-
mongodb (1:3.6.3-0ubuntu1.4) bionic-security; urgency=medium
* d/p/CVE-2019-20925-SERVER-43751-Recompute-compressor-manager-message-pa.patch
Recompute compressor manager message parameters. (LP: #1933520)
-- Heather Lemon <email address hidden> Tue, 03 Aug 2021 20:57:49 +0000
-
mongodb (1:3.6.3-0ubuntu1.3) bionic-security; urgency=medium
[Heather Lemon]
* SECURITY UPDATE: account session reuse leads to unauthorized access (LP: #1934518)
- d/p/CVE-2019-2386-SERVER-38984-Validate-unique-User-ID-on-UserCache-hi.patch:
Attach ID to users.
After user deletion in MongoDB Server the improper invalidation of
authorization sessions allows an authenticated user's session to
persist and become conflated with new accounts
- CVE-2019-2386
[Alex Murray]
* Refresh
d/p/CVE-2019-2386-SERVER-38984-Validate-unique-User-ID-on-UserCache-hi.patch
with the version from the 3.4 upstream branch that is still licensed
under the AGPL.
-- Alex Murray <email address hidden> Fri, 06 Aug 2021 12:08:41 +0930
-
mongodb (1:3.6.3-0ubuntu1.1) bionic; urgency=medium
* d/p/SERVER-36951-applyOps-createIndexes-without-uuid.patch: fix restoring
of a database backup when applyOps has a createIndexes command without a
UUID. (LP: #1821391)
-- Andreas Hasenack <email address hidden> Fri, 22 Mar 2019 16:11:02 -0300
-
mongodb (1:3.6.3-0ubuntu1) bionic; urgency=medium
* New upstream release (LP: #1761807).
* d/watch: update.
* d/upstream/signing-key.asc: update.
* Drop d/p/CVE-2016-6494.patch: no longer needed as fixed upstream by
use of open(2) with S_IRUSR | S_IWUSR.
* Drop d/p/asio-openssl-1.1-support.patch: this backport is no longer
required as upstream successfully builds directly against OpenSSL
1.1 now.
* d/p/fix-ftbfs-with-gcc-7.patch: refresh to remove fuzz.
* d/copyright: update.
* d/control: build dependency changes:
- Add new dependencies required for a successful build
(libmongoc-dev, python-cheetah, python-pkg-resources,
python-requests, python-typing).
- Drop python (not required directly).
* d/p/SERVER-34117-skip-dns-tests.patch: disable some tests that require
network access.
* d/p/strip-test-binaries.patch: strip test binaries to reduce build size to
within Launchpad's limit.
-- Robie Basak <email address hidden> Wed, 11 Apr 2018 13:45:22 +0100
-
mongodb (1:3.4.14-3ubuntu2) bionic; urgency=medium
* Update breaks+replaces to the correct version (LP: #1762915)
-- Gianfranco Costamagna <email address hidden> Wed, 11 Apr 2018 16:59:06 +0200
-
mongodb (1:3.4.14-3ubuntu1) bionic; urgency=low
* Merge from Debian unstable. Remaining changes:
- Rework Breaks+Replaces for the bionic version, this can be dropped
once bionic is out.
mongodb (1:3.4.14-3) unstable; urgency=medium
* d/control: correct mongodb-server-core Breaks/Replaces (Closes: #893893)
mongodb (1:3.4.14-2) unstable; urgency=medium
* Fix altivec-related FTBFS on ppc64el
mongodb (1:3.4.14-1) unstable; urgency=medium
* New upstream stable release (Closes: #882643)
* Drop/Refresh patches
+ Drop patches for architectures no longer built
- 0001-Create-kfreebsd-like-linux-in-most-respects.patch
- 0002-kfreebsd-has-dev-urandom.patch
- 0012-support-gnu.patch
- use-mmapv1-on-i386
+ Drop obsolete/merged patches
- fix-boost-1.62-build.patch
- fix-gcc-6-ftbfs.patch
- use-std::regex.patch
- fix-build-with-openssl-1.1.patch
- fix-mozjs-38-segfaults.patch
- arm64-48bit-va-compat.patch
- scons-3.0-compat.patch
+ Refresh fix-ftbfs-with-gcc-7.patch
* Ship the mongod and mongos binaries in mongodb-server-core. This allows
the use of special-purpose Mongo instances without the need for a
system-wide setup (Closes: #893621). Thanks to Robie Basak!
* Upload to unstable, merging all experimental development history
* Switch Vcs-* URLs to salsa.d.o
* Bump Standards-Version to 4.1.3; no changes needed
* Bump dh compat to 11
+ Use dh_missing instead of dh_install --list-missing
+ Use dh_installsystemd instead of dh_systemd_enable
* d/rules: do not pass --parallel to dh, this is now done by default
* d/watch: switch URL to https://
* d/mongodb.conf: rename oplog to diaglog (Closes: #892955)
-- Gianfranco Costamagna <email address hidden> Tue, 10 Apr 2018 14:10:51 CEST
-
mongodb (1:3.4.7-1ubuntu4) bionic; urgency=medium
* d/p/disable-broken-ppc64el-altivec: disable buggy AltiVec optimisations on
ppc64el for now to fix FTBFS until upstream has a proper fix (LP:
#1758116). This may result in a performance regression on ppc64el only,
which is tracked at LP 1758118.
-- Robie Basak <email address hidden> Thu, 22 Mar 2018 12:49:32 +0000
-
mongodb (1:3.4.7-1ubuntu3) bionic; urgency=medium
* Break out mongodb-server-core to provide binaries only as a separate
package (LP: #1756432). This allows users (such as Juju) to use the mongodb
binaries only for use in non-system-wide databases without conflict with
what a user on the same system may be doing. This follows the same pattern
already established with MySQL and MariaDB packaging.
-- Robie Basak <email address hidden> Tue, 13 Feb 2018 11:35:01 +0000
-
mongodb (1:3.4.7-1ubuntu2) bionic; urgency=high
* No change rebuild against openssl1.1.
-- Dimitri John Ledkov <email address hidden> Tue, 06 Feb 2018 17:54:53 +0000
-
mongodb (1:3.4.7-1ubuntu1) bionic; urgency=medium
* d/p/major-minor-sysmacros: fix FTBFS following glibc update. Closes:
#882643.
-- Robie Basak <email address hidden> Fri, 15 Dec 2017 17:36:26 +0000
-
mongodb (1:3.4.7-1build1) bionic; urgency=medium
* No-change rebuild for boost soname change.
-- Matthias Klose <email address hidden> Thu, 26 Oct 2017 17:20:37 +0000
-
mongodb (1:3.4.7-1) experimental; urgency=medium
* New upstream bugfix release; see
https://docs.mongodb.com/manual/release-notes/3.4/
* Refresh disable-hw-crc32-on-arm64-s390x.patch
* Bump Standards to 4.0.1; no changes needed
* Bump compat to 10
* New patch to fix FTBFS with GCC 7 (Closes: #853556)
-- Apollon Oikonomopoulos <email address hidden> Sun, 13 Aug 2017 23:25:53 -0400