[Touch-packages] [Bug 2095233] Re: tzdata 2025a release

Launchpad Bug Tracker Tue, 20 May 2025 05:05:54 -0700

This bug was fixed in the package postgresql-12 - 12.22-0ubuntu0.20.04.4

---------------
postgresql-12 (12.22-0ubuntu0.20.04.4) focal-security; urgency=medium


  * SECURITY UPDATE: crash via incomplete multibyte character
    - debian/patches/CVE-2025-4207.patch: with GB18030, prevent SIGSEGV
      from reading past end of allocation in
      src/backend/utils/mb/mbutils.c, src/backend/utils/mb/wchar.c,
      src/include/mb/pg_wchar.h, src/interfaces/libpq/fe-exec.c,
      src/interfaces/libpq/fe-misc.c,
      src/test/modules/test_escape/test_escape.c.
    - CVE-2025-4207

 -- Marc Deslauriers <marc.deslauri...@ubuntu.com>  Mon, 12 May 2025
14:17:28 +0200

** Changed in: postgresql-12 (Ubuntu Focal)
       Status: Fix Committed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-4207

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to tzdata in Ubuntu.
https://bugs.launchpad.net/bugs/2095233

Title:
  tzdata 2025a release

Status in exchange-calendars package in Ubuntu:
  Fix Released
Status in postgresql-12 package in Ubuntu:
  Invalid
Status in tzdata package in Ubuntu:
  Fix Released
Status in postgresql-12 source package in Focal:
  Fix Released
Status in tzdata source package in Focal:
  Fix Released
Status in tzdata source package in Jammy:
  Fix Released
Status in tzdata source package in Noble:
  Fix Released
Status in exchange-calendars source package in Oracular:
  Fix Committed
Status in tzdata source package in Oracular:
  Fix Released

Bug description:
  [ Impact ]

  The 2025a release contains the following changes:

  * Paraguay adopts permanent -03 starting spring 2024
  * No leap second on 2025-06-30

  [ Test Plan ]

  Test cases were added to the autopkgtest to cover the testing:

  * python: test_2025a
  * python-icu: test_2025a (only for focal and newer)

  So the test plan is to check that the autopkgtest succeeds.

  [ Other Info ]

  The autopkgtest for chrony is flaky on jammy and newer (see bug
  #2002910).

  This tzdata release causes the postgresql autopkgtest to regress (see
  bug #2098518)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/exchange-calendars/+bug/2095233/+subscriptions


-- 
Mailing list: https://launchpad.net/~touch-packages
Post to     : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help   : https://help.launchpad.net/ListHelp

[Touch-packages] [Bug 2095233] Re: tzdata 2025a release

Reply via email to