[Pkg-postgresql-public] postgresql-10_10.1-1_source.changes ACCEPTED into unstable

[Debian FTP Masters]

Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 08 Nov 2017 10:40:59 +0100
Source: postgresql-10
Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-10 postgresql-10-dbg postgresql-client-10 postgresql-server-dev-10 postgresql-doc-10 postgresql-plperl-10 postgresql-plpython-10 postgresql-plpython3-10 postgresql-pltcl-10
Architecture: source
Version: 10.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian PostgreSQL Maintainers <pkg-postgresql-public at lists.alioth.debian.org>
Changed-By: Christoph Berg <christoph.berg at credativ.de>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 10
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-10 - object-relational SQL database, version 10 server
 postgresql-10-dbg - debug symbols for postgresql-10
 postgresql-client-10 - front-end programs for PostgreSQL 10
 postgresql-doc-10 - documentation for the PostgreSQL database management system
 postgresql-plperl-10 - PL/Perl procedural language for PostgreSQL 10
 postgresql-plpython-10 - PL/Python procedural language for PostgreSQL 10
 postgresql-plpython3-10 - PL/Python 3 procedural language for PostgreSQL 10
 postgresql-pltcl-10 - PL/Tcl procedural language for PostgreSQL 10
 postgresql-server-dev-10 - development files for PostgreSQL 10 server-side programming
Closes: 877264
Changes:
 postgresql-10 (10.1-1) unstable; urgency=medium
 .
   * New upstream version.
 .
     + Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions
       and RLS policies in all cases (Dean Rasheed)
 .
       The update path of INSERT ... ON CONFLICT DO UPDATE requires SELECT
       permission on the columns of the arbiter index, but it failed to check
       for that in the case of an arbiter specified by constraint name. In
       addition, for a table with row level security enabled, it failed to
       check updated rows against the table's SELECT policies (regardless of
       how the arbiter index was specified). (CVE-2017-15099)
 .
     + Fix crash due to rowtype mismatch in json{b}_populate_recordset()
       (Michael Paquier, Tom Lane)
 .
       These functions used the result rowtype specified in the FROM ... AS
       clause without checking that it matched the actual rowtype of the
       supplied tuple value.  If it didn't, that would usually result in a
       crash, though disclosure of server memory contents seems possible as
       well. (CVE-2017-15098)
 .
     + Fix BRIN index summarization to handle concurrent table extension
       correctly (Álvaro Herrera)
 .
       Previously, a race condition allowed some table rows to be omitted from
       the index.  It may be necessary to reindex existing BRIN indexes to
       recover from past occurrences of this problem.
 .
   * Remove empty conf.d directory on purge, even when postgresql-common was
     already removed. (Closes: #877264)
   * Remove docbook-dsssl and openjade from Build-Depends, not needed anymore.
Checksums-Sha1:
 b6b3048c68cd25ffa30d2182b8f02e88690ea623 3563 postgresql-10_10.1-1.dsc
 4adcfd527ec1652ecd7a22eb71541928d3d37277 19669989 postgresql-10_10.1.orig.tar.bz2
 c4374e5885b9f4d44dab858b8ca2ab748b79197a 17816 postgresql-10_10.1-1.debian.tar.xz
 62275eb6374375024bbdbad31a1b97b725cac736 8190 postgresql-10_10.1-1_source.buildinfo
Checksums-Sha256:
 aa3cd69fb9c863bf86c3a2e2bb3f01d1103b4294c62d058fd62d43c860ed714b 3563 postgresql-10_10.1-1.dsc
 3ccb4e25fe7a7ea6308dea103cac202963e6b746697366d72ec2900449a5e713 19669989 postgresql-10_10.1.orig.tar.bz2
 dccaf2da367e55c027b35a02679f35f7868e1f91cc3a208af01c263bd4f5a2fa 17816 postgresql-10_10.1-1.debian.tar.xz
 f3a199d7e941e57e2a1b0a007e0109e8c3b6a8d34a6137e44b994b66b43cce0a 8190 postgresql-10_10.1-1_source.buildinfo
Files:
 cc0f2021eb03022cf182b7fb8d774f19 3563 database optional postgresql-10_10.1-1.dsc
 0a92328d9970bfb85dcecd011817238a 19669989 database optional postgresql-10_10.1.orig.tar.bz2
 4cc96441e797c03c0d71dbec402d9b04 17816 database optional postgresql-10_10.1-1.debian.tar.xz
 ec468246f7fc7a00b7680916cbc9ec3c 8190 database optional postgresql-10_10.1-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=PSJN
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.