-
mariadb-10.0 (10.0.23-0ubuntu0.15.04.1) vivid-security; urgency=low
* SECURITY UPDATE: Update to 10.0.23 fixes security issues (LP: #1538315):
- CVE-2016-2047
- CVE-2016-0616
- CVE-2016-0609
- CVE-2016-0608
- CVE-2016-0606
- CVE-2016-0600
- CVE-2016-0598
- CVE-2016-0597
- CVE-2016-0596
- CVE-2016-0546
- CVE-2016-0505
* Update TokuDB plugin install and copyright paths to match latest
release done under Percona ownership
-- Otto Kekäläinen <email address hidden> Tue, 26 Jan 2016 23:59:51 +0200
-
mariadb-10.0 (10.0.22-0ubuntu0.15.04.1) vivid-security; urgency=low
* SECURITY UPDATE: Update to 10.0.22 fixes security issues:
(LP: #1512241)
- CVE-2015-4802
- CVE-2015-4807
- CVE-2015-4815
- CVE-2015-4826
- CVE-2015-4830
- CVE-2015-4836
- CVE-2015-4858
- CVE-2015-4861
- CVE-2015-4870
- CVE-2015-4913
- CVE-2015-4792
* Includes security issues fixed in 10.0.21:
- CVE-2015-4816
- CVE-2015-4819
- CVE-2015-4879
- CVE-2015-4895
(LP: #1512241)
* Upstream changed mysqld_safe_syslog.cnf to fix logging error
-- Otto Kekäläinen <email address hidden> Mon, 02 Nov 2015 09:25:30 +0200
-
mariadb-10.0 (10.0.20-0ubuntu0.15.04.1) vivid-security; urgency=low
* SECURITY UPDATE: Update to 10.0.20 (via .18 and .19) fixes security issues:
- CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
together with --ssl will ensure that the established connection is
SSL-encrypted and the MariaDB server has a valid certificate.
(LP: #1464895)
- CVE-2014-8964: bundled PCRE contained heap-based buffer overflow
vulnerability that allowed the server to crash or have other unspecified
impact via a crafted regular expression made possible with the
REGEXP_SUBSTR function (MDEV-8006).
- CVE-2015-0501
- CVE-2015-2571
- CVE-2015-0505
- CVE-2015-0499
(LP: #1451677)
* New release includes fix for memory corruption on arm64 (LP: #1427406)
* Upstream also includes lots of line ending changes (from CRLF -> LF)
-- Otto Kekäläinen <email address hidden> Fri, 03 Jul 2015 17:39:42 +0300
-
mariadb-10.0 (10.0.17-0ubuntu1) vivid; urgency=medium
* New upstream microrelease.
* Drop patches no longer required:
- d/p/reproducible-builds-fix-connect.patch: upstream no longer uses
__DATE__ and __TIME__ in build.
- new_valid_certs.patch, new_valid_certs_test_fix.patch: tests fixed
upstream with new certificate.
* Refresh remove_rename_mariadb-server_files_in.patch to remove fuzz.
* Cherry-picks from Debian VCS in range e73d494..c0b5f94 as the others
are not suitable for feature freeze:
- [221008e] Adding mysqld_multi_confd.patch, makes mysqld_multi
reading conf.d (Closes: #778761)
- [361e420] Adding mysqld_multi.server_lsb-header.patch, provides
LSB headers for example initscript (Closes: #778762)
- [5038203] d/rules: added same hardening line as in mysql-5.6
packaging after validation with hardening-check tool
- [c0b5f94] Updated Swedish debconf translations
- Fixes to d/mariadb-server-10.0.postinst:
+ [72b30b2] Remove script output, such invasive debugging is no
longer needed.
+ [ffefd9a] Set mysql_rundir
+ [14fd487] Fix postinst script failure: don't use unsupported
DELIMITER in mysqld command (LP: #1429725).
-- Robie Basak <email address hidden> Thu, 16 Apr 2015 14:16:45 +0000
-
mariadb-10.0 (10.0.16-2~exp1~ubuntu1) vivid; urgency=medium
* Merge from Debian VCS commit e73d494. Remaining changes:
- Build without TokuDB since it fails tests.
- Depend on mysql-common (>= 5.6.22-1~) to ensure that the new
my.cnf symlink wrapper is available during upgrade.
- Add versioned mariadb-common dependency to mariadb-server-10.0 so
it doesn't fulfil the dependency using an older mariadb-common
that doesn't require the newer mysql-common with the my.cnf
symlink support.
* Drop changes (applied in Debian):
- Fix typo in mariadb-server-10.0.postinst.
- Include change by Otto found in ppa:mysql-ubuntu/mariadb-10.0 but
not yet in VCS: include "/etc/mysql/conf.d/*.cnf" for global options.
mariadb-10.0 (10.0.16-2~exp1) UNRELEASED; urgency=medium
* Move innochecksum back to mariadb-server-core-10.0 to align with other
variants (LP: #1421520).
* Fix typo in mariadb-server-10.0.postinst.
* Fix typo in postinst mktemp call (LP: #1420831).
-- Robie Basak <email address hidden> Tue, 17 Feb 2015 19:19:05 +0000
-
mariadb-10.0 (10.0.16-1ubuntu4) vivid; urgency=medium
* Fix typo in mariadb-server-10.0.postinst.
* Add versioned mariadb-common dependency to mariadb-server-10.0 so it
doesn't fulfil the dependency using an older mariadb-common that doesn't
require the newer mysql-common with the my.cnf symlink support.
-- Robie Basak <email address hidden> Tue, 10 Feb 2015 10:59:34 +0000
-
mariadb-10.0 (10.0.16-1ubuntu3) vivid; urgency=medium
* Fix typo in TokuDB build disablement.
-- Robie Basak <email address hidden> Tue, 10 Feb 2015 07:21:32 +0000
-
mariadb-10.0 (10.0.16-1ubuntu2) vivid; urgency=medium
* Disable TokuDB build by setting CMAKEFLAGS, not with the old variable that
no longer does anything in the master branch.
-- Robie Basak <email address hidden> Mon, 09 Feb 2015 23:08:00 +0000
-
mariadb-10.0 (10.0.16-1ubuntu1) vivid; urgency=low
* Switch to being based from the Debian VCS master branch, instead of the
frozen jessie branch.
* Include change by Otto found in ppa:mysql-ubuntu/mariadb-10.0 but not yet
in VCS: include "/etc/mysql/conf.d/*.cnf" for global options.
* Depend on mysql-common (>= 5.6.22-1~) to ensure that the new my.cnf symlink
wrapper is available during upgrade.
* Build without TokuDB since it fails tests.
-- Robie Basak <email address hidden> Mon, 09 Feb 2015 17:37:35 +0000
-
mariadb-10.0 (10.0.16-1) unstable; urgency=low
[ Julien Muchembled ]
* Fix inclusion of Mroonga & TokuDB plugins in mariadb-server-10.0
[ Otto Kekäläinen ]
* Imported Upstream version 10.0.16. Inludes fixes for the following security
vulnerabilities:
- CVE-2015-0411
- CVE-2015-0382
- CVE-2015-0381
- CVE-2015-0432
- CVE-2014-6568
- CVE-2015-0374
* Backported new cacert.pem etc from 5.5 the replace the expired ones.
* Update the mail.ssl test to match new cacert.pem
-- Otto Kekäläinen <email address hidden> Tue, 03 Feb 2015 08:51:03 +0200
-
mariadb-10.0 (10.0.15-3) unstable; urgency=low
* Fixed an if-structure in the init script so that the return value will be
correct and not mess up invoke-rc.d (Closes: #773282).
-- Otto Kekäläinen <email address hidden> Sun, 21 Dec 2014 03:14:15 +0200
-
mariadb-10.0 (10.0.15-2) unstable; urgency=low
* Fix mariadb-server-10.0.postinst so that the flag removal will not emit
an error code if there are no previous debian-*.flag files. This will
fix a dpkg issue cought by piuparts testing (Closes: #773030).
* Increase the debconf downgrade warning dialog priority to critical to make
sure all users see it and understand why their system broke after downgrade.
* Fix FTBFS on mips and mipsel introduced by upstream release 10.0.15
(Closes: #772964).
-- Otto Kekäläinen <email address hidden> Sun, 14 Dec 2014 19:07:50 +0200
-
mariadb-10.0 (10.0.15-1) unstable; urgency=low
[ Arnaud Fontaine ]
* Bump libpcre3-dev Build-Depends to >= 2:8.35-3.2~ (Closes: #767903).
[ Otto Kekäläinen }
* New upstream release, includes fixes for the following security issues:
- CVE-2014-6507
- CVE-2014-6491
- CVE-2014-6500
- CVE-2014-6469
- CVE-2014-6555
- CVE-2014-6559
- CVE-2014-6494
- CVE-2014-6496
- CVE-2014-6464
* Disable on non-amd64 platforms the new Mroonga storage engine which
was introduced in the new upstream release.
* Allow mariadb-server-10.0 to overwrite file man1/mysql_plugin.1.gz in
mysql-client-5.5 with breaks and replaces (Closes: #771213).
* Clean up old debian-*.flag files from datadir to avoid unexpected
behavior at later upgrades (Closes: #770177).
-- Otto Kekäläinen <email address hidden> Tue, 25 Nov 2014 21:45:43 +0200
-
mariadb-10.0 (10.0.14-4) unstable; urgency=low
* Updated patch d/username-in-tests-replace.patch to fix the
obfuscation done by anti-spam measures in the MariaDB
commit message view (Closes: #769865).
* Unified indentantion to two spaces in init file for easier
debugging of #609537
-- Otto Kekäläinen <email address hidden> Mon, 17 Nov 2014 11:45:11 +0200
-
mariadb-10.0 (10.0.14-3) unstable; urgency=low
* Added patch d/username-in-tests-replace.patch to fix
test failure (Closes: #769212).
* Added versioned dependency on libpcre3 (Closes: #767903).
-- Otto Kekäläinen <email address hidden> Wed, 12 Nov 2014 15:00:11 +0300
-
mariadb-10.0 (10.0.14-2) unstable; urgency=low
[ Tobias Frost ]
* Fix two lintian warnings in d/copyright (missing "-" between GPL and 2)
* Always be verbose when building the package and show compiler args
[ Otto Kekäläinen ]
* Upload to unstable
* Updated German translation by Chris Leick and Holger Wansing
(Closes: #763952)
* Updated Dutch translation by Frans Spiesschaert (Closes: #764013)
* Removed libssl-dev from build dependencies in favour of using
bundled YaSSL instead (Closes: #761911)
* Fixed debconf value saving (Closes: #761452)
* Re-enabled TokuDB after backporting upstream fix in MDEV-6815
* Removed libmariadbclient packages that provided the Debian-only
libmariadbclient.so library that nobody used. Instead developers are
encouraged to use the libraries from the package libmariadb-client-lgpl
instead (Closes: #739452) (Closes: #742172).
-- Otto Kekäläinen <email address hidden> Sat, 18 Oct 2014 19:00:11 +0300
