostgreSQL 15 server-side programming
Changes:
 postgresql-15 (15.18-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 15.18.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 a64a3cbc389efdc47591f43d72272f1b66f7c4bc 18100 libecpg-compat3-dbgsym_15.18-0+deb12u1_mips64el.deb
 f0f5d02ef7d32318e789c52be43d1effad3211a4 22532 libecpg-compat3_15.18-0+deb12u1_mips64el.deb
 47fb1de042e7d1a8315952375a3dcabe9c53a821 254008 libecpg-dev-dbgsym_15.18-0+deb12u1_mips64el.deb
 45ce361d49b48703f509f795cf4d1e6d0e9d8199 292712 libecpg-dev_15.18-0+deb12u1_mips64el.deb
 d415b48a5e575e49d5632cd8767add2f0610bbed 117640 libecpg6-dbgsym_15.18-0+deb12u1_mips64el.deb
 15ad896f138db4e5d5bf626bcfcf6ccfdb4867c9 64040 libecpg6_15.18-0+deb12u1_mips64el.deb
 174641bafc65a68294a66a70d45db8f93855ea6f 92580 libpgtypes3-dbgsym_15.18-0+deb12u1_mips64el.deb
 935002945704e3df87cbf19c9bdf5216613ac572 49048 libpgtypes3_15.18-0+deb12u1_mips64el.deb
 9746dd6f18148f6a2b1c48e26d66fcd4cab14beb 156992 libpq-dev_15.18-0+deb12u1_mips64el.deb
 59624fcfcbf6663fa7b1322360133d5140d89af5 291312 libpq5-dbgsym_15.18-0+deb12u1_mips64el.deb
 bac602a7ad37978d34c69db55f99df0948a92aa9 185440 libpq5_15.18-0+deb12u1_mips64el.deb
 e317f996e4a6067a9e268071aac6d5bbc0a97189 17206780 postgresql-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 9063e69ce5c4d4eea86c571e8453152d0aba15c4 17293 postgresql-15_15.18-0+deb12u1_mips64el-buildd.buildinfo
 33a7c255c49d2b24c6390c3815bcdbdc06719eaf 16429620 postgresql-15_15.18-0+deb12u1_mips64el.deb
 59e1a82d6672aba3439a61e5d12ddda4ba3ead1f 2655256 postgresql-client-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 f3bc2e5b812a25715e053172b2a1b6f24dfaf47b 1680964 postgresql-client-15_15.18-0+deb12u1_mips64el.deb
 8d274c8a66b3226b2d0bdcfe2f0c076e31d3dd89 190256 postgresql-plperl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 d6da632d9b9611e165bbc271764cd0e36e83d3bd 91288 postgresql-plperl-15_15.18-0+deb12u1_mips64el.deb
 7681dcb0e902ea5c1e356eda2853b6c3a7074d0b 181732 postgresql-plpython3-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 21124d1922ee43d65d134428400bfa0e032ec95e 110060 postgresql-plpython3-15_15.18-0+deb12u1_mips64el.deb
 edacb475857d7177e7204f9e234e48b62ecbca77 81412 postgresql-pltcl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 5272853ed8a8c0fcfd707e9f79176c5108377b67 45404 postgresql-pltcl-15_15.18-0+deb12u1_mips64el.deb
 4819692f0fd941c03b6ee33a3e7f5a425c6612e6 1165268 postgresql-server-dev-15_15.18-0+deb12u1_mips64el.deb
Checksums-Sha256:
 6453402d0b8dc0411b6e899c5674aa5d11bfe3ddb820c395e966782917262bf9 18100 libecpg-compat3-dbgsym_15.18-0+deb12u1_mips64el.deb
 827e2e02d6e0e4bd63efc6f5cf13321b6bd333ae1e4aac4e76dd880b7bed1f92 22532 libecpg-compat3_15.18-0+deb12u1_mips64el.deb
 0faf7693a027a2a1f881b8603f3bb2df4bbc3cceec47cf39eb0cb53702d61e21 254008 libecpg-dev-dbgsym_15.18-0+deb12u1_mips64el.deb
 363761bc637435af99a9f40a3157f819d72d9824b3294cdb46af5f38e031bcb6 292712 libecpg-dev_15.18-0+deb12u1_mips64el.deb
 3f640f1b564864cb36e720d1b511304f0df69ff96d10a809bac06b549dd72737 117640 libecpg6-dbgsym_15.18-0+deb12u1_mips64el.deb
 1dd8f10f62034a19adfb886e952c688c8034a08bee9b09f8bfd005e5f3bdc7dc 64040 libecpg6_15.18-0+deb12u1_mips64el.deb
 e718be24c380e0b6852ad623bfa27a495d914c97dee9688d992d4fe01767e75c 92580 libpgtypes3-dbgsym_15.18-0+deb12u1_mips64el.deb
 4d1ebcd5165bc3336f528179fb7fb2227d30316ea393249863d2052ac0811e5f 49048 libpgtypes3_15.18-0+deb12u1_mips64el.deb
 e92f8135c2129a36a1e7fff5059dbb57b1a094b95a52b3c04c59cfdd19768588 156992 libpq-dev_15.18-0+deb12u1_mips64el.deb
 9d63c91100c9dd7f3d43bec4204114cf33ea5a7b1cbafbc7602aeef56a83d0f5 291312 libpq5-dbgsym_15.18-0+deb12u1_mips64el.deb
 96192dd92a06e55e34c29476c0180048f447f75d8ea857c36cbd27059f88a325 185440 libpq5_15.18-0+deb12u1_mips64el.deb
 725af8efabcf31f1c978ac24f1d560560cf54399a1be2e8c3ae3b6ccc2f91d30 17206780 postgresql-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 c479afcf887850591d7e6ad0c92a5de7f0f8e33cf7d99a3f952327e48f3e90a5 17293 postgresql-15_15.18-0+deb12u1_mips64el-buildd.buildinfo
 59f30d24293be15da95ac899a805e4cf5010d112993180479e490fbf95b62794 16429620 postgresql-15_15.18-0+deb12u1_mips64el.deb
 7a6b480972e149bd94e93670141474d18b83f12a5a00c0dc6bb7b6b2f133c8e8 2655256 postgresql-client-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 ca2d8b066ae711084b8862f78c889cc10a3f6712bd6d3d818350cee0217b2f3e 1680964 postgresql-client-15_15.18-0+deb12u1_mips64el.deb
 569a8e11d8dc9681c938a44f32ebf9827f558abf695663ec7ed186ee74150be9 190256 postgresql-plperl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 c050a16e80cc4f377c98e00bbdbf4a1b4c8f819b3acfd6d73bfc88c868e6c064 91288 postgresql-plperl-15_15.18-0+deb12u1_mips64el.deb
 06004aedc433556591b3addfa90ac382d4f69f19b8d3624e7a5a75fa2100604e 181732 postgresql-plpython3-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 694efd20588f5267e59024a5577abebf23b9df95baefd1ce14c3198d84349610 110060 postgresql-plpython3-15_15.18-0+deb12u1_mips64el.deb
 d0bc4623affad43786fe3fa2a26aae95e50505a40e3535b6cbae503bf77da0d8 81412 postgresql-pltcl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 2241d4151cc370daaae3a29372fe4deddc28d27a8561916817f9559da6d25d7a 45404 postgresql-pltcl-15_15.18-0+deb12u1_mips64el.deb
 798ab8206e44b823a8cf523b03af00143c6af05cccdb05c98bc3117647db4dd4 1165268 postgresql-server-dev-15_15.18-0+deb12u1_mips64el.deb
Files:
 f984b845f6b3dd93366f36d4bbdff80a 18100 debug optional libecpg-compat3-dbgsym_15.18-0+deb12u1_mips64el.deb
 c7e8fb884867a12c08a478d020290d33 22532 libs optional libecpg-compat3_15.18-0+deb12u1_mips64el.deb
 7fb9a9908189443000451c32c798abdb 254008 debug optional libecpg-dev-dbgsym_15.18-0+deb12u1_mips64el.deb
 c23bb6461760e101071afe2775315bd9 292712 libdevel optional libecpg-dev_15.18-0+deb12u1_mips64el.deb
 43c2d43333803a3c482fefa416d3be3a 117640 debug optional libecpg6-dbgsym_15.18-0+deb12u1_mips64el.deb
 b16169bacf76987ac4f2b752d5282063 64040 libs optional libecpg6_15.18-0+deb12u1_mips64el.deb
 3543027dddeabda4c92531341e107581 92580 debug optional libpgtypes3-dbgsym_15.18-0+deb12u1_mips64el.deb
 d14c5ad1f52e0150478420a07bb01d8f 49048 libs optional libpgtypes3_15.18-0+deb12u1_mips64el.deb
 7a70fe49a31805251b6c55d7b6686c94 156992 libdevel optional libpq-dev_15.18-0+deb12u1_mips64el.deb
 a0c82d6c7002da816dca001a8a81cd4b 291312 debug optional libpq5-dbgsym_15.18-0+deb12u1_mips64el.deb
 4432bea97cb9b75dfce6c63a6a1c7322 185440 libs optional libpq5_15.18-0+deb12u1_mips64el.deb
 69c6e35bb661baa5db4ae2f086c830a6 17206780 debug optional postgresql-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 3ca9755990a76937e0649e2e41300ad4 17293 database optional postgresql-15_15.18-0+deb12u1_mips64el-buildd.buildinfo
 6fe3e0abe36ac46d354fd21ba0577b7e 16429620 database optional postgresql-15_15.18-0+deb12u1_mips64el.deb
 e6e365187eaa385940284ff75c43c733 2655256 debug optional postgresql-client-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 323a0581fb04875a46ddd518f44f2236 1680964 database optional postgresql-client-15_15.18-0+deb12u1_mips64el.deb
 2248f8db20a0a471b8d78a4613efa3de 190256 debug optional postgresql-plperl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 2be59e47484ef4e9fb824aac4cc3f565 91288 database optional postgresql-plperl-15_15.18-0+deb12u1_mips64el.deb
 843546ee2f2c170862f132e3727b9616 181732 debug optional postgresql-plpython3-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 c5144bcdde2b9e760975259d674585bd 110060 database optional postgresql-plpython3-15_15.18-0+deb12u1_mips64el.deb
 b91ccd17eda7789bfb6aeeed93863051 81412 debug optional postgresql-pltcl-15-dbgsym_15.18-0+deb12u1_mips64el.deb
 5b76291da23775f3bcc92d6dd1c03d24 45404 database optional postgresql-pltcl-15_15.18-0+deb12u1_mips64el.deb
 87e92988f2cf36fdc5550332294f35b1 1165268 libdevel optional postgresql-server-dev-15_15.18-0+deb12u1_mips64el.deb

-----BEGIN PGP SIGNATURE-----
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=ffqO
-----END PGP SIGNATURE-----