Ubuntu

lp:ubuntu/oneiric-security/mysql-5.1

Created by Ubuntu Package Importer on 2012-03-12 and last modified on 2013-04-24
Get this branch:
bzr branch lp:ubuntu/oneiric-security/mysql-5.1
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

33. By Seth Arnold on 2013-04-18

* SECURITY UPDATE: Update to 5.1.69 to fix security issues (LP: #1170516)
  - http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html

32. By Marc Deslauriers on 2013-01-16

* SECURITY UPDATE: Update to 5.1.67 to fix security issues (LP: #1100264)
  - http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
* debian/patches/99_CVE-2012-5611.patch: removed, included upstream.

31. By Marc Deslauriers on 2012-12-07

* SECURITY UPDATE: arbitrary code execution via long argument
  - debian/patches/99_CVE-2012-5611.patch: don't overflow buffer in
    sql/sql_acl.cc, add tests to mysql-test/t/information_schema.test,
    mysql-test/r/information_schema.result.
  - CVE-2012-5611

30. By Marc Deslauriers on 2012-10-22

* SECURITY UPDATE: Update to 5.1.66 to fix security issues (LP: #1068158)
  - http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
* debian/mysql-server-5.1.postrm: do not delete local files if main
  conffile still exists since it probably means it is owned by a
  new/different package. (LP: #986892)

29. By Marc Deslauriers on 2012-03-26

* SECURITY UPDATE: Update to 5.1.62 to fix security issues (LP: #965523)
  - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-62.html

28. By Marc Deslauriers on 2012-02-22

* SECURITY UPDATE: Update to 5.1.61 to fix multiple security issues
  (LP: #937869)
  - http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
  - CVE-2011-2262
  - CVE-2012-0075
  - CVE-2012-0112
  - CVE-2012-0113
  - CVE-2012-0114
  - CVE-2012-0115
  - CVE-2012-0116
  - CVE-2012-0117
  - CVE-2012-0118
  - CVE-2012-0119
  - CVE-2012-0120
  - CVE-2012-0484
  - CVE-2012-0485
  - CVE-2012-0486
  - CVE-2012-0487
  - CVE-2012-0488
  - CVE-2012-0489
  - CVE-2012-0490
  - CVE-2012-0491
  - CVE-2012-0492
  - CVE-2012-0493
  - CVE-2012-0494
  - CVE-2012-0495
  - CVE-2012-0496

27. By Chuck Short on 2011-07-25

* Merge from debian unstable. Remaining changes:
  + debian/control:
     * Update maintainer according to spec.
     * Move section from "misc" to "database".
     * Added libmysqlclient16-dev an empty transitional package.
     * Added mysql-client-core-5.1 package.
     * Suggest mailx for mysql-server-5.1
     * Add mysql-testsuite package so you can run the testsuite seperately.
  + debian/additions/my.cnf:
    * Remove language options. Error message files are located in a
      different directory in Mysql 5.0. Setting the language option
      to use /usr/share/mysql/english breaks Mysql 5.0. Both 5.0
      and 5.1 use a different value that works. (LP: #316974)
  + Add apparmor profile:
    * debian/apparmor-profile: apparmor-profile
    * debian/rules, debian/mysql-server-5.1.files: install apparmor profile
    * debian/mysql-server-5.1.dirs: add etc/apparmor.d/fore-complain
    * debian/mysql-server-5.1.postrm: remove symlink in force-complain/ on purge.
    * debian/mysql-server-5.1.README.Debian: add apparmor documentation.
    * debian/additions/my.cnf: Add warning about apparmor. (LP: #201799)
    * debian/mysql-server-5.1.postinst: reload apparmor profiles
  + Convert the package from sysvinit to upstart:
    * debian/mysql-server-5.1.mysql.upstart: Add upstart script.
    * debian/mysql-server-5.1.mysql.init: Dropped, unused now with upstart.
    * debian/additions/mysqld_safe_syslog.cnf: Dropped, unused now with upstart.
    * debian/additons/my.cnf: Remove pid declaration and setup error
      logging to /var/log/mysql since we're not piping
      anything around logger anymore.
    * debian/rules, debian/mysql-server-5.1.logcheck.ignore.{paranoid,worstation},
      debian/mysql-server-5.1.logcheck.ignore.server: : Remove references to mysqld_safe
    * debian/patches/38_scripts_mysqld_safe.sh_signals.dpatch: Dropped
  + Added -fno-strict-aliasing to CFLAGS to get around mysql testsuite
    build failures
  + Add Apport hook (LP: #354188):
    * debian/mysql-server-5.1.py: apport package hook
    * debian/rules: Make it installable
  + debian/mysql-server-5.1.mysql-server.logrotate: Check to see if mysql
    is running before running logrotate. (LP: #513135)
  + debian/mysql-server-5.1.preinst: Set mysql user's home directory
    to /nonexistent to protect against having the /var/lib/mysql
    user-writeable. If an attacker can trick mysqld into creating
    dot files in the home directory, he could do .rhost-like attacks
    on the system. (LP: #293258)
  + debian/control: mysql-client-5.1 should depend on mysql-core-client-5.1.
    (LP: #590952)
  + debian/mysql-server.5.1.postinst: Specify the mysql user when installing
    the mysql databases. (LP: #591875)
  + Installing mysql_config_pic in /usr/bin so users of libmysqld-pic
    can extract the appropriate compile flags. (LP: #605021)

26. By Chuck Short on 2011-07-14

* Merge from debian unstable. Remaining changes:
  + debian/control:
     * Update maintainer according to spec.
     * Move section from "misc" to "database".
     * Added libmysqlclient16-dev an empty transitional package.
     * Added mysql-client-core-5.1 package.
     * Suggest mailx for mysql-server-5.1
     * Add mysql-testsuite package so you can run the testsuite seperately.
+ debian/additions/my.cnf:
    * Remove language options. Error message files are located in a
      different directory in Mysql 5.0. Setting the language option
      to use /usr/share/mysql/english breaks Mysql 5.0. Both 5.0
      and 5.1 use a different value that works. (LP: #316974)
+ Add apparmor profile:
    * debian/apparmor-profile: apparmor-profile
    * debian/rules, debian/mysql-server-5.1.files: install apparmor profile
    * debian/mysql-server-5.1.dirs: add etc/apparmor.d/fore-complain
    * debian/mysql-server-5.1.postrm: remove symlink in force-complain/ on purge.
    * debian/mysql-server-5.1.README.Debian: add apparmor documentation.
    * debian/additions/my.cnf: Add warning about apparmor. (LP: #201799)
    * debian/mysql-server-5.1.postinst: reload apparmor profiles
 + Convert the package from sysvinit to upstart:
    * debian/mysql-server-5.1.mysql.upstart: Add upstart script.
    * debian/mysql-server-5.1.mysql.init: Dropped, unused now with upstart.
    * debian/additions/mysqld_safe_syslog.cnf: Dropped, unused now with upstart.
    * debian/additons/my.cnf: Remove pid declaration and setup error
      logging to /var/log/mysql since we're not piping
      anything around logger anymore.
    * debian/rules, debian/mysql-server-5.1.logcheck.ignore.{paranoid,worstation},
      debian/mysql-server-5.1.logcheck.ignore.server: : Remove references to mysqld_safe
    * debian/patches/38_scripts_mysqld_safe.sh_signals.dpatch: Dropped
  + Added -fno-strict-aliasing to CFLAGS to get around mysql testsuite
    build failures.
  + Add Apport hook (LP: #354188):
    * debian/mysql-server-5.1.py: apport package hook
    * debian/rules: Make it installable
  + debian/mysql-server-5.1.mysql-server.logrotate: Check to see if mysql
    is running before running logrotate. (LP: #513135)
  + debian/mysql-server-5.1.preinst: Set mysql user's home directory
    to /nonexistent to protect against having the /var/lib/mysql
    user-writeable. If an attacker can trick mysqld into creating
    dot files in the home directory, he could do .rhost-like attacks
    on the system. (LP: #293258)
  + debian/control: mysql-client-5.1 should depend on mysql-core-client-5.1.
    (LP: #590952)
  + debian/mysql-server.5.1.postinst: Specify the mysql user when installing
    the mysql databases. (LP: #591875)
  + Installing mysql_config_pic in /usr/bin so users of libmysqld-pic
    can extract the appropriate compile flags. (LP: #605021)

25. By Martin Pitt on 2011-07-14

debian/apparmor-profile: Allow /var/run and /run. (LP: #810270)

24. By Clint Byrum on 2011-02-02

[Clint Byrum]
* export configured source dir as binary package. -- needed for some
  plugins to build.

[Chuck Short]
* debian/control: Fix conflict when installing mysql-client.
  (LP: #712479)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/precise/mysql-5.1
This branch contains Public information 
Everyone can see this information.

Subscribers