lp:ubuntu/saucy-security/mysql-5.5

Created by Ubuntu Package Importer on 2013-10-24 and last modified on 2014-04-23
Get this branch:
bzr branch lp:ubuntu/saucy-security/mysql-5.5
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

39. By Marc Deslauriers on 2014-04-19

* SECURITY UPDATE: Update to 5.5.37 to fix security issues (LP: #1309662)
  - http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
  - CVE-2014-0001
  - CVE-2014-0384
  - CVE-2014-2419
  - CVE-2014-2430
  - CVE-2014-2431
  - CVE-2014-2432
  - CVE-2014-2436
  - CVE-2014-2438
  - CVE-2014-2440
* Drop creation of insecure database permissions:
  - d/p/33_scripts__mysql_create_system_tables__no_test.patch,
    d/p/41_scripts__mysql_install_db.sh__no_test.patch,
    d/p/50_mysql-test__db_test.patch: Restored from mysql-5.1
    package, inadvertently dropped in 5.5 transition. This
    removes the global anonymous access to the database which
    is a security concern.

38. By Marc Deslauriers on 2014-01-16

* SECURITY UPDATE: Update to 5.5.35 to fix security issues (LP: #1269993)
  - http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
  - CVE-2013-5891
  - CVE-2013-5908
  - CVE-2014-0386
  - CVE-2014-0393
  - CVE-2014-0401
  - CVE-2014-0402
  - CVE-2014-0412
  - CVE-2014-0420
  - CVE-2014-0437

37. By Marc Deslauriers on 2013-10-22

* SECURITY UPDATE: Update to 5.5.34 to fix security issues (LP: #1243253)
  - http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
  - CVE-2013-3839
  - CVE-2013-5807

36. By Robie Basak on 2013-09-18

* d/rules, d/control: remove gcc-4.4 dependency and disable X86 assembly in
  taocrypt (LP: #1162139).
  - Cherry-pick from Debian svn r2231 with thanks to Clint Byrum.

35. By James Page on 2013-08-30

d/tests/upstream: Redirect stderr>stdout to fix DEP-8 test failure.

34. By Dimitri John Ledkov on 2013-08-29

Drop unnecessary depends on versioned upstart. Apparmor loading helper
has been available for more than one LTS release now, so explicit
dependency is not required any more.

33. By James Page on 2013-08-29

d/tests/upstream: Remove trailing / from --vardir to fix DEP-8 test
failures (LP: #1216008).

32. By Robie Basak on 2013-08-27

Revert 5.5.32-0ubuntu2, which caused a severe regression making the
package uninstallable. See LP: #1121874 for details.

31. By Adam Stokes on 2013-07-31

[Eduardo Damato]
Fix upstart script to account for datadir disk shortage (LP: #1121874)

30. By Marc Deslauriers on 2013-07-23

* SECURITY UPDATE: Update to 5.5.32 to fix security issues (LP: #1203828)
  - http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
  - CVE-2013-1861
  - CVE-2013-3783
  - CVE-2013-3793
  - CVE-2013-3802
  - CVE-2013-3804
  - CVE-2013-3809
  - CVE-2013-3812
* SECURITY UPDATE: insecure creation of debian.cnf file
  - debian/mysql-server-5.5.postinst: set umask to 066 before creating
    debian.cnf.
  - CVE-2013-2162
* Fix FTBFS from test suite failure
  - debian/patches/72_fix_rpl_deadlock_innodb_test.patch: ignore warning
    from rpl.rpl_deadlock_innodb test in mysql-test/include/mtr_warnings.sql.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/trusty/mysql-5.5
This branch contains Public information 
Everyone can see this information.

Subscribers