-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 06 Feb 2024 13:54:51 +0100
Source: postgresql-13
Binary: postgresql-doc-13
Architecture: all
Version: 13.14-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Christoph Berg <myon@debian.org>
Description:
 postgresql-doc-13 - documentation for the PostgreSQL database management system
Changes:
 postgresql-13 (13.14-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version.
 .
     * Tighten security restrictions within REFRESH MATERIALIZED VIEW
       CONCURRENTLY (Heikki Linnakangas)
 .
       One step of a concurrent refresh command was run under weak security
       restrictions.  If a materialized view's owner could persuade a superuser
       or other high-privileged user to perform a concurrent refresh on that
       view, the view's owner could control code executed with the privileges
       of the user running REFRESH. Fix things so that all user-determined code
       is run as the view's owner, as expected.
 .
       The PostgreSQL Project thanks Pedro Gallegos for reporting this problem.
       (CVE-2024-0985)
Checksums-Sha1:
 ba183e377225841434e9a8756cf397bc0710120f 9750 postgresql-13_13.14-0+deb11u1_all-buildd.buildinfo
 75d45f0f0de60d1d1038d52e9717854f82f67864 1972920 postgresql-doc-13_13.14-0+deb11u1_all.deb
Checksums-Sha256:
 e5094a3b289366633dda87451dcfbde48aa218ca1d7eb05d835139ce4f56c9a7 9750 postgresql-13_13.14-0+deb11u1_all-buildd.buildinfo
 c40a790718e4db3ed80871c772fcd36a690592e4f5fa6d08be68483abe7abb4f 1972920 postgresql-doc-13_13.14-0+deb11u1_all.deb
Files:
 d3de7985e2a4ffb82685f293de308fe8 9750 database optional postgresql-13_13.14-0+deb11u1_all-buildd.buildinfo
 742508891699b85b83a3e8d995d3cfbf 1972920 doc optional postgresql-doc-13_13.14-0+deb11u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=rm6m
-----END PGP SIGNATURE-----