postgresql-9.1_9.1.6-1~bpo60+1_amd64.changes ACCEPTED into squeeze-backports
Accepted:
libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb
libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg-dev_9.1.6-1~bpo60+1_amd64.deb
libecpg6_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libecpg6_9.1.6-1~bpo60+1_amd64.deb
libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpgtypes3_9.1.6-1~bpo60+1_amd64.deb
libpq-dev_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpq-dev_9.1.6-1~bpo60+1_amd64.deb
libpq5_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/libpq5_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1.debian.tar.gz
postgresql-9.1_9.1.6-1~bpo60+1.dsc
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1.dsc
postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-9.1_9.1.6.orig.tar.bz2
to main/p/postgresql-9.1/postgresql-9.1_9.1.6.orig.tar.bz2
postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
to main/p/postgresql-9.1/postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb
postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb
postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
to main/p/postgresql-9.1/postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb
Changes:
postgresql-9.1 (9.1.6-1~bpo60+1) squeeze-backports; urgency=low
.
* Rebuild for squeeze-backports.
.
postgresql-9.1 (9.1.6-1) unstable; urgency=medium
.
* Urgency medium because of data loss bug fix.
* New upstream bug fix release:
- Fix persistence marking of shared buffers during WAL replay.
This mistake can result in buffers not being written out during
checkpoints, resulting in data corruption if the server later
crashes without ever having written those buffers. Corruption can
occur on any server following crash recovery, but it is
significantly more likely to occur on standby slave servers since
those perform much more WAL replay. There is a low probability of
corruption of btree and GIN indexes. There is a much higher
probability of corruption of table "visibility maps". Fortunately,
visibility maps are non-critical data in 9.1, so the worst
consequence of such corruption in 9.1 installations is transient
inefficiency of vacuuming. Table data proper cannot be corrupted by
this bug.
While no index corruption due to this bug is known to have occurred
in the field, as a precautionary measure it is recommended that
production installations "REINDEX" all btree and GIN indexes at a
convenient time after upgrading to 9.1.6.
Also, if you intend to do an in-place upgrade to 9.2.X, before
doing so it is recommended to perform a "VACUUM" of all tables
while having vacuum_freeze_table_age set to zero. This will ensure
that any lingering wrong data in the visibility maps is corrected
before 9.2.X can depend on it. vacuum_cost_delay can be adjusted to
reduce the performance impact of vacuuming, while causing it to
take longer to finish.
- See HISTORY/changelog.gz for the other bug fixes.
* debian/rules: Compress all binaries with xz. Thanks Cyril Brulebois!
(Closes: #688678)
.
postgresql-9.1 (9.1.5-2) unstable; urgency=low
.
* debian/rules: Re-enable hardening functions (regression from 9.1.3-2 when
hardening-wrapper is not installed). Use "hardening=all", but disable
"pie" (as that's not compatible with -fPIC) and add -pie to CFLAGS
explicitly. Also drop the explicit "-Wl,-z,now" linker option, as this is
now implied with "all". (LP: #1039618)
* Fix upgrades from older 9.1 releases in stable Ubuntu -updates/-security
releasese. The strict "<< 9.1.4-2~" check for moving pg_basebackup.1.gz is
not sufficient, as Ubuntu stables have newer upstream releases by now.
- debian/control: Move Breaks/Replaces: from static version to
${binary:Version}.
- debian/postgresql-9.1.preinst: Also fix the alternatives when upgrading
from a -0something version.
- (LP: #1043449)
.
postgresql-9.1 (9.1.5-1) unstable; urgency=medium
.
* Urgency medium due to security fixes and bug fixes which should reach
Wheezy quickly.
* New upstream bug fix/security release:
- Prevent access to external files/URLs via XML entity references.
xml_parse() would attempt to fetch external files or URLs as needed
to resolve DTD and entity references in an XML value, thus allowing
unprivileged database users to attempt to fetch data with the
privileges of the database server. While the external data wouldn't
get returned directly to the user, portions of it could be exposed
in error messages if the data didn't parse as valid XML; and in any
case the mere ability to check existence of a file might be useful
to an attacker. (CVE-2012-3489)
- Prevent access to external files/URLs via "contrib/xml2"'s
xslt_process().
libxslt offers the ability to read and write both files and URLs
through stylesheet commands, thus allowing unprivileged database
users to both read and write data with the privileges of the
database server. Disable that through proper use of libxslt's
security options. (CVE-2012-3488)
Also, remove xslt_process()'s ability to fetch documents and
stylesheets from external files/URLs. While this was a documented
"feature", it was long regarded as a bad idea. The fix for
CVE-2012-3489 broke that capability, and rather than expend effort
on trying to fix it, we're just going to summarily remove it.
- Lots of other bug fixes, see HISTORY/changelog.gz.
.
postgresql-9.1 (9.1.4-3) unstable; urgency=medium
.
Urgency medium: Trivial changes, and fixes RC bug.
.
[ Christoph Berg ]
* debian/source/options: Ignore test suite .sql files, to fix building
twice in a row; ignore .bzr-builddeb/default.conf so bzr checkouts can be
built using dpkg-buildpackage.
.
[ Martin Pitt ]
* debian/postgresql-9.1.postrm: Do not remove the directories
/var/{lib,log}/postgresql/, they are owned by the postgresql-common
package. (Closes: #681966)
Override entries for your package:
libecpg-compat3_9.1.6-1~bpo60+1_amd64.deb - optional libs
libecpg-dev_9.1.6-1~bpo60+1_amd64.deb - optional libdevel
libecpg6_9.1.6-1~bpo60+1_amd64.deb - optional libs
libpgtypes3_9.1.6-1~bpo60+1_amd64.deb - optional libs
libpq-dev_9.1.6-1~bpo60+1_amd64.deb - optional libdevel
libpq5_9.1.6-1~bpo60+1_amd64.deb - optional libs
postgresql-9.1-dbg_9.1.6-1~bpo60+1_amd64.deb - extra debug
postgresql-9.1_9.1.6-1~bpo60+1.dsc - source database
postgresql-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-client-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-contrib-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-doc-9.1_9.1.6-1~bpo60+1_all.deb - optional doc
postgresql-plperl-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-plpython-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-plpython3-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-pltcl-9.1_9.1.6-1~bpo60+1_amd64.deb - optional database
postgresql-server-dev-9.1_9.1.6-1~bpo60+1_amd64.deb - optional libdevel
Announcing to debian-backports-changes@lists.debian.org
Thank you for your contribution to backports.debian.org archive.
ibution to backports.debian.org archive.
Reply to: