[Pkg-postgresql-public] PostgreSQL 8.4.16 for squeeze [CVE-2013-0255]

Martin Pitt mpitt at debian.org
Sat Feb 16 21:16:24 UTC 2013


Hello security team,

about a week ago PostgreSQL published new microreleases which fix a
local DoS: http://www.postgresql.org/about/news/1446/ They also carry
the usual set of bug fixes.

8.4.16 has been in unstable for 8 days and already unblocked for
testing migration, and there have been no regression reports upstream
or in Debian.

I now prepared the corresponding update for Squeeze:

  http://people.debian.org/~mpitt/psql/squeeze/

This passes the upstream and postgresql-common integration tests.

This directory also contains the full debdiff:

  http://people.debian.org/~mpitt/psql/squeeze/postgresql-8.4_8.4.16-0squeeze1.debdiff.gz

as well as a filtered one which is dramatically smaller:

  http://people.debian.org/~mpitt/psql/squeeze/postgresql-8.4_8.4.16-0squeeze1.filtered-debdiff

This has .po files, documentation which only bumps the version,
Windows specific build system, and the rather large diff from the
bison output removed (the bison input .y files are still there, of
course).

OK to upload?

Thanks,

Martin

-- 
Martin Pitt                        | http://www.piware.de
Ubuntu Developer (www.ubuntu.com)  | Debian Developer  (www.debian.org)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-postgresql-public/attachments/20130216/4a5f1dc0/attachment.pgp>


More information about the Pkg-postgresql-public mailing list