https://www.postgresql.org/message-id/19406-9867fddddd724fca@postgresql.org
Also a number of minor upstream fixes for the patches added in 13.23-0+deb11u2
where added:
* pg_mblen_range, pg_mblen_with_len: Valgrind after encoding ereport.
* Suppress new "may be used uninitialized" warning.
* Fix test_valid_server_encoding helper function.
* pgcrypto: Tweak error message for incorrect session key length.
For Debian 11 bullseye, this problem has been fixed in version
13.23-0+deb11u3.
We recommend that you upgrade your postgresql-13 packages.
For the detailed security status of postgresql-13 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/postgresql-13
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Get the latest Linux and open source security news straight to your inbox.