-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 13 May 2004 11:00:07 +0200
Source: postgresql
Binary: libpgtcl postgresql pgaccess odbc-postgresql libpgperl postgresql-client libecpg3 postgresql-contrib postgresql-dev postgresql-doc python-pygresql libpgsql2
Architecture: m68k
Version: 7.2.1-2woody5
Distribution: stable-security
Urgency: low
Maintainer: Debian/m68k (q650) buildd <buildd@q650.biophys.uni-duesseldorf.de>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 libecpg3   - Shared library libecpg.so.3 for PostgreSQL
 libpgperl  - Perl modules for PostgreSQL.
 libpgsql2  - Shared library libpq.so.2 for PostgreSQL
 libpgtcl   - Tcl/Tk library and front-end for PostgreSQL.
 odbc-postgresql - ODBC support for PostgreSQL
 pgaccess   - Tk/Tcl front-end for PostgreSQL database
 postgresql - Object-relational SQL database, descended from POSTGRES.
 postgresql-client - Front-end programs for PostgreSQL
 postgresql-contrib - Additional facilities for PostgreSQL
 postgresql-dev - Header files for libpq (postgresql library)
 python-pygresql - PostgreSQL module for Python
Changes: 
 postgresql (7.2.1-2woody5) stable-security; urgency=low
 .
   * Fixed buffer overflow in ODBC driver (src/interfaces/odbc/):
     added parameter for target buffer size to make_string() to prevent
     buffer overflows and corrected all calls to it. This fixes #247306 for
     woody (bug was already closed with the upload to sid).
 .
     With previous versions it was possible to crash (and possibly exploit)
     e. g. apache if a PHP script connected to a ODBC database with very long
     credential strings (DSN, username, password, etc.).
 .
     Other parts of postgresql are not affected.
Files: 
 df4df8f522732d6c43f1df0accba8112 1583270 misc optional postgresql_7.2.1-2woody5_m68k.deb
 201a4493f8af1585a989e8ed82a51cc0 269616 misc optional postgresql-client_7.2.1-2woody5_m68k.deb
 cec341af75ef2d1174fcacb8431162fe 489934 devel optional postgresql-dev_7.2.1-2woody5_m68k.deb
 c35d2ead6b95f78eb0e673d024ab7e4f 65332 libs optional libpgsql2_7.2.1-2woody5_m68k.deb
 da48d662aa603a9fffeb1c36ab3b7c99 30256 libs optional libecpg3_7.2.1-2woody5_m68k.deb
 24c3dd0e488ff1d6fe70543be4199935 54466 libs optional libpgtcl_7.2.1-2woody5_m68k.deb
 e9cbbc8c5cf456f323c5a9260c8e4f55 62712 libs optional libpgperl_7.2.1-2woody5_m68k.deb
 26fac921fb9eb5f7c5a52efa55bce6a6 425308 misc optional pgaccess_7.2.1-2woody5_m68k.deb
 6e51a169b7d0ec74fdeff2c5886dba3b 324886 misc optional postgresql-contrib_7.2.1-2woody5_m68k.deb
 21450725c887e01dba071bf77ff5aa4e 61980 misc optional python-pygresql_7.2.1-2woody5_m68k.deb
 b390b1e9d80cfb06bc90a3bcd9c8e236 187146 libs optional odbc-postgresql_7.2.1-2woody5_m68k.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFApHDrW5ql+IAeqTIRAgblAJ0Y1JCQ8rY2kRWGaqTAIx2coPjuMQCfWTv6
PIOv3hJW83dGGfeYEA6OfUQ=
=fMuT
-----END PGP SIGNATURE-----