-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 13 May 2004 11:00:07 +0200
Source: postgresql
Binary: libpgtcl postgresql pgaccess odbc-postgresql libpgperl postgresql-client libecpg3 postgresql-contrib postgresql-dev postgresql-doc python-pygresql libpgsql2
Architecture: alpha
Version: 7.2.1-2woody5
Distribution: stable-security
Urgency: low
Maintainer: Debian/Alpha Build Daemon <buildd@lully.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 libecpg3   - Shared library libecpg.so.3 for PostgreSQL
 libpgperl  - Perl modules for PostgreSQL.
 libpgsql2  - Shared library libpq.so.2 for PostgreSQL
 libpgtcl   - Tcl/Tk library and front-end for PostgreSQL.
 odbc-postgresql - ODBC support for PostgreSQL
 pgaccess   - Tk/Tcl front-end for PostgreSQL database
 postgresql - Object-relational SQL database, descended from POSTGRES.
 postgresql-client - Front-end programs for PostgreSQL
 postgresql-contrib - Additional facilities for PostgreSQL
 postgresql-dev - Header files for libpq (postgresql library)
 python-pygresql - PostgreSQL module for Python
Changes: 
 postgresql (7.2.1-2woody5) stable-security; urgency=low
 .
   * Fixed buffer overflow in ODBC driver (src/interfaces/odbc/):
     added parameter for target buffer size to make_string() to prevent
     buffer overflows and corrected all calls to it. This fixes #247306 for
     woody (bug was already closed with the upload to sid).
 .
     With previous versions it was possible to crash (and possibly exploit)
     e. g. apache if a PHP script connected to a ODBC database with very long
     credential strings (DSN, username, password, etc.).
 .
     Other parts of postgresql are not affected.
Files: 
 0f3a5117737c7b524fc1225625e9edf8 1816756 misc optional postgresql_7.2.1-2woody5_alpha.deb
 93d92c5baddf51443a442742e81fe80e 319386 misc optional postgresql-client_7.2.1-2woody5_alpha.deb
 227f24b4270a896b22eabda5e6d7cc36 539998 devel optional postgresql-dev_7.2.1-2woody5_alpha.deb
 45b4c9858e434f7498e06861c31244ee 77486 libs optional libpgsql2_7.2.1-2woody5_alpha.deb
 b2369d209179d36e571e766de1c4debf 34192 libs optional libecpg3_7.2.1-2woody5_alpha.deb
 86069f65ea21ac186b095e5b39ee617c 67192 libs optional libpgtcl_7.2.1-2woody5_alpha.deb
 1f3ed9f2ae78a6e2f78c9172468cbb00 68246 libs optional libpgperl_7.2.1-2woody5_alpha.deb
 450f68f0e2431ab84407d13d4135a654 424930 misc optional pgaccess_7.2.1-2woody5_alpha.deb
 afe210d301c0dc068cd139471dad0065 387022 misc optional postgresql-contrib_7.2.1-2woody5_alpha.deb
 7d98b12889dc8321c66fa0ee5124ee69 64816 misc optional python-pygresql_7.2.1-2woody5_alpha.deb
 0302910a2a30ccf1b025d599afc67d73 290676 libs optional odbc-postgresql_7.2.1-2woody5_alpha.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAo55pW5ql+IAeqTIRAr7QAJ9VS107YKXnxR7EYUy0epwh8Ph/vgCcDY6G
14Hfu88F5DZuU066iC8nafI=
=DGoR
-----END PGP SIGNATURE-----