Ubuntu
mysql-dfsg-5.0 package

lp:ubuntu/intrepid-security/mysql-dfsg-5.0

  1. Intrepid (8.10)
  2. intrepid-security
Created by James Westby and last modified
Cannot lock LockDir(lp-mirrored:///~ubuntu-branches/ubuntu/intrepid/mysql-dfsg-5.0/intrepid-security/.bzr/repositorylock): File exists: u'/srv/bazaar.launchpad.net/mirrors/00/04/be/93/.bzr/repository/lock': [Errno 17] File exists: '/srv/bazaar.launchpad.net/mirrors/00/04/be/93/.bzr/repository/lock'
Get this branch:
bzr branch lp:ubuntu/intrepid-security/mysql-dfsg-5.0
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Mature

Recent revisions

50. By Marc Deslauriers

* SECURITY UPDATE: privilege circumvention via the creation of MyISAM
  tables using the DATA DIRECTORY and INDEX DIRECTORY options to overwrite
  existing table files in the data directory. This fix alters table creation
  behaviour by disallowing the use of the MySQL data directory in DATA
  DIRECTORY and INDEX DIRECTORY options. (LP: #254129)
  - debian/patches/92_CVE-2008-4098.dpatch: Disallow use of MySQL
    data directory in DATA DIRECTORY and INDEX DIRECTORY options.
  - CVE-2008-4098
* SECURITY UPDATE: Cross-site scripting in the command-line client
  - debian/patches/92_CVE-2008-4456.dpatch: use xmlencode_print in
    client/mysql.cc, add test to mysql-test/*.
  - CVE-2008-4456
* SECURITY UPDATE: format string vulnerabilities in the dispatch_command
  function
  - debian/patches/92_CVE-2009-2446.dpatch: use correct format string in
    sql/sql_parse.cc, add test to tests/mysql_client_test.c.
  - CVE-2009-2446
* SECURITY UPDATE: denial of service via certain SELECT statements with
  subqueries and statements that use the GeomFromWKB function
  - debian/patches/92_CVE-2009-4019.dpatch: return proper errors in
    sql/sql_class.cc, handle errors in sql/sql_select.cc, set correct
    null_value in sql/item_geofunc.cc, add tests to mysql-test/*.
  - CVE-2009-4019
* SECURITY UPDATE: privilege restriction bypass via incorrect calculation
  of the mysql_unpacked_real_data_home value
  - debian/patches/92_CVE-2009-4030.dpatch: fix initialization order in
    sql/mysqld.cc.
  - CVE-2009-4030
* SECURITY UPDATE: arbitrary code execution via yassl stack overflow
  - debian/patches/93_CVE-2009-4484.dpatch: validate lengths in
    extra/yassl/taocrypt/src/asn.*.
  - CVE-2009-4484
* debian/patches/94_ssl_test_certs.dpatch: update certificates in the
  test suite as they are expired. The new certs expire 2015-01-28.
  (LP: #323755)

49. By Chuck Short

Clean up mysql apparmor profile. (LP: #270663)

48. By Kees Cook

Add 91_ubuntu_buildd_testfailures.dpatch: disable tests that fail
randomly only on the amd64 buildd.

47. By Kees Cook

* Revert 99_incease_test_timeout.dpatch, and try upstream fixes for
  random test failures as 90_upstream_bug_23921.dpatch (see
  http://bugs.mysql.com/bug.php?id=23921). Fixes random build failures.
* Revert PIE hardening -- subselect test kills running server on i386.

46. By Chuck Short

debian/patches/99_incease_test_timeout.dpatch: Increase the timeout
time for mysql-tests in build.

45. By Kees Cook

debian/{control,rules}: enable PIE hardening

44. By Chuck Short

* debian/control:
  - Set maintainer to Ubuntu Core dev. Move Debian maintainer to
    XSBC-Original-Maintainer.
  - Add a mysql-doc-5.0 as a Suggest to mysql-client-5.0 mysql-server-5.0
    andd libmsqlclient15-dev
  - Prepend XS-Original- to Vcs-{Browser,Svn}.
  - Fix man page conflicts with mysql-doc-5.0 when upgrading from gutsy
    for mysql-server-5.0, mysql-client-5.0 and libmysqlclient15-dev
    packages.
  - Replaces and Conflicts apparmor-profiles << 2.1+1075-0ubuntu4 to allow
    proper upgrades from gutsy.
  - Lower "mailx from a Recommends to a Suggests, which is pulling in
    exim4 on all installs of mysql-server. (LP: #259477).
* debian/rules:
  - Apply same configuration options on lpia as for i386.
  - Replace --with-comment="Debian" --with-comment="Ubuntu".
* debian/additions/my.cnf:
  - Add note about the "/etc/mysql/conf.d" directory in my.cnf.
  - Add warning about apparmor (LP: #201799)
* Follow ApparmorProfileMigration and force apparmor complain mode on some
  upgrades (LP: #203531)
  - debian/control: Recommends apparmor >= 2.1+1075-0ubuntu6
  - debian/mysql-server-5.0.dirs: add etc/apparmor.d/force-complain
  - debian/mysql-server-5.0.preinst: create symlink for force-complain/
    on pre-feisty upgrades, upgrades where apparmor-profiles profile is
    unchanged (ie non-enforcing) and upgrades where the profile doesn't
    exist.
  - debian/mysql-server-5.0.postrm: remove symlink in force-complain/ on
    purge.
 * Dropped debian/patches/58-disable-ndb-backup-print.dpatch, no
   longer needed.
 * Dropped debian/patches/93_fix_user_setup_on_localhost.dpatch. use
   Debian's instead.

43. By Dustin Kirkland 

debian/control: Lower "mailx" from a Recommends to a Suggests, which is
pulling in exim4 on all installs of mysql-server (LP: #259477).

42. By Chuck Short

* debian/mysql-server-5.0.config:
  - Revert debian changes. Password dialog had disappeared. (LP: #239668)

41. By Chuck Short

* Updated debian/patches/58-disable-ndb-backup-print.dpatch.
  - Failed tests ndb_alter_table ndb_replace to fix a FTBFS.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/lucid/mysql-dfsg-5.0
This branch contains Public information 
Everyone can see this information.

Subscribers