-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 May 2026 22:57:44 +0200
Source: postgresql-17
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-17 postgresql-17-dbgsym postgresql-client-17 postgresql-client-17-dbgsym postgresql-plperl-17 postgresql-plperl-17-dbgsym postgresql-plpython3-17 postgresql-plpython3-17-dbgsym postgresql-pltcl-17 postgresql-pltcl-17-dbgsym postgresql-server-dev-17 postgresql-server-dev-17-dbgsym
Architecture: s390x
Version: 17.10-0+deb13u1
Distribution: trixie-security
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 17
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-17 - The World's Most Advanced Open Source Relational Database
 postgresql-client-17 - front-end programs for PostgreSQL 17
 postgresql-plperl-17 - PL/Perl procedural language for PostgreSQL 17
 postgresql-plpython3-17 - PL/Python 3 procedural language for PostgreSQL 17
 postgresql-pltcl-17 - PL/Tcl procedural language for PostgreSQL 17
 postgresql-server-dev-17 - development files for PostgreSQL 17 server-side programming
Changes:
 postgresql-17 (17.10-0+deb13u1) trixie-security; urgency=medium
 .
   * New upstream version 17.10.
 .
     + Prevent unbounded recursion while processing startup packets
       (Michael Paquier)
 .
       A malicious client could crash the connected backend by alternating
       rejected SSL and GSS encryption requests indefinitely.
 .
       The PostgreSQL Project thanks Calif.io (in collaboration with Claude and
       Anthropic Research) for reporting this problem. (CVE-2026-6479)
 .
     + Fix assorted integer overflows in memory-allocation calculations
       (Tom Lane, Nathan Bossart, Heikki Linnakangas)
 .
       Various places were incautious about the possibility of integer overflow
       in calculations of how much memory to allocate.  Overflow would lead to
       allocating a too-small buffer which the caller would then write past the
       end of.  This would at least trigger server crashes, and probably could
       be exploited for arbitrary code execution.  In many but by no means all
       cases, the hazard exists only in 32-bit builds.
 .
       The PostgreSQL Project thanks Xint Code, Bruce Dang, Sven Klemm, and
       Pavel Kohout for reporting these problems. (CVE-2026-6473)
 .
     + Properly quote subscription names in pg_createsubscriber
       (Nathan Bossart)
 .
       The given subscription name was inserted into SQL commands without
       quoting, so that SQL injection could be achieved in the (perhaps
       unlikely) case that the subscription name comes from an untrusted
       source.
 .
       The PostgreSQL Project thanks Yu Kunpeng for reporting this problem.
       (CVE-2026-6476)
 .
     + Properly quote object names in logical replication origin checks
       (Pavel Kohout)
 .
       ALTER SUBSCRIPTION ... REFRESH PUBLICATION interpolated schema and
       relation names into SQL commands without quoting them, allowing
       execution of arbitrary SQL on the publisher.
 .
       The PostgreSQL Project thanks Pavel Kohout for reporting this problem.
       (CVE-2026-6638)
 .
     + Reject over-length options in ts_headline() (Michael Paquier)
 .
       The StartSel, StopSel and FragmentDelimiter strings must not exceed 32Kb
       in length, but this was not checked for.  An over-length value would
       typically crash the server.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against malicious time zone names in timeofday() and pg_strftime()
       (Tom Lane)
 .
       A crafted time zone setting could pass % sequences to snprintf(),
       potentially causing crashes or disclosure of server memory.  Another
       path to similar results was to overflow the limited-size output buffer
       used by pg_strftime().
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6474)
 .
     + When creating a multirange type, ensure the user has CREATE privilege on
       the schema specified for the multirange type (Jelte Fennema-Nio)
 .
       The multirange type can be put into a different schema than its parent
       range type, but we neglected to apply the required privilege check when
       doing so.
 .
       The PostgreSQL Project thanks Jelte Fennema-Nio for reporting this
       problem. (CVE-2026-6472)
 .
     + Use timing-safe string comparisons in authentication code
       (Michael Paquier)
 .
       Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking
       passwords, hashes, etc.  It is not known whether the data dependency of
       those functions is usefully exploitable in any of these places, but in
       the interests of safety, replace them.
 .
       The PostgreSQL Project thanks Joe Conway for reporting this problem.
       (CVE-2026-6478)
 .
     + Mark PQfn() as unsafe, and avoid using it within libpq (Nathan Bossart)
 .
       For a non-integral result type, PQfn() is not passed the size of the
       output buffer, so it cannot check that the data returned by the server
       will fit.  A malicious server could therefore overwrite client memory.
       This is unfixable without an API change, so mark the function as
       deprecated.  Internally to libpq, use a variant version that can apply
       the missing check.
 .
       The PostgreSQL Project thanks Yu Kunpeng and Martin Heistermann for
       reporting this problem. (CVE-2026-6477)
 .
     + Prevent path traversal in pg_basebackup and pg_rewind (Michael Paquier)
 .
       These applications failed to validate output file paths read from their
       input, so that a malicious source could overwrite any file writable by
       these applications.  Constrain where data can be written by rejecting
       paths that are absolute or contain parent-directory references.
 .
       The PostgreSQL Project thanks XlabAI Team of Tencent Xuanwu Lab and
       Valery Gubanov for reporting this problem. (CVE-2026-6475)
 .
     + Guard against field overflow within contrib/intarray's query_int type
       and contrib/ltree's ltxtquery type (Tom Lane)
 .
       Parsing of these query structures did not check for overflow of 16-bit
       fields, so that construction of an invalid query tree was possible.
       This can crash the server when executing the query.
 .
       The PostgreSQL Project thanks Xint Code for reporting this problem.
       (CVE-2026-6473)
 .
     + Guard against overly long values of contrib/ltree's lquery type
       (Michael Paquier)
 .
       Values with more than 64K items caused internal overflows, potentially
       resulting in stack smashes or wrong answers.
 .
       The PostgreSQL Project thanks Vergissmeinnicht, A1ex, and Jihe Wang for
       reporting this problem. (CVE-2026-6473)
 .
     + Prevent SQL injection and buffer overruns in contrib/spi
       (Nathan Bossart)
 .
       check_foreign_key() was insufficiently careful about quoting key values,
       and also used fixed-length buffers for constructing queries.  While this
       module is only meant as example code, it still shouldn't contain such
       dangerous errors.
 .
       The PostgreSQL Project thanks Nikolay Samokhvalov for reporting this
       problem. (CVE-2026-6637)
Checksums-Sha1:
 4c0fa550e071870c94bb1533a712b74ef1256d7f 16964 libecpg-compat3-dbgsym_17.10-0+deb13u1_s390x.deb
 2e0793365200397802faa90d1d0b3ac8f48b8482 20052 libecpg-compat3_17.10-0+deb13u1_s390x.deb
 d8cbbc5ad3379b2b93b3d6748ffc702758705a8d 234300 libecpg-dev-dbgsym_17.10-0+deb13u1_s390x.deb
 8ff163b8570bafdec7f407d25203efaf646b37de 303240 libecpg-dev_17.10-0+deb13u1_s390x.deb
 40445e0f3072294611e2d1d5e48af0f20ed0c16c 116104 libecpg6-dbgsym_17.10-0+deb13u1_s390x.deb
 45be78096152162eb5759b8b7427d153665c574a 65400 libecpg6_17.10-0+deb13u1_s390x.deb
 cbe3165c01344353bd6d6b6c0aeedd61709cb49e 92652 libpgtypes3-dbgsym_17.10-0+deb13u1_s390x.deb
 7625116af661184677c65b5f43f360595acbd26e 50432 libpgtypes3_17.10-0+deb13u1_s390x.deb
 be90e14e85e72715f17bbe869c63a4a92d4be95c 151060 libpq-dev_17.10-0+deb13u1_s390x.deb
 3e1002d33c347dfec790c61ee6e1e80993a604c0 299476 libpq5-dbgsym_17.10-0+deb13u1_s390x.deb
 e9be79bb17820cb1187a9eca7c551aa1bff2105d 224660 libpq5_17.10-0+deb13u1_s390x.deb
 f2fe7983c19569d38cf7d77385f0520bdab6a362 19405604 postgresql-17-dbgsym_17.10-0+deb13u1_s390x.deb
 eb28c5d86cd4941572e1c0051c8898aa93359f62 17214 postgresql-17_17.10-0+deb13u1_s390x-buildd.buildinfo
 60cf5338fc0e8f81427a2f9a922b492b0025aeae 17286280 postgresql-17_17.10-0+deb13u1_s390x.deb
 f1c9dd1ea71617767f0ff0aafa1053c53503e8e3 2869348 postgresql-client-17-dbgsym_17.10-0+deb13u1_s390x.deb
 c8e0a24d8782ad378dc1c3de982be7877c159216 2016188 postgresql-client-17_17.10-0+deb13u1_s390x.deb
 b7e988b10b3ced9305d9424fadbfe30f6b664d92 197688 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 9dffb917e1deaab8e3309d7c57af97b45c62e51a 88028 postgresql-plperl-17_17.10-0+deb13u1_s390x.deb
 9c1cfd605541d375f272601d4d42e31a3972663f 196636 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_s390x.deb
 d715556c1964880343c031f17719c22c717960b2 111572 postgresql-plpython3-17_17.10-0+deb13u1_s390x.deb
 41ac2d6f9359f94a7641dc758854af77bddcc700 84060 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 c5f115b229f2775a659ce95358118ba74dfe4fc0 45232 postgresql-pltcl-17_17.10-0+deb13u1_s390x.deb
 0a561cc81847623ae6ef57a03a1bc44e92775e2b 55532 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_s390x.deb
 b970a3b5c66076b92f61263f19cf664c3075b2fc 1327156 postgresql-server-dev-17_17.10-0+deb13u1_s390x.deb
Checksums-Sha256:
 8bf5ee99756e56c26cb45dd53a3c20a62df6b25025409e7476470d6a6b53fb20 16964 libecpg-compat3-dbgsym_17.10-0+deb13u1_s390x.deb
 22eadeac717f4e838c7fc03272e962ff6b682795a34dd1143a7379ff70e0b493 20052 libecpg-compat3_17.10-0+deb13u1_s390x.deb
 c5c6490347cdb11477c0cc80713e9066de2a744bd55cea0f56b160b11aaa0dd0 234300 libecpg-dev-dbgsym_17.10-0+deb13u1_s390x.deb
 ad4b790056551b7e5a3373d2b4b7f2acba965be72360c76acca2b1f358dd2290 303240 libecpg-dev_17.10-0+deb13u1_s390x.deb
 3ff9b8288bf3e39eb1720173c9a25aec3fa53ea8158519707e4f5eea47c921cf 116104 libecpg6-dbgsym_17.10-0+deb13u1_s390x.deb
 d560575123ea16d9e8ea52d75028bd866d85bada89b14baf93912469b1c27d87 65400 libecpg6_17.10-0+deb13u1_s390x.deb
 3b8e8ef76c80f22aba440daa080803cd0520cdef5e8cd2f1470ccbf7701c8446 92652 libpgtypes3-dbgsym_17.10-0+deb13u1_s390x.deb
 7045cc17d0f1a77ae42308012934179663f4087f4af58c5aece79a82c55ad3b0 50432 libpgtypes3_17.10-0+deb13u1_s390x.deb
 179dba969146a254cfe069d800dce752abbbe8b3b7909792814c3741259c2614 151060 libpq-dev_17.10-0+deb13u1_s390x.deb
 75748ee42226cf2fbd19eb6e886231752454d32e59c74950033bcecfcc8c9b4c 299476 libpq5-dbgsym_17.10-0+deb13u1_s390x.deb
 d6f180ea41f6d3ffb3d9982386bb8bc2c155b86ae883324cd161fa32e415ad97 224660 libpq5_17.10-0+deb13u1_s390x.deb
 f702261a21e3aac1eeff96b695b99711e0784c309f98823fd9cad795d634a32c 19405604 postgresql-17-dbgsym_17.10-0+deb13u1_s390x.deb
 43942962c99afe705672bdf2c72a78b3a49ca8b49a2e67c14fe72ce196924a16 17214 postgresql-17_17.10-0+deb13u1_s390x-buildd.buildinfo
 01e63a0d1708e845717667c5ba9cc20d8fa3494ba8b676fc5441d7809103703c 17286280 postgresql-17_17.10-0+deb13u1_s390x.deb
 30eacb496913cc576252f5903643f9105080ec5224465635d9480a4aab3dbfdc 2869348 postgresql-client-17-dbgsym_17.10-0+deb13u1_s390x.deb
 42b0c29b51aa7ef553be7df7f9447e517e3ad9207278341d543acdaafa6cf088 2016188 postgresql-client-17_17.10-0+deb13u1_s390x.deb
 986deada3b50611f4b0aee6c43650e4bc0f8d5cdb558d19e57cf362c219c8a71 197688 postgresql-plperl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 0ce223b4769de928d11da6677dc30a6ec517743891fb1dd5d242d84487560224 88028 postgresql-plperl-17_17.10-0+deb13u1_s390x.deb
 408945f6eb697285f503e9e675ce1f659ba819b39df306e1a280876ab952516b 196636 postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_s390x.deb
 510fe7d099739995e7e299b6e79eb0c64276fe4119fd3b15edca525ed1bf59ac 111572 postgresql-plpython3-17_17.10-0+deb13u1_s390x.deb
 fa8f3ee41e89ef68566735860735990ff2df22745bfffb95ae53484a85e32a4f 84060 postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 c132309d43837bdba1b3f61e8587a27fe598183798c07c2b760d8639193eff24 45232 postgresql-pltcl-17_17.10-0+deb13u1_s390x.deb
 6bb3c0146b1671618c717b20cab790ca24f57144dae182333214c878ae6e89e4 55532 postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_s390x.deb
 bed166aa081900d3aa9b4d4ada1820eb01999bb254af6d6c896ea1e692f3b8a9 1327156 postgresql-server-dev-17_17.10-0+deb13u1_s390x.deb
Files:
 d8996596390e40763ebc73ae894665be 16964 debug optional libecpg-compat3-dbgsym_17.10-0+deb13u1_s390x.deb
 2305fc03586797a9a21530cf7f618220 20052 libs optional libecpg-compat3_17.10-0+deb13u1_s390x.deb
 03beb02e6a47175136e81e618a20cd22 234300 debug optional libecpg-dev-dbgsym_17.10-0+deb13u1_s390x.deb
 761bcc148362c6fa95ecc8fe29d9104d 303240 libdevel optional libecpg-dev_17.10-0+deb13u1_s390x.deb
 8774a302a14dad719ea2ef9dad63ea7f 116104 debug optional libecpg6-dbgsym_17.10-0+deb13u1_s390x.deb
 a255f861943d69215cd351392cdb7abd 65400 libs optional libecpg6_17.10-0+deb13u1_s390x.deb
 66f679de140a584463b6b864e17c1c8d 92652 debug optional libpgtypes3-dbgsym_17.10-0+deb13u1_s390x.deb
 5b37cb0796adf06bdb2ba5a62672d827 50432 libs optional libpgtypes3_17.10-0+deb13u1_s390x.deb
 2aebeaf8f22e00bdbb725101fb34e453 151060 libdevel optional libpq-dev_17.10-0+deb13u1_s390x.deb
 438ff8482362fbb70138aa1f7537fa12 299476 debug optional libpq5-dbgsym_17.10-0+deb13u1_s390x.deb
 47ed9b01de93b6a001b4eadb8102e4c1 224660 libs optional libpq5_17.10-0+deb13u1_s390x.deb
 58bfaf829a74c83180ae4a5c5927b5d8 19405604 debug optional postgresql-17-dbgsym_17.10-0+deb13u1_s390x.deb
 dc3488b6833ee22119c1865c413422b0 17214 database optional postgresql-17_17.10-0+deb13u1_s390x-buildd.buildinfo
 177f3c17051179557fd7ac140fe0125e 17286280 database optional postgresql-17_17.10-0+deb13u1_s390x.deb
 312be09fa9779e67a0c49b04a6e0cb57 2869348 debug optional postgresql-client-17-dbgsym_17.10-0+deb13u1_s390x.deb
 9f76424c8f8ad68398d380e285588e6e 2016188 database optional postgresql-client-17_17.10-0+deb13u1_s390x.deb
 704af2f8b5a6b7d48da9a0cef624b62e 197688 debug optional postgresql-plperl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 c2a8631d9229d4450606891943885940 88028 database optional postgresql-plperl-17_17.10-0+deb13u1_s390x.deb
 eca41eb8c3d5c099446ff1b6fd6e2f7f 196636 debug optional postgresql-plpython3-17-dbgsym_17.10-0+deb13u1_s390x.deb
 1f59468538f4e25d5537da838ba0bd19 111572 database optional postgresql-plpython3-17_17.10-0+deb13u1_s390x.deb
 37e1723a94ce44ba2a1f5f3d1070cdbf 84060 debug optional postgresql-pltcl-17-dbgsym_17.10-0+deb13u1_s390x.deb
 2b6050b80cbe70746f48a5e96d5dcc6d 45232 database optional postgresql-pltcl-17_17.10-0+deb13u1_s390x.deb
 37d067543e22adb1244046278b499bc5 55532 debug optional postgresql-server-dev-17-dbgsym_17.10-0+deb13u1_s390x.deb
 557dca08dbaea127ca3a6f87497c4bf0 1327156 libdevel optional postgresql-server-dev-17_17.10-0+deb13u1_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=dZI+
-----END PGP SIGNATURE-----