lp:ubuntu/oneiric-security/mysql-5.1
- Get this branch:
- bzr branch lp:ubuntu/oneiric-security/mysql-5.1
Branch merges
Related source package recipes
Branch information
Recent revisions
- 33. By Seth Arnold
-
* SECURITY UPDATE: Update to 5.1.69 to fix security issues (LP: #1170516)
- http://www.oracle. com/technetwork /topics/ security/ cpuapr2013- 1899555. html - 32. By Marc Deslauriers
-
* SECURITY UPDATE: Update to 5.1.67 to fix security issues (LP: #1100264)
- http://www.oracle. com/technetwork /topics/ security/ cpujan2013- 1515902. html
* debian/patches/ 99_CVE- 2012-5611. patch: removed, included upstream. - 31. By Marc Deslauriers
-
* SECURITY UPDATE: arbitrary code execution via long argument
- debian/patches/ 99_CVE- 2012-5611. patch: don't overflow buffer in
sql/sql_acl.cc, add tests to mysql-test/t/information_ schema. test,
mysql-test/r/ information_ schema. result.
- CVE-2012-5611 - 30. By Marc Deslauriers
-
* SECURITY UPDATE: Update to 5.1.66 to fix security issues (LP: #1068158)
- http://www.oracle. com/technetwork /topics/ security/ cpuoct2012- 1515893. html
* debian/mysql-server- 5.1.postrm: do not delete local files if main
conffile still exists since it probably means it is owned by a
new/different package. (LP: #986892) - 29. By Marc Deslauriers
-
* SECURITY UPDATE: Update to 5.1.62 to fix security issues (LP: #965523)
- http://dev.mysql. com/doc/ refman/ 5.1/en/ news-5- 1-62.html - 28. By Marc Deslauriers
-
* SECURITY UPDATE: Update to 5.1.61 to fix multiple security issues
(LP: #937869)
- http://www.oracle. com/technetwork /topics/ security/ cpujan2012- 366304. html
- CVE-2011-2262
- CVE-2012-0075
- CVE-2012-0112
- CVE-2012-0113
- CVE-2012-0114
- CVE-2012-0115
- CVE-2012-0116
- CVE-2012-0117
- CVE-2012-0118
- CVE-2012-0119
- CVE-2012-0120
- CVE-2012-0484
- CVE-2012-0485
- CVE-2012-0486
- CVE-2012-0487
- CVE-2012-0488
- CVE-2012-0489
- CVE-2012-0490
- CVE-2012-0491
- CVE-2012-0492
- CVE-2012-0493
- CVE-2012-0494
- CVE-2012-0495
- CVE-2012-0496 - 27. By Chuck Short
-
* Merge from debian unstable. Remaining changes:
+ debian/control:
* Update maintainer according to spec.
* Move section from "misc" to "database".
* Added libmysqlclient16-dev an empty transitional package.
* Added mysql-client-core-5. 1 package.
* Suggest mailx for mysql-server-5.1
* Add mysql-testsuite package so you can run the testsuite seperately.
+ debian/additions/ my.cnf:
* Remove language options. Error message files are located in a
different directory in Mysql 5.0. Setting the language option
to use /usr/share/mysql/english breaks Mysql 5.0. Both 5.0
and 5.1 use a different value that works. (LP: #316974)
+ Add apparmor profile:
* debian/apparmor- profile: apparmor-profile
* debian/rules, debian/mysql-server- 5.1.files: install apparmor profile
* debian/mysql-server- 5.1.dirs: add etc/apparmor. d/fore- complain
* debian/mysql-server- 5.1.postrm: remove symlink in force-complain/ on purge.
* debian/mysql-server- 5.1.README. Debian: add apparmor documentation.
* debian/additions/ my.cnf: Add warning about apparmor. (LP: #201799)
* debian/mysql-server- 5.1.postinst: reload apparmor profiles
+ Convert the package from sysvinit to upstart:
* debian/mysql-server- 5.1.mysql. upstart: Add upstart script.
* debian/mysql-server- 5.1.mysql. init: Dropped, unused now with upstart.
* debian/additions/ mysqld_ safe_syslog. cnf: Dropped, unused now with upstart.
* debian/additons/ my.cnf: Remove pid declaration and setup error
logging to /var/log/mysql since we're not piping
anything around logger anymore.
* debian/rules, debian/mysql-server- 5.1.logcheck. ignore. {paranoid, worstation} ,
debian/mysql-server- 5.1.logcheck. ignore. server: : Remove references to mysqld_safe
* debian/patches/ 38_scripts_ mysqld_ safe.sh_ signals. dpatch: Dropped
+ Added -fno-strict-aliasing to CFLAGS to get around mysql testsuite
build failures
+ Add Apport hook (LP: #354188):
* debian/mysql-server- 5.1.py: apport package hook
* debian/rules: Make it installable
+ debian/mysql-server- 5.1.mysql- server. logrotate: Check to see if mysql
is running before running logrotate. (LP: #513135)
+ debian/mysql-server- 5.1.preinst: Set mysql user's home directory
to /nonexistent to protect against having the /var/lib/mysql
user-writeable. If an attacker can trick mysqld into creating
dot files in the home directory, he could do .rhost-like attacks
on the system. (LP: #293258)
+ debian/control: mysql-client-5.1 should depend on mysql-core-client- 5.1.
(LP: #590952)
+ debian/mysql-server. 5.1.postinst: Specify the mysql user when installing
the mysql databases. (LP: #591875)
+ Installing mysql_config_pic in /usr/bin so users of libmysqld-pic
can extract the appropriate compile flags. (LP: #605021) - 26. By Chuck Short
-
* Merge from debian unstable. Remaining changes:
+ debian/control:
* Update maintainer according to spec.
* Move section from "misc" to "database".
* Added libmysqlclient16-dev an empty transitional package.
* Added mysql-client-core-5. 1 package.
* Suggest mailx for mysql-server-5.1
* Add mysql-testsuite package so you can run the testsuite seperately.
+ debian/additions/ my.cnf:
* Remove language options. Error message files are located in a
different directory in Mysql 5.0. Setting the language option
to use /usr/share/mysql/english breaks Mysql 5.0. Both 5.0
and 5.1 use a different value that works. (LP: #316974)
+ Add apparmor profile:
* debian/apparmor- profile: apparmor-profile
* debian/rules, debian/mysql-server- 5.1.files: install apparmor profile
* debian/mysql-server- 5.1.dirs: add etc/apparmor. d/fore- complain
* debian/mysql-server- 5.1.postrm: remove symlink in force-complain/ on purge.
* debian/mysql-server- 5.1.README. Debian: add apparmor documentation.
* debian/additions/ my.cnf: Add warning about apparmor. (LP: #201799)
* debian/mysql-server- 5.1.postinst: reload apparmor profiles
+ Convert the package from sysvinit to upstart:
* debian/mysql-server- 5.1.mysql. upstart: Add upstart script.
* debian/mysql-server- 5.1.mysql. init: Dropped, unused now with upstart.
* debian/additions/ mysqld_ safe_syslog. cnf: Dropped, unused now with upstart.
* debian/additons/ my.cnf: Remove pid declaration and setup error
logging to /var/log/mysql since we're not piping
anything around logger anymore.
* debian/rules, debian/mysql-server- 5.1.logcheck. ignore. {paranoid, worstation} ,
debian/mysql-server- 5.1.logcheck. ignore. server: : Remove references to mysqld_safe
* debian/patches/ 38_scripts_ mysqld_ safe.sh_ signals. dpatch: Dropped
+ Added -fno-strict-aliasing to CFLAGS to get around mysql testsuite
build failures.
+ Add Apport hook (LP: #354188):
* debian/mysql-server- 5.1.py: apport package hook
* debian/rules: Make it installable
+ debian/mysql-server- 5.1.mysql- server. logrotate: Check to see if mysql
is running before running logrotate. (LP: #513135)
+ debian/mysql-server- 5.1.preinst: Set mysql user's home directory
to /nonexistent to protect against having the /var/lib/mysql
user-writeable. If an attacker can trick mysqld into creating
dot files in the home directory, he could do .rhost-like attacks
on the system. (LP: #293258)
+ debian/control: mysql-client-5.1 should depend on mysql-core-client- 5.1.
(LP: #590952)
+ debian/mysql-server. 5.1.postinst: Specify the mysql user when installing
the mysql databases. (LP: #591875)
+ Installing mysql_config_pic in /usr/bin so users of libmysqld-pic
can extract the appropriate compile flags. (LP: #605021) - 24. By Clint Byrum
-
[Clint Byrum]
* export configured source dir as binary package. -- needed for some
plugins to build.[Chuck Short]
* debian/control: Fix conflict when installing mysql-client.
(LP: #712479)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/precise/mysql-5.1
