-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 10 Feb 2026 11:50:28 +0100
Source: postgresql-15
Binary: libecpg-compat3 libecpg-compat3-dbgsym libecpg-dev libecpg-dev-dbgsym libecpg6 libecpg6-dbgsym libpgtypes3 libpgtypes3-dbgsym libpq-dev libpq5 libpq5-dbgsym postgresql-15 postgresql-15-dbgsym postgresql-client-15 postgresql-client-15-dbgsym postgresql-plperl-15 postgresql-plperl-15-dbgsym postgresql-plpython3-15 postgresql-plpython3-15-dbgsym postgresql-pltcl-15 postgresql-pltcl-15-dbgsym postgresql-server-dev-15
Architecture: ppc64el
Version: 15.16-0+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-01) <buildd_ppc64el-ppc64el-conova-01@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 libecpg-compat3 - older version of run-time library for ECPG programs
 libecpg-dev - development files for ECPG (Embedded PostgreSQL for C)
 libecpg6   - run-time library for ECPG programs
 libpgtypes3 - shared library libpgtypes for PostgreSQL 15
 libpq-dev  - header files for libpq5 (PostgreSQL library)
 libpq5     - PostgreSQL C client library
 postgresql-15 - The World's Most Advanced Open Source Relational Database
 postgresql-client-15 - front-end programs for PostgreSQL 15
 postgresql-plperl-15 - PL/Perl procedural language for PostgreSQL 15
 postgresql-plpython3-15 - PL/Python 3 procedural language for PostgreSQL 15
 postgresql-pltcl-15 - PL/Tcl procedural language for PostgreSQL 15
 postgresql-server-dev-15 - development files for PostgreSQL 15 server-side programming
Changes:
 postgresql-15 (15.16-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 15.16.
 .
     + Guard against unexpected dimensions of oidvector/int2vector (Tom Lane)
 .
       These data types are expected to be 1-dimensional arrays containing no
       nulls, but there are cast pathways that permit violating those
       expectations.  Add checks to some functions that were depending on those
       expectations without verifying them, and could misbehave in consequence.
 .
       The PostgreSQL Project thanks Altan Birler for reporting this problem.
       (CVE-2026-2003)
 .
     + Harden selectivity estimators against being attached to operators that
       accept unexpected data types (Tom Lane)
 .
       contrib/intarray contained a selectivity estimation function that could
       be abused for arbitrary code execution, because it did not check that
       its input was of the expected data type.  Third-party extensions should
       check for similar hazards and add defenses using the technique intarray
       now uses. Since such extension fixes will take time, we now require
       superuser privilege to attach a non-built-in selectivity estimator to an
       operator.
 .
       The PostgreSQL Project thanks Daniel Firer, as part of zeroday.cloud,
       for reporting this problem. (CVE-2026-2004)
 .
     + Fix buffer overrun in contrib/pgcrypto's PGP decryption functions
       (Michael Paquier)
 .
       Decrypting a crafted message with an overlength session key caused a
       buffer overrun, with consequences as bad as arbitrary code execution.
 .
       The PostgreSQL Project thanks Team Xint Code, as part of zeroday.cloud,
       for reporting this problem. (CVE-2026-2005)
 .
     + Fix inadequate validation of multibyte character lengths
       (Thomas Munro, Noah Misch)
 .
       Assorted bugs allowed an attacker able to issue crafted SQL to overrun
       string buffers, with consequences as bad as arbitrary code execution.
       After these fixes, applications may observe invalid byte sequence for
       encoding errors when string functions process invalid text that has been
       stored in the database.
 .
       The PostgreSQL Project thanks Paul Gerste and Moritz Sanft, as part of
       zeroday.cloud, for reporting this problem. (CVE-2026-2006)
Checksums-Sha1:
 0d45d291676eb3d41fdd3455c99dc3d0858159f2 17584 libecpg-compat3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 62462d538cc990d59a09ab4efb24ddefb7c608a1 21992 libecpg-compat3_15.16-0+deb12u1_ppc64el.deb
 9201a2c840b210bfb8a732e04cfd7f8ef9b3b501 224136 libecpg-dev-dbgsym_15.16-0+deb12u1_ppc64el.deb
 0bec4b06adf75eb9d87771dc196278bdda78c194 303136 libecpg-dev_15.16-0+deb12u1_ppc64el.deb
 15c5c39ec11e09e4c218a0516517a53949482203 113936 libecpg6-dbgsym_15.16-0+deb12u1_ppc64el.deb
 55b67555d0ee54cd4526927fb275de647c7f41e9 68948 libecpg6_15.16-0+deb12u1_ppc64el.deb
 994d95caf6fab81f41d34ac42e45b727efa762dc 90908 libpgtypes3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 962bb2e624d3a515a82403ea4a8eb592ebc69292 52572 libpgtypes3_15.16-0+deb12u1_ppc64el.deb
 8afe56c0b133d1bbc950d8a582eab91ebb5d722b 161620 libpq-dev_15.16-0+deb12u1_ppc64el.deb
 5a968f02981f2e0c51ae81137defec2585af58e6 289128 libpq5-dbgsym_15.16-0+deb12u1_ppc64el.deb
 b639c39e75347841a577c8ba14b6fe3e5c4508d6 206320 libpq5_15.16-0+deb12u1_ppc64el.deb
 58c53c9a35807ff312563cef88120b38520d1de9 16816852 postgresql-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 a09b806e5d24161c007b1643a6dff5d7b5f959fd 17425 postgresql-15_15.16-0+deb12u1_ppc64el-buildd.buildinfo
 22e541079383305c074a43337c7a3135b9a07dce 17188792 postgresql-15_15.16-0+deb12u1_ppc64el.deb
 d46a1503b70c3df65b892fd8775ae851b8b95b50 2520660 postgresql-client-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 17c4674237d5f677be4eec876c2ea0b2dbfaabfa 1767056 postgresql-client-15_15.16-0+deb12u1_ppc64el.deb
 390cc83f2515fcaa1adf415ff82e9b605b30f297 186536 postgresql-plperl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 7442236b558348b7df364cb079d4f96a49bd33c9 94848 postgresql-plperl-15_15.16-0+deb12u1_ppc64el.deb
 c72a4049d067e561a73487521e97e2710386bf06 176940 postgresql-plpython3-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 9bacdf5c346b6379e69d66f6a43aff6588d7763a 115248 postgresql-plpython3-15_15.16-0+deb12u1_ppc64el.deb
 fc04305520d92ff27c3eb2f3f8d6c21fad0306c5 80008 postgresql-pltcl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 b6dd830f209caf6b95bbdb7668c48ecf80e3aaa9 46168 postgresql-pltcl-15_15.16-0+deb12u1_ppc64el.deb
 a4eeac45ab5d821efdd69b58a350812a0e72cb2d 1169344 postgresql-server-dev-15_15.16-0+deb12u1_ppc64el.deb
Checksums-Sha256:
 7eb05834b3799d00009af46570b822182ea6e93179998f0ab09b8b135cdbc92d 17584 libecpg-compat3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 1a172c08cbab02debafaf9e2f08598d57694be669bd7e14ab1167274ba197357 21992 libecpg-compat3_15.16-0+deb12u1_ppc64el.deb
 0a0f475e92f60d32747f9b2c3881806fd43d0fe0c20e94dc0f80cfb301097f73 224136 libecpg-dev-dbgsym_15.16-0+deb12u1_ppc64el.deb
 dcbc1699c593493d1d33eb67a672df54262203db15aeb457f8f4672dcfa1912b 303136 libecpg-dev_15.16-0+deb12u1_ppc64el.deb
 4ee47ff7e2b239418bb7daddd8ef734048cc7ee7ec4b704b1d6577382412eafd 113936 libecpg6-dbgsym_15.16-0+deb12u1_ppc64el.deb
 05536687955043c65d053c74e34418569284cecbe2125b0f7f65adeeff517ecf 68948 libecpg6_15.16-0+deb12u1_ppc64el.deb
 df8ec2c32054ae06c68d8c8f786d0eb5381253d9b69f277a53a6c2c1edd1e029 90908 libpgtypes3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 1493fca502c032efd64dee04a644bc4a4bd3b964ed434affb623d2209ee5b7a4 52572 libpgtypes3_15.16-0+deb12u1_ppc64el.deb
 2a9929cfec6d6a3ed5d006be193560f4f2d6b6551e8dcfc15c13d84d2b871897 161620 libpq-dev_15.16-0+deb12u1_ppc64el.deb
 4966c7fa87dff71e746829d90340e1d44b57253d0688be3ad59db72af2325210 289128 libpq5-dbgsym_15.16-0+deb12u1_ppc64el.deb
 df52e481599a5bd8053cd8f8c7c44ee88ac285e30b2a9c3742c6228209c27812 206320 libpq5_15.16-0+deb12u1_ppc64el.deb
 b362b8557aab29544794010a8f997d2f02e9f95f1465e1ad5e91c4a6981350af 16816852 postgresql-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 e5b100eec95c1504d66ae7ddaf67762d0fcb8ee6efa421048ef7ec9e644488ce 17425 postgresql-15_15.16-0+deb12u1_ppc64el-buildd.buildinfo
 a119c4611bb957ad898adf01d6ce7bf3a16bd45bfa9b0d458dca0cf75eefeadd 17188792 postgresql-15_15.16-0+deb12u1_ppc64el.deb
 4af609acb6f052a51bf82975bac620272f9dee4514e40ade62c7761865d535de 2520660 postgresql-client-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 0ceab1f058e721b7a06a475ab9f0ac9c34e71fb5b8dc5190178439f66644c832 1767056 postgresql-client-15_15.16-0+deb12u1_ppc64el.deb
 4f3c12322ebb6b9d0ff34a3810a02884f8a0d14269633ba5c1fc60588a77b32e 186536 postgresql-plperl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 7d9ac90ef7f720e6b379180d381a20e737a64e3aa9284d325e6acb0baac5f756 94848 postgresql-plperl-15_15.16-0+deb12u1_ppc64el.deb
 15d3a49318eb8ab28c19cea3242465ee3469a4abd2f5953e63ed7b4046aba0c0 176940 postgresql-plpython3-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 3304347f92ebd6a853a0039ef0f68f61ad09f883699ab2540212fae03985b073 115248 postgresql-plpython3-15_15.16-0+deb12u1_ppc64el.deb
 7b7759017bd0a7071d6a21b0fe945e194d565ba41f88f2b0e1f8c620ca2852ed 80008 postgresql-pltcl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 699fb641b4eb5f6d3784c0252faeeeeb9ad4e26b5fcdeaa9fe03dfbf60e0cdcd 46168 postgresql-pltcl-15_15.16-0+deb12u1_ppc64el.deb
 981874e4d1bdfd9f22252e7a5bf5f56039c97e6648b9fc44c48330f6a09ec4c3 1169344 postgresql-server-dev-15_15.16-0+deb12u1_ppc64el.deb
Files:
 485bd782399eb184cb6f3d9a00a94757 17584 debug optional libecpg-compat3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 c7ea6e035f7588436e4d06602124b4fd 21992 libs optional libecpg-compat3_15.16-0+deb12u1_ppc64el.deb
 f85865439be5d6d9b3949db60eae781a 224136 debug optional libecpg-dev-dbgsym_15.16-0+deb12u1_ppc64el.deb
 d24276514f21fdeaca6f6c4843c3e03c 303136 libdevel optional libecpg-dev_15.16-0+deb12u1_ppc64el.deb
 a0a5e40c76e1fff3c1b01a67491d21fe 113936 debug optional libecpg6-dbgsym_15.16-0+deb12u1_ppc64el.deb
 ac9c08d527a26af88b45c2ae0b400cf3 68948 libs optional libecpg6_15.16-0+deb12u1_ppc64el.deb
 f35b33174d60c0b52eb277e5df98b2bc 90908 debug optional libpgtypes3-dbgsym_15.16-0+deb12u1_ppc64el.deb
 9d3804fa9be5a37d681837577f1d8eff 52572 libs optional libpgtypes3_15.16-0+deb12u1_ppc64el.deb
 503b8360bf94b8a31ec6f9dccbeddc4d 161620 libdevel optional libpq-dev_15.16-0+deb12u1_ppc64el.deb
 39079a447519f6e481383b261da7db0a 289128 debug optional libpq5-dbgsym_15.16-0+deb12u1_ppc64el.deb
 a138866442f06b6c1e3e02e15b709acc 206320 libs optional libpq5_15.16-0+deb12u1_ppc64el.deb
 0fcf4019ac044f5064860f06c4f9a94c 16816852 debug optional postgresql-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 9dcd23a9063053b1c217f394f51eee95 17425 database optional postgresql-15_15.16-0+deb12u1_ppc64el-buildd.buildinfo
 ed62de1e45b3743065aa04d7c73e0dbf 17188792 database optional postgresql-15_15.16-0+deb12u1_ppc64el.deb
 9060149d37679fa70896c9b722d81134 2520660 debug optional postgresql-client-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 e4b1caf141086307698569ac6c9d25f3 1767056 database optional postgresql-client-15_15.16-0+deb12u1_ppc64el.deb
 b657eb29d253b501df43f825246aa62a 186536 debug optional postgresql-plperl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 75663d32595c252884febd1caaae90ad 94848 database optional postgresql-plperl-15_15.16-0+deb12u1_ppc64el.deb
 30815df24b421edf54d4028dd242579c 176940 debug optional postgresql-plpython3-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 6fb0bed06e5facfec51665fde2e95f67 115248 database optional postgresql-plpython3-15_15.16-0+deb12u1_ppc64el.deb
 9f4fdb737f5389a4466ace9ba4e75ce9 80008 debug optional postgresql-pltcl-15-dbgsym_15.16-0+deb12u1_ppc64el.deb
 95b3afcfb3acec10b27dcc478659d3c1 46168 database optional postgresql-pltcl-15_15.16-0+deb12u1_ppc64el.deb
 9de4c32c693c01617e03bf06bd540b34 1169344 libdevel optional postgresql-server-dev-15_15.16-0+deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=4N+f
-----END PGP SIGNATURE-----