-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 09 Jul 2025 17:34:58 +0800
Source: pgpool2
Architecture: source
Version: 4.3.5-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian PostgreSQL Maintainers <team+postgresql@tracker.debian.org>
Changed-By: Aron Xu <aron@debian.org>
Closes: 1081659 1106119
Changes:
 pgpool2 (4.3.5-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2024-45624: incompatible policies may allow an unauthorized user to
     retrieve table data from query cache (Closes: #1081659)
   * CVE-2025-46801: authentication bypass by primary weakness vulnerability
     (Closes: #1106119)
Checksums-Sha1:
 5b0c0f9e6bcbfb4ac4d3bb254412ce0cc7fc09f3 2332 pgpool2_4.3.5-1+deb12u1.dsc
 9cfac112e459d3581072b110ad90bf536e2efb40 4785896 pgpool2_4.3.5.orig.tar.gz
 6c7846bbcb3d010c4b4cb89d652f102cbab7d7a7 36156 pgpool2_4.3.5-1+deb12u1.debian.tar.xz
 9ff9cfad906ee0ff0b82c9bb3fb01058e9b767ea 8674 pgpool2_4.3.5-1+deb12u1_source.buildinfo
Checksums-Sha256:
 083f39564d1aa74707a7902992d6fa7072b0b3dab81a38cd2d42d6a10344a650 2332 pgpool2_4.3.5-1+deb12u1.dsc
 c220bfd78da0601bc46d22b1555b0f18550c5528ce8c40d32741cefaed23e234 4785896 pgpool2_4.3.5.orig.tar.gz
 e602a84135989271c146ca60664386355865c48bd99f818102d34f00dcc18c07 36156 pgpool2_4.3.5-1+deb12u1.debian.tar.xz
 0508776f02d9492e26ecdedf4de25bcae0499deaf930434700689a0f6683534f 8674 pgpool2_4.3.5-1+deb12u1_source.buildinfo
Files:
 3e18b6f9862138bf32be2f1783316dd2 2332 database optional pgpool2_4.3.5-1+deb12u1.dsc
 b2a0f3a09c9db2279224cb96a78ff0e5 4785896 database optional pgpool2_4.3.5.orig.tar.gz
 3bf065e92c5ffd997fe92297361782c8 36156 database optional pgpool2_4.3.5-1+deb12u1.debian.tar.xz
 d7e65c3f04383b46550430e51ae714ac 8674 database optional pgpool2_4.3.5-1+deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEBLHAyuu1xqoC2aJ5NP8o68vMTMgFAmiUY8sACgkQNP8o68vM
TMhfFQf+JIfzcU0P304Ie7Vf1gTb7IU0P0o1tE5RyLnBxShNSJYJZdPcwnwP1g7/
NA1DZt00YH0ivpDNT0KNfL4TfqR/kBOSrYhmg+7KGQLZfNAbSahAgAicGm2yBJqp
YEIrP1bAGOAvURJkWBi0TdI6GuBQnD3d+WAKxR79rJ6yJnESaAohDkdrBvbxrVS+
WqoHpkKYFgep1DitOxD+ORx0DHje3RmPq/xr3CFrM/M5TwfkjxFyhc/1/mTi7OD9
PjHxwDxv7FotivdtsBgyvQ1bOGC/16bIW/92noMr5/ogc4yoH6ZgOb47VyfrJXHN
M0sdIdnJs6EERMU/RgZhX6FA8xRBGw==
=bxJc
-----END PGP SIGNATURE-----