Ubuntu
mysql-dfsg-5.0 package

Branches for Dapper

Name Status Last Modified Last Commit
lp:ubuntu/dapper/mysql-dfsg-5.0 2 Mature 2009-08-11 13:57:11 UTC
10. * Redirect mysql_upgrade output to sy...

Author: Adam Conrad
Revision Date: 2006-05-23 20:56:35 UTC

* Redirect mysql_upgrade output to syslog, instead of littering the
  console, which appears to royally mess up debconf when I'm unlucky.
* Merge with Debian's pending 5.0.21-4 release to get new debconf
  translations and the BLOCKSIZE fix for the free disk space check.
lp:ubuntu/dapper-proposed/mysql-dfsg-5.0 2 Mature 2009-08-11 13:57:30 UTC
17. * RELIABILITY UPDATE: fix for upstrea...

Author: Jamie Strandboge
Revision Date: 2008-04-15 16:28:38 UTC

* RELIABILITY UPDATE: fix for upstream bug #20908
* debian/patches/105_upstream_20908.dpatch: fix MYSQLlex() in sql_lex.cc
  to ABORT_SYM on zero-length variable names
* References
  LP: #217772
  http://bugs.mysql.com/bug.php?id=20908
lp:ubuntu/dapper-security/mysql-dfsg-5.0 2 Mature 2010-11-09 14:10:41 UTC
22. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2010-11-09 14:10:41 UTC

* SECURITY UPDATE: denial of service via joins involving a table with a
  unique SET column
  - debian/patches/113_SECURITY_CVE-2010-3677.dpatch: improve logic in
    sql/item_cmpfunc.cc. Add tests to mysql-test/*.
  - CVE-2010-3677
* SECURITY UPDATE: denial of service via TEMPORARY InnoDB tables with
  nullable columns
  - debian/patches/113_SECURITY_CVE-2010-3680.dpatch: check for null
    datatype in sql/ha_innodb.cc. Add tests to mysql-test/*.
  - CVE-2010-3680
* SECURITY UPDATE: denial of service via alternate reads from two indexes
  on a table using the HANDLER interface
  - debian/patches/113_SECURITY_CVE-2010-3681.dpatch: check for the same
    index in sql/sql_handler.cc. Add tests to mysql-test/*.
  - CVE-2010-3681
* SECURITY UPDATE: denial of service via use of EXPLAIN with certain
  queries
  - debian/patches/113_SECURITY_CVE-2010-3682.dpatch: improve conditional
    in sql/sql_select.cc. Add tests to mysql-test/*.
  - CVE-2010-3682
* SECURITY UPDATE: denial of service via derived table materializing.
  - debian/patches/113_SECURITY_CVE-2010-3834.dpatch: handle temporary
    tables in sql/field.cc, sql/sql_select.*. Add tests to mysql-test/*.
  - CVE-2010-3834
* SECURITY UPDATE: denial of service via pre-evaluation of LIKE
  predicates during view preparation.
  - debian/patches/113_SECURITY_CVE-2010-3836.dpatch: make sure we're not
    in view preparation mode in sql/item_cmpfunc.cc. Add tests to
    mysql-test/*.
  - CVE-2010-3836
* SECURITY UPDATE: denial of service via use of GROUP_CONCAT() and
  WITH ROLLUP together.
  - debian/patches/113_SECURITY_CVE-2010-3837.dpatch: create a copy of
    the order structures in sql/item_sum.cc, sql/table.h. Add tests to
    mysql-test/*.
  - CVE-2010-3837
* SECURITY UPDATE: denial of service via longblob and union or update
  with subquery.
  - debian/patches/113_SECURITY_CVE-2010-3838.dpatch: handle REAL_RESULT
    in sql/item_func.cc. Add tests to mysql-test/*.
  - CVE-2010-3838
* SECURITY UPDATE: denial of service via PolyFromWKB() function and
  improper data.
  - debian/patches/113_SECURITY_CVE-2010-3840.dpatch: improve data
    handling in sql/spatial.cc. Add tests to mysql-test/*.
  - CVE-2010-3840
lp:ubuntu/dapper-updates/mysql-dfsg-5.0 bug 2 Mature 2010-11-09 14:10:41 UTC
22. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2010-11-09 14:10:41 UTC

* SECURITY UPDATE: denial of service via joins involving a table with a
  unique SET column
  - debian/patches/113_SECURITY_CVE-2010-3677.dpatch: improve logic in
    sql/item_cmpfunc.cc. Add tests to mysql-test/*.
  - CVE-2010-3677
* SECURITY UPDATE: denial of service via TEMPORARY InnoDB tables with
  nullable columns
  - debian/patches/113_SECURITY_CVE-2010-3680.dpatch: check for null
    datatype in sql/ha_innodb.cc. Add tests to mysql-test/*.
  - CVE-2010-3680
* SECURITY UPDATE: denial of service via alternate reads from two indexes
  on a table using the HANDLER interface
  - debian/patches/113_SECURITY_CVE-2010-3681.dpatch: check for the same
    index in sql/sql_handler.cc. Add tests to mysql-test/*.
  - CVE-2010-3681
* SECURITY UPDATE: denial of service via use of EXPLAIN with certain
  queries
  - debian/patches/113_SECURITY_CVE-2010-3682.dpatch: improve conditional
    in sql/sql_select.cc. Add tests to mysql-test/*.
  - CVE-2010-3682
* SECURITY UPDATE: denial of service via derived table materializing.
  - debian/patches/113_SECURITY_CVE-2010-3834.dpatch: handle temporary
    tables in sql/field.cc, sql/sql_select.*. Add tests to mysql-test/*.
  - CVE-2010-3834
* SECURITY UPDATE: denial of service via pre-evaluation of LIKE
  predicates during view preparation.
  - debian/patches/113_SECURITY_CVE-2010-3836.dpatch: make sure we're not
    in view preparation mode in sql/item_cmpfunc.cc. Add tests to
    mysql-test/*.
  - CVE-2010-3836
* SECURITY UPDATE: denial of service via use of GROUP_CONCAT() and
  WITH ROLLUP together.
  - debian/patches/113_SECURITY_CVE-2010-3837.dpatch: create a copy of
    the order structures in sql/item_sum.cc, sql/table.h. Add tests to
    mysql-test/*.
  - CVE-2010-3837
* SECURITY UPDATE: denial of service via longblob and union or update
  with subquery.
  - debian/patches/113_SECURITY_CVE-2010-3838.dpatch: handle REAL_RESULT
    in sql/item_func.cc. Add tests to mysql-test/*.
  - CVE-2010-3838
* SECURITY UPDATE: denial of service via PolyFromWKB() function and
  improper data.
  - debian/patches/113_SECURITY_CVE-2010-3840.dpatch: improve data
    handling in sql/spatial.cc. Add tests to mysql-test/*.
  - CVE-2010-3840
14 of 4 results FirstPreviousNextLast