changelog 45.7 KB
Newer Older
1
2
3
4
5
6
7
8
9
10
mariadb-10.1 (10.1.39-0+deb9u1) stretch-security; urgency=high

  * SECURITY UPDATE: New upstream version 10.1.39. Includes fixes for
    the following security vulnerabilities:
    - CVE-2019-2627
    - CVE-2019-2614
  * Amend previous changelog entries to include newly released CVE numbers.

 -- Otto Kekäläinen <otto@debian.org>  Fri, 03 May 2019 10:18:41 +0300

11
mariadb-10.1 (10.1.38-0+deb9u1) stretch; urgency=medium
12
13

  * SECURITY UPDATE: New upstream release 10.1.38. Includes fixes for
14
    the following security vulnerabilities (Closes: #920933):
15
16
17
    - CVE-2019-2537
    - CVE-2019-2529
  * Update correct branch name in gbp.conf
18
  * Disable test unit.pcre_test on s390x that was failing in stretch-security
19
20
21
22
    (Closes: #920854)
  * Limit build test suite to 'main' like in mariadb-10.3 to make unnecessary
    build failures less likely in lifetime of Stretch.
  * Fix mips compilation failure (__bss_start symbol missing) (Closes: #920855)
23
24
  * Extend the server README to clarify common misunderstandings
    (Closes: #878215)
25
26
27
28
  * Enable ccache in CMake path so it can be used automatically where available
  * Heavily refactor and unify gitlab-ci.yml MariaDB install/upgrade steps.
    This ensures uploads to Stretch are much more safer to do now than in the
    past.
29

30
 -- Otto Kekäläinen <otto@debian.org>  Tue, 16 Apr 2019 14:56:50 +0300
31

32
mariadb-10.1 (10.1.37-0+deb9u1) stretch-security; urgency=high
33

34
  * SECURITY UPDATE: New upstream release 10.1.37. Includes fixes for
35
    the following security vulnerabilities (Closes: #912848):
36
    - CVE-2019-2503
37
38
39
40
41
42
    - CVE-2018-3282
    - CVE-2018-3251
    - CVE-2018-3174
    - CVE-2018-3156
    - CVE-2018-3143
    - CVE-2016-9843
43
44
45
46
  * Add (and rename) new man pages
  * Add Gitlab-CI definition file that can test each commit to this repository
  * Fix d/control metadata to match status for Debian Stretch
  * Physically remove patches no longer in series and not applied anyway
47
48
  * Fix wrong-path-for-interpreter in innotop script to make package
    Lintian error free as pass CI systems fully
49
50
51
  * Previous upstream version 10.1.36 included fixes for the following
    security vulnerabilities:
    - CVE-2019-2503
52
53
  * Previous upstream version 10.1.35 included fixes for the following
    security vulnerabilities:
54
55
56
57
    - CVE-2018-3066
    - CVE-2018-3064
    - CVE-2018-3063
    - CVE-2018-3058
58
59
  * Previous upstream version 10.1.33 included fixes for the following
    security vulnerabilities:
60
    - CVE-2019-2455
61
62
63
64
65
66
67
68
    - CVE-2018-2819
    - CVE-2018-2817
    - CVE-2018-2813
    - CVE-2018-2787
    - CVE-2018-2784
    - CVE-2018-2782
    - CVE-2018-2781
    - CVE-2018-2771
69
    - CVE-2018-2767
70
71
72
73
74
75
76
77
78
79
80
    - CVE-2018-2766
    - CVE-2018-2761
    - CVE-2018-2755
  * Previous upstream version 10.1.31 included fixes for the following
    security vulnerabilities:
    - CVE-2018-2668
    - CVE-2018-2665
    - CVE-2018-2640
    - CVE-2018-2622
    - CVE-2018-2612
    - CVE-2018-2562
81
82
83
  * Revert "Update d/gbp.conf to track stretch branches"
  * New upstream version 10.1.30. Includes fixes for the following
    security vulnerabilities (Closes: #885345):
84
    - CVE-2018-3133
85
86
    - CVE-2017-15365
  * Amend previous Debian changelog entries to contain new CVE identifiers
87
  * Refresh patches for MariaDB 10.1.30 and again for .34
88
89
90
  * Delete unnecessary systemd files introduced by upstream
  * Add new files introduced by upstream to correct packages
  * Use list-missing instead of fail in d/rules so builds pass
91
92

  [ Ondřej Surý ]
93
94
95
96
97
  * New upstream version 10.1.29. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-10378
    - CVE-2017-10268
    - MDEV-13819
98
99
100
101
102
103
104
105
106
107
108
109
  * Add libconfig-inifiles-perl to mariadb-client-10.1 depends to fix
    mytop
  * Add mips64el to the list of platforms that are allowed to fail test
    suite
  * Handle new and/or missing files
  * Ignore failed tests on more non-release platforms (kfreebsd-i386,
    kfreebsd-amd64 and sparc64)
  * Rebase patches for MariaDB 10.1.29

  [ Christian Ehrhardt ]
  * d/t/upstream: skip func_regexp_pcre on s390x

110
111
  [ Vicentiu Ciorbaru ]
  * Fix Mroonga compilation failure on arm64
112
113
  * Extend libmariadbclient-rename.patch to cover TokuDB as well
  * Disable disks.disks test
114

115
 -- Otto Kekäläinen <otto@debian.org>  Wed, 08 Aug 2018 19:32:41 +0300
116

Ondrej Sury's avatar
Ondrej Sury committed
117
mariadb-10.1 (10.1.26-0+deb9u1) stretch-security; urgency=high
Ondrej Sury's avatar
Ondrej Sury committed
118
119
120

  * New upstream version 10.1.26.  Includes fixes for the following
    security vulnerabilities:
121
122
123
    - CVE-2017-10384
    - CVE-2017-10379
    - CVE-2017-10286
Ondrej Sury's avatar
Ondrej Sury committed
124
125
126
127
128
129
130
131
132
133
134
135
    - CVE-2017-3636
    - CVE-2017-3641
    - CVE-2017-3653
  * Explicitly add dh_systemd_start snippets to mariadb-server-10.1
    because it's all messed up with different name for sysvinit ('mysql')
    and systemd ('mariadb') (Closes: #865870)
  * gbp.conf: Ignore upstream debian/ directory when importing upstream
    tarball
  * Refresh patches on top of MariaDB 10.1.26

 -- Ondřej Surý <ondrej@debian.org>  Thu, 10 Aug 2017 21:07:44 +0200

Ondrej Sury's avatar
Ondrej Sury committed
136
137
138
139
140
141
142
mariadb-10.1 (10.1.25-0+deb9u1) stretch; urgency=medium

  * New upstream version 10.1.25
  * Update quilt patches on top of mariadb-10.1.25 release

 -- Ondřej Surý <ondrej@debian.org>  Thu, 20 Jul 2017 09:35:41 +0200

Ondrej Sury's avatar
Ondrej Sury committed
143
144
145
146
147
148
149
mariadb-10.1 (10.1.24-0+deb9u2) stretch; urgency=medium

  * Run invoke-rc.d mysql maintscript snippets only when running under
    sysvinit (Closes: #864593)

 -- Ondřej Surý <ondrej@debian.org>  Wed, 21 Jun 2017 11:11:53 +0200

Ondrej Sury's avatar
Ondrej Sury committed
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
mariadb-10.1 (10.1.24-0+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * New upstream version 10.1.24
  * Update d/gbp.conf to track stretch branches
  * Refresh patches on top of MariaDB 10.1.24
  * Add cracklib-runtime to Build-Depends to fix FTBFS
  * Merge mytop script improvements from src:mytop package (Original
    patches by Philipp Matthias Hahn, Werner Detter, Olaf van der Spek,
    and Steffen Zieger) (Closes: #864762)
  * Add @SYSTEMD_EXECSTARTPOST@ replacement token to mariadb@.service, so
    the /var/run/mysqld directory is created even for multi-server setup
    (Closes: #865083)

  [ Andreas Beckmann ]
  * Fix FTBFS on 32-bit mips*

  [ James Cowgill ]
  * Update C11 atomics to have correct semantics (Closes: #864774)
  * Disable jemalloc on mips*. (Closes: #864340)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 19 Jun 2017 10:19:37 +0200

173
174
175
176
177
178
179
180
mariadb-10.1 (10.1.23-9+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * Add Breaks: cqrlog (<< 1.9.0-5~) to ensure correct upgrade order
    (Closes: #864159)

 -- Andreas Beckmann <anbe@debian.org>  Wed, 07 Jun 2017 21:11:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
181
182
183
184
185
186
187
mariadb-10.1 (10.1.23-9) unstable; urgency=medium

  * Fix the invalid location of insserv configuration snippet
    (Thanks Michael Biebl for catching that)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 26 May 2017 09:26:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
188
189
190
191
192
193
194
mariadb-10.1 (10.1.23-8) unstable; urgency=medium

  * Use /etc/insserv.conf.d/mariadb to provide $database system facility
    (Closes: #862447)

 -- Ondřej Surý <ondrej@debian.org>  Sat, 13 May 2017 11:08:43 +0200

Ondrej Sury's avatar
Ondrej Sury committed
195
196
197
198
199
200
201
mariadb-10.1 (10.1.23-7) unstable; urgency=medium

  * Remove hard Breaks/Replaces with mysql-server and mysql-client
  * Move virtual packages from Breaks to Conflicts (Debian Policy 7.6.2)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 12 May 2017 12:21:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
202
203
204
205
206
207
mariadb-10.1 (10.1.23-6) unstable; urgency=medium

  * Also fix the same assertion failure in xtradb (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 19:51:47 +0200

Ondrej Sury's avatar
Ondrej Sury committed
208
209
210
211
212
213
214
mariadb-10.1 (10.1.23-5) unstable; urgency=medium

  * Add upstream patch to fix assertion failure in InnoDB storage engine
    (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 17:21:55 +0200

Ondrej Sury's avatar
Ondrej Sury committed
215
216
217
218
219
220
mariadb-10.1 (10.1.23-4) unstable; urgency=medium

  * Properly declare conflict on mytop (Closes: #861913)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 11:31:13 +0200

Ondrej Sury's avatar
Ondrej Sury committed
221
222
223
224
225
226
227
mariadb-10.1 (10.1.23-3) unstable; urgency=medium

  * Remove two internal symbols (ll2str and longlong2str) from
    kfrebsd-amd64 symbols file

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 13:19:00 +0200

Ondrej Sury's avatar
Ondrej Sury committed
228
229
230
231
232
233
234
mariadb-10.1 (10.1.23-2) unstable; urgency=medium

  * Add CVE list for 10.1.23 release
  * Fix FTBFS on kfrebsd-any due missing .service files

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 10:55:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
235
236
mariadb-10.1 (10.1.23-1) unstable; urgency=medium

Ondrej Sury's avatar
Ondrej Sury committed
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
  * New upstream version 10.1.23, includes fixes for the following
    security vulnerabilities:
   - [CVE-2017-3302]: use-after-free in C client library for MySQL
   - [CVE-2017-3313]: unauthorized (local) access to critical data or
     complete access to all MySQL Server accessible data
   - [CVE-2017-3308]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3309]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3453]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3456]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3464]: unauthorized update, insert or delete access to some
     of MySQL Server accessible data
Ondrej Sury's avatar
Ondrej Sury committed
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
  * Refresh debian/patches on top of MariaDB 10.1.23 release
  * debian/gbp.conf: Filter most common cruft in the orig tarball
  * debian/rules: Use --fail-missing to catch extra upstream files
  * debian/*.manpages: Merge into debian/*.install
  * debian/*.install: Add few missing binaries into various packages
  * Declare mariadb-plugin-tokudb as available only on (linux-)amd64
    to fix FTBFS on kfreebsd-amd64
  * Remove the extra sanity check as it is already there via standard
    dh_installinit (|| exit 0) (Closes: #861782)
  * Stop /usr/sbin/mysqld in prerm script even with systemd
  * Move mariadb.pc into proper multiarch directory (Closes: #852621)
  * Add libarchive-dev needed by mariabackup to Build-Depends
  * debian/control: run wrap-and-sort -a
  * Move mysql_install_db from mariadb-server-10.1 to
    mariadb-server-core-10.1 (Closes: #840646)
  * Add Provides: $database to mysql.init - this partially addresses
    #852776
  * Call dh_systemd_start with --no-restart-after-upgrade
    (Closes: #853137)
  * d/rules: Remove dh_prep override (legacy cruft)

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 07:23:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
275
276
277
278
279
280
281
mariadb-10.1 (10.1.22-4) unstable; urgency=medium

  * Fix small typo in d/rules that caused MySQL version suffix to not
    contain information about Debian build

 -- Ondřej Surý <ondrej@debian.org>  Sat, 29 Apr 2017 21:56:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
282
283
284
285
286
287
288
289
290
291
mariadb-10.1 (10.1.22-3) unstable; urgency=medium

  * Use pidof instead of pgrep, so we don't have to depend on procps
  * Stop stopping mariadb server that many times and just add a simple
    check to preinst that it has been really stopped (Closes: #852495)
  * Fix small typo in gettid patch
  * Disable TokuDB on kfreebsd-amd64

 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
mariadb-10.1 (10.1.22-2) unstable; urgency=medium

  [ Ondřej Surý ]
  * Add correct kfreebsd-i386 symbols file (but this needs to be fixed in
    how upstream uses linker)
  * Update italian translation (Closes: #858300)

  [ Otto Kekäläinen ]
  * Add Vietnamese translation by Trn Ngc Quân
  * Add Finnish translation by Antti Järvinen

  [ Ondřej Surý ]
  * Disable test suite on hppa, don't fail test suite on more unstable
    platforms: alpha, powerpc, and x32
  * Add swedish debconf translation (Closes: #858536)
  * Add Catalan debconf translation (Closes: #858632)
  * Use thr_self() as gettid implementation onf __FreeBSD_kernel__
  * Make mariadb-server-10.1 installable on kFreeBSD and Hurd (Closes: #851687)
  * Update Turkish debconf translation (Closes: #858340)
  * Disable specific tests on hppa to make the build succeed (Courtesy of
    John David Anglin) (Closes: #858869)

Ondrej Sury's avatar
Ondrej Sury committed
314
 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:01 +0200
Ondrej Sury's avatar
Ondrej Sury committed
315

316
mariadb-10.1 (10.1.22-1) unstable; urgency=high
317

Ondrej Sury's avatar
Ondrej Sury committed
318
  [ Otto Kekäläinen ]
319
320
321
322
323
324
325
  * New upstream release 10.1.22. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-3313
    - CVE-2017-3302
  * New upstream also includes fix to logrotate so that it no longer
    risks interrupting binary/relay log processing on the server.
    https://github.com/MariaDB/server/commit/156cf86defdc59353f37f6
Ondrej Sury's avatar
Ondrej Sury committed
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
  * Add a NEWS.Debian item with same contents as the Stretch release notes

  [ Ondřej Surý ]
  * Add myself to Uploaders
  * Use https URI for Homepage
  * Use /usr/share/dpkg/default.mk to define dpkg-architecture and other
    build variables
  * Install and use non-versioned symbols files for kFreeBSD and Hurd
    architectures
  * Make mysql_config and mariadb.pc return -lmariadbclient instead of
    missing -lmysqlclient
  * Add mysqlclient.pc -> mariadb.pc symlink into
    libmariadbclient-dev-compat package
  * MDEV-11884: Fix logrotate failing if mysqld is not running (Closes: #830976)

 -- Ondřej Surý <ondrej@debian.org>  Sun, 19 Mar 2017 15:23:26 +0100
342

Otto Kekäläinen's avatar
Otto Kekäläinen committed
343
344
mariadb-10.1 (10.1.21-5) unstable; urgency=low

345
346
347
348
349
350
  [ James Clarke ]
  * Make debian/mariadb-server-10.1.install executable (Closes: #852728)
  * Allow mariadb-plugin-tokudb/mroonga on non-linux and non-release arches
  * Detect whether libatomic is needed rather than hard-coding for mips
  * Use host architecture, not build architecture, and clean up variables
  * General clean-up in d/rules
Otto Kekäläinen's avatar
Otto Kekäläinen committed
351

352
 -- Otto Kekäläinen <otto@debian.org>  Fri, 27 Jan 2017 20:42:36 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
353

354
355
356
357
358
359
mariadb-10.1 (10.1.21-4) unstable; urgency=low

  * Hotfix to full build failure: Add missing galera_new_cluster.1 to patch

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 23:33:32 +0200

360
mariadb-10.1 (10.1.21-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
361

362
363
  [ Ian Gilfillan ]
  * Extend WSREP and Galera man pages patch to cover all commands
Otto Kekäläinen's avatar
Otto Kekäläinen committed
364

365
  [ Dieter Adriaenssens ]
366
  * Specify Architecture for mariadb-plugin-mroonga and mariadb-plugin-tokudb
367
368
369
370
371
372
    (Closes: #852709)

  [ James Clarke ]
  * Fix FTBFS on non-Linux architectures (Closes: #852728)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 22:18:26 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
373

374
mariadb-10.1 (10.1.21-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
375

376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
  [ Otto Kekäläinen ]
  * Implement systemd packaging the Debian way
  * Extend README.Debian regarding new systemd files
  * Add config file comments about SysV init and systemd differences
  * Extend Debian.README with section about mixing with packages MariaDB.org
  * Update /etc/init.d/mysql after comparison with upstream MariaDB 10.1.21
  * Run chown much faster on the datadir during install/update
  * Check if /var/lib/mysql exists before running 'find' on it
  * Skip mysqld stopping if no mysqld process is running at all
  * Update French debconf translation by Baptiste Jammet (Closes: #850066)
  * Remove unnecessary XS-Testsuite field (as instructed by Lintian)
  * Add a modified version of upstream autobake-deb script to utilize CI tools
  * Fix server config example on how to enable SSL with YaSSL (Closes: #851132)
  * Make commands mariadb and mariadbcheck available with symlinks

  [ Jean Weisbuch ]
  * Update Innotop to latest version

  [ Ian Gilfillan ]
  * Add wsrep_* man pages
Otto Kekäläinen's avatar
Otto Kekäläinen committed
396

397
 -- Otto Kekäläinen <otto@debian.org>  Wed, 25 Jan 2017 10:42:45 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
398

399
mariadb-10.1 (10.1.21-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
400

401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities (Closes: #851759, Closes: ##849435):
    - CVE-2017-3318
    - CVE-2017-3317
    - CVE-2017-3312
    - CVE-2017-3291
    - CVE-2017-3265
    - CVE-2017-3258
    - CVE-2017-3257
    - CVE-2017-3244
    - CVE-2017-3243
    - CVE-2017-3238
    - CVE-2016-6664
  * Add new program introduced in upstream 10.1.21: mysqld_safe_helper
  * Deb-CI: remove parameter --skip-ndbcluster not available in 10.1 any more
  * Make libmariadbclient18 depend on mysql-common only (Closes: #850216)
  * Fix misleading config file comment (Closes: #677223)
  * Update preinst variable $this_version from 10.0 to 10.1 (Closes: #851257)

  [ Kristian Nielsen ]
  * Re-implement passwordless root login (Closes: #851131)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 19 Jan 2017 11:33:01 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
425

426
427
428
429
430
431
432
mariadb-10.1 (10.1.20-3) unstable; urgency=low

  [ Vicențiu Ciorbaru ]
  * Update debian rules to also account for mipsel

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 20:23:23 +0200

433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
mariadb-10.1 (10.1.20-2) unstable; urgency=low

  [ Otto Kekäläinen ]
  * Upload to unstable
  * Previous version string should had been ~exp1, thus this
    first upload to unstable is -2 and not -1 as normal
  * Disable test suite temporairly due to false regressions

  [ Dieter Adriaenssens ]
  * fix Vcs-git link format and repo name
  * update 10.0 to 10.1 in README files

  [ Vicențiu Ciorbaru ]
  * Fix mips missing atomics primitives

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 09:54:59 +0200

450
mariadb-10.1 (10.1.20-1) experimental; urgency=low
451

452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
  * Upgrade package to new MariaDB 10.1.x series:
    - New upstream release  10.1.20
    - Refresh patches after 10.1.20 import
    - Update strings 10.0 -> 10.1 after importing 10.1.20
    - Refresh patches after 10.1.20 import
    - Update d/control after 10.1 import
    - Use https protected git url in d/control
    - Backwards compatible XS-Testsuite syntax in d/control
    - Import debian/* changes done in upstream 10.1
    - Replace deprecated iproute with iproute2
    - Remove unnecessary dependencies as packages are Essential anyway
    - Remove unnecessary and big file mysql_embedded
    - Switch to 10.1 style build flag for unix socket auth module in d/rules
    - Update d/copyright after 10.1 import
    - Add missing aria_add_gis_sp.sql to mariadb-server-10.1
    - Ship SELinux and AppArmor files with the server, but as inactive
    - New package from upstream 10.1: GSS API (Kerberos) client and server
    - Extend GSSAPI plugin descriptions to satisfy Lintian
    - New plugin from upstream 10.1: Cracklib password validation
471

472
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 22:46:59 +0200
473

474
mariadb-10.0 (10.0.28-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
475

476
477
478
479
480
481
482
483
484
485
486
  [ Otto Kekäläinen ]
  * Move libmariadbd and -dev next to each other for a more logical flow in d/control
  * Move mariadb-test to last in file for a more logical flow in d/control
  * Clean away unused Lintian overrides
  * Add Lintian override for impossible mysql_config multi-arch requirement
  * Update Debian copyright based on the 2016 git log author list
  * Remove unnecessary /var/lib/mysql-upgrade (Closes: #848620)

  [ Vicențiu Ciorbaru ]
  * Fix connect.upd test in armhf
  * Fix mroonga/storage.index_read_multiple_double test in armhf
Otto Kekäläinen's avatar
Otto Kekäläinen committed
487

488
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 21:59:47 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
489

490
mariadb-10.0 (10.0.28-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
491

492
493
494
  [ Samuel Thibault ]
  * patches/hurd_socket.patch: Also avoid non-working socket path length check
    on hurd-i386.
495
  * rules: Drop symbols on hurd-i386 too (Closes: #842696).
496

497
498
499
500
501
502
503
504
505
  [ Daniel Black ]
  * Don't install private mysql header files in libmariadbclient-dev

  [ Otto Kekäläinen ]
  * Update libmariadbd18 description and contents to match latest upstream
  * Mark missing Multi-Arch as suggested by Multiarch hinter
  * Move plugins to $ARCH/*/mariadb18 to meet multiarch needs (Closes: #739452)

 -- Otto Kekäläinen <otto@debian.org>  Fri, 11 Nov 2016 22:03:33 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
506

507
mariadb-10.0 (10.0.28-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
508

509
510
  [ Vicențiu Ciorbaru ]
  * Fix tokudb jemalloc linking
Otto Kekäläinen's avatar
Otto Kekäläinen committed
511

512
513
514
515
516
517
518
519
520
521
522
523
524
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-8283
    - CVE-2016-7440
    - CVE-2016-6663
    - CVE-2016-5629
    - CVE-2016-5626
    - CVE-2016-5624
    - CVE-2016-5616
    - CVE-2016-5584
    - CVE-2016-3492
  * Drop 4 patches that have been applied upstream.
525
526
  * Delete runnable files from mariadb-test-data as they were only
    needed at build time to generate tests.
527
528

 -- Otto Kekäläinen <otto@debian.org>  Fri, 28 Oct 2016 22:51:14 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
529

530
mariadb-10.0 (10.0.27-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
531
532
533
534
535

  [ Dieter Adriaenssens ]
  * Fix typo in README.Contributor
  * Improve documentation on how to clean the build env

536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
  [ James Cowgill ]
  * Mips build and testsuite fixes (Closes: #838557, Closes: #838914)
    - Permit 93 as a valid value of the ENOTEMPTY error in the testsuite
    - Correctly fix mips64 multiplication in taocrypt
    - Ensure groonga is built with libatomic
    - Handle unaligned buffers in connect's TYPBLK class
    - Fix DEFAULT_MACHINE on mips
    - Remove various tests from unstable-tests which now pass on MIPS
    - Update debian/unstable-tests.mips*

  [ Kristian Nielsen ]
  * Fix missing path for perl in autopkgtest (Closes: #809022)
  * Fix test failures on hppa due to wrong enoempty (Closes: #837369)

 -- Otto Kekäläinen <otto@debian.org>  Sun, 02 Oct 2016 09:22:59 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
551

552
553
554
555
556
557
558
559
mariadb-10.0 (10.0.27-1) unstable; urgency=low

  * New upstream release 10.0.27
  * Remove 3 patches after 10.0.27 import as they have been applied
    upstream.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 07 Sep 2016 23:05:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
560
mariadb-10.0 (10.0.26-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
561

Otto Kekäläinen's avatar
Otto Kekäläinen committed
562
563
  [ Dieter Adriaenssens ]
  * Add DEP-12 formatted upstream metadata file (Closes: #808421)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
564

Otto Kekäläinen's avatar
Otto Kekäläinen committed
565
566
567
568
569
570
571
572
573
574
575
576
  [ Vicențiu Ciorbaru ]
  * Update innodb_xtradb patch to introduce memory barrier after lock
  * Fix failing shutdown with gcc v6

  [ Otto Kekäläinen ]
  * Extend commit d5af196 with old name of package libmariadb-dev-compat
  * Extend commit 8d2a7c9 and actually install the tokuftdump man page
  * Update mariadb-test dependencies to include also libmariadbclient18
  * Add path to fix for sporadically failing test main.information_schema_stats
  * d/rules: NUMJOBS must have a default value

 -- Otto Kekäläinen <otto@debian.org>  Wed, 17 Aug 2016 00:31:02 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
577

578
mariadb-10.0 (10.0.26-2) unstable; urgency=low
579
580

  [ Vicențiu Ciorbaru ]
581
  * Add patch to correctly revert changes from 10.0.26 that caused
582
    build failure regression on PPC64el
583

584
585
586
  [ Paul Gevers ]
  * Add autopkg tests for MariaDB 10.0 (Closes: #809022)

587
  [ Axel Beckert ]
588
  * Extend mariadb-server to purge gracefully if datadir is a mountpoint
589
    (Closes: #829491)
590
591
592
593

  [ Ian Gilfillan ]
  * Add a patch to provide a man page for tokuftdump

594
595
596
597
  [ Robie Basak ]
  * Re-add libmariadbclient18 and libmariadbclient-dev
  * Add libmariadbclient-dev-compat package

598
  [ Otto Kekäläinen ]
599
600
601
602
603
604
605
606
  * d/control: libmariadbclient18 must be 'Multi-Arch: same'
  * Make libmariadbclient-dev-compat conflict with libmariadb-dev-compat
    (Closes: #831229)
  * Add libmariadbclient-dev as dependency for libmariadbd-dev
  * Replace hacky sed of libmysqlclient->libmariadbclient with proper patch
  * Update symbols file to match newest libmariadbclient18
  * Updated Danish translation by Joe Hansen (Closes: #830592)
  * Remove mariadb-plugin-cassandra until libthrif-dev lands in unstable
607
  * Make libdbd-mysql-perl and friends Recommends instead of strict Depends
608
    (Closes: #793787)
609
610
611
612
  * Documentation and spelling fixes
  * Remove mysqlbug binary as it is not used for MariaDB
  * Update default config files with more secure TLS examples

613
 -- Otto Kekäläinen <otto@debian.org>  Fri, 29 Jul 2016 21:42:50 +0300
614

Otto Kekäläinen's avatar
Otto Kekäläinen committed
615
616
617
mariadb-10.0 (10.0.26-1) unstable; urgency=low

  * Updated French translation by Baptiste Jammet (Closes: #826879)
618
619
620
621
622
623
624
  * New upstream release 10.0.26. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-5440
    - CVE-2016-3615
    - CVE-2016-3521
    - CVE-2016-3477
  * Updated old changelog entries to include new CVE identifiers.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
625
626
627
628
  * Refresh patches after 10.0.26 import

 -- Otto Kekäläinen <otto@debian.org>  Fri, 24 Jun 2016 17:05:44 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
629
mariadb-10.0 (10.0.25-1) unstable; urgency=low
630

631
  [ Otto Kekäläinen ]
632
  * Revert previous changes tailored for Ubuntu 16.04 compatibility.
633
  * New upstream release 10.0.25. Includes fixes for the following
634
    security vulnerabilities (Closes: #823325):
635
636
637
638
639
    - CVE-2016-0666
    - CVE-2016-0655
    - CVE-2016-0648
    - CVE-2016-0647
    - CVE-2016-0643
640
641
642
    - CVE-2016-5444
    - CVE-2016-3459
    - CVE-2016-3452
643
644
645
  * Updated old changelog entries to include new CVE identifiers.
  * Upstream included changes to logrotate script that supports systems that
    has multiple mysqld processes running (Closes: #810968).
646
  * Updated Dutch translation by Frans Spiesschaert (Closes: #822894).
647
648
  * Updated Spanish translation by Javier Fernández-Sanguino Peña
    (Closes: #823099).
649
  * Updated Russian translation by Yuri Kozlov (Closes: #823422).
650
  * Updated German translation by Chris Leick (Closes: #824487).
651
  * Updated Brazilian Portuguese translation (Closes: #824644).
652
  * Updated Turkish translation by Atila KOÇ (Closes: #825802).
653
  * Add patch to provide passwordless root accounts for test suite.
654
  * Updated Japanese translation by Takuma Yamada (Closes: #825813).
655

656
657
658
  [ Vicențiu Ciorbaru ]
  * Backport upstream MDEV-9479 fix: oqgraph fails to build with boost 1.60

Otto Kekäläinen's avatar
Otto Kekäläinen committed
659
 -- Otto Kekäläinen <otto@debian.org>  Mon, 30 May 2016 22:43:30 +0300
660

661
662
663
664
665
666
667
mariadb-10.0 (10.0.24-7) unstable; urgency=low

  * Temporarily remove mariadb-plugin-cassandra as Debian FTP bot thinks
    it wasn't there before 10.0.24-6 and put the package in the NEW queue.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 13:24:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
668
mariadb-10.0 (10.0.24-6) unstable; urgency=low
669
670
671

  * Move mysql_embedded from client package to client-core package,
    equally as is in mysql-client-core-5.6 and -5.7 (LP: #1568077).
672
  * Add breaks/replaces for mariadb-client to accommodate the above.
673
674
  * Add conflicts/breaks/replaces for MySQL 5.7 series packages now
    when mysql-5.7 entered the Ubuntu repositories (LP: #1568285).
675
676
677
678
  * Detect properly if there is an incompatible data directory from 5.7,
    save it to another location and initialize a new data directory so that the
    installation can complete properly without leaving dpkg in an inconsistent
    state.
679
680
  * Remove all old passwordless root account lines to close a potential
    security vulnerability (LP: #1561062).
681

Otto Kekäläinen's avatar
Otto Kekäläinen committed
682
 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 10:56:10 +0300
683

Otto Kekäläinen's avatar
Otto Kekäläinen committed
684
mariadb-10.0 (10.0.24-5) unstable; urgency=low
685
686

  * Disable sporadically failing rpl_binlog_index test on PowerPC.
687
  * Disable another sporadic on amd64 and update all Jira links.
688
  * Fix typo in Mroonga prerm script.
689

Otto Kekäläinen's avatar
Otto Kekäläinen committed
690
 -- Otto Kekäläinen <otto@debian.org>  Sat, 12 Mar 2016 10:08:23 +0200
691

692
mariadb-10.0 (10.0.24-4) unstable; urgency=low
693

694
695
696
697
698
  * Update contributor documentation to match git-buildpackage version in sid.
  * Add libxml and unixOBDC as build-depends for ConnectSE as done by in
    upstream (Closes: #814944).
  * Upload to via NEW as mariadb-10.0 was accidentally removed from Debian
    unstable archives.
699

700
 -- Otto Kekäläinen <otto@debian.org>  Thu, 10 Mar 2016 18:40:51 +0200
701

Otto Kekäläinen's avatar
Otto Kekäläinen committed
702
mariadb-10.0 (10.0.24-3) unstable; urgency=low
703
704

  * Fix typo in rules file about Mroonga control section
705
  * Add main.delayed test exception to more platforms
706
  * Install mysql_embedded man page correctly
707

Otto Kekäläinen's avatar
Otto Kekäläinen committed
708
 -- Otto Kekäläinen <otto@debian.org>  Sun, 06 Mar 2016 22:20:52 +0200
709

Otto Kekäläinen's avatar
Otto Kekäläinen committed
710
mariadb-10.0 (10.0.24-2) unstable; urgency=low
711
712
713

  * Make new plugin packages breaks+replaces mariadb-server-10.0 as
    the files used to reside there (Closes: #815377).
714
715
  * Disable main.delayed that has been confirmed to be a false positive
    caused by built platform resource limits.
716
717
  * Disable multiple s390x tests that only fail on Ubuntu/Launchpad and
    cannot be reproduced anywhere else.
718

Otto Kekäläinen's avatar
Otto Kekäläinen committed
719
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 04 Mar 2016 08:38:25 +0200
720

Otto Kekäläinen's avatar
Otto Kekäläinen committed
721
mariadb-10.0 (10.0.24-1) unstable; urgency=low
722

723
  [ Otto Kekäläinen ]
724
725
726
  * New upstream release 10.0.24
    - Drop auth_socket patches as MDEV-8375 was partially fixed upstream
    - Refresh other patches
727
728
729
730
731
732
733
734
735
  * New upstream release includes fixes for the following security
    vulnerabilities:
    - CVE-2016-0668
    - CVE-2016-0650
    - CVE-2016-0649
    - CVE-2016-0646
    - CVE-2016-0644
    - CVE-2016-0641
    - CVE-2016-0640
736
  * Update filenames in d/copyright
737

738
  [ Ian Gilfillan ]
739
740
  * Add missing mysql_embedded man page

741
742
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 20 Feb 2016 14:23:50 +0200

Arnaud Fontaine's avatar
Arnaud Fontaine committed
743
mariadb-10.0 (10.0.23-3) unstable; urgency=low
744
745

  * Add Lintian overrides for TokuDB sources that indeed need autotools files
746
747
748
749
750
751
  * Split TokuDB, Mroonga, Spider and Cassandra into their own packages and
    start using new naming scheme 'mariadb-plugin-xzy' and rename existing
    Connect and OQGraph packages accordingly (Closes: #773727)
  * There is no need for mariadb-test packages to contain the version in the
    package name, so remove it. It only makes sense to keep the version number
    in the client and server packages, which users actually want to pin to.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
752
  * Update standards version
753
754
755

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 26 Jan 2016 11:34:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
756
mariadb-10.0 (10.0.23-2) unstable; urgency=low
757
758

  * Skip unstable Spider tests on Launchpad s390x builds
759
760
  * Extend install lists with missing files after reviewing the list
    of files produced by the build process
761
  * Update server README.Debian to match current unix socekt authentication
762
  * Lintian fixes and more updates to TokuDB plugin copyright paths
763
764
765
  * Move mysql_upgrade to server core package so that Akonadi and similar
    core package consumers can upgrade the database. Also update control file
    with breaks/replaces to allow smooth upgrades (Closes: #793977).
766
767
  * Update slow_query_log_file configuration syntax to match upstream's. Also
    fixes #677222 in MariaDB packages.
768
  * Rename and install Apport hook correctly
769
  * Remove Taocrypt workaround fixed upstream long since #627208
770
771
  * Removed CFLAGS and CXXFLAGS as suggested by Lars Tangvald and also done
    in mysql-5.6 packaging commit id 16a64e810e28f1d0b66ede274cd4c2b1a425fecb
772
773
  * Unmask the systemd mysql.service if left behind by a mysql-server-5.6
    installation, otherwise the MariaDB service would remain masked too.
774
  * Add gdb to build-deps as suggested in #627208 to get automatic stack traces
775
  * Updated Turkish translation by Atila KOÇ (Closes: #811414)
776

Otto Kekäläinen's avatar
Otto Kekäläinen committed
777
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 23 Jan 2016 23:07:15 +0200
778

779
780
mariadb-10.0 (10.0.23-1) unstable; urgency=low

781
782
783
  * New upstream release 10.0.23. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-2047
784
785
    - CVE-2016-0651
    - CVE-2016-0642
786
787
788
789
790
791
792
793
794
795
    - CVE-2016-0616
    - CVE-2016-0609
    - CVE-2016-0608
    - CVE-2016-0606
    - CVE-2016-0600
    - CVE-2016-0598
    - CVE-2016-0597
    - CVE-2016-0596
    - CVE-2016-0546
    - CVE-2016-0505
796
  * Ignore test suite exit code on unstable platforms (mips, mipsel)
797
798
  * Update TokuDB plugin install and copyright paths to match latest
    release done under Percona ownership
799
800
801

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 20 Dec 2015 14:18:33 +0200

802
mariadb-10.0 (10.0.22-6) unstable; urgency=low
803

804
  * Add patches to make passwordless root login default on all new
805
806
807
    installs in all situations. Make auth_socket a built-in plugin.
  * Clean up previous passwordless root implementation so that it
    applies only to new installs and existing databases continue
808
    to operate with the passwords defined in their user tables
809
810
  * As disabled.def intrepreted test names in a special way, switch
    back to using --skip-test-list option
811
812
  * Make the watch file to make it better suited for the
    git-buildpackage workflow and remove call to uupdate
813

814
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 19 Dec 2015 22:28:23 +0200
815

816
817
818
819
820
821
822
mariadb-10.0 (10.0.22-5) unstable; urgency=low

  * Fix non-working path of unstable-test in d/rules
  * Add unstable test for amd64 to fix reproducible builds

 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 17 Dec 2015 13:31:56 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
823
824
825
826
827
828
mariadb-10.0 (10.0.22-4) unstable; urgency=low

  * Upload to unstable

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 14 Dec 2015 00:49:14 +0200

829
830
831
832
833
834
mariadb-10.0 (10.0.22-4~exp1) experimental; urgency=low

  * Rewrite unstable tests section in d/rules that was not working

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 13 Dec 2015 21:36:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
835
mariadb-10.0 (10.0.22-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
836
837

  * Fix typo in d/rules
838
  * Extend list of unstable tests for arch mips, mipsel64 and alpha
Otto Kekäläinen's avatar
Otto Kekäläinen committed
839

Otto Kekäläinen's avatar
Otto Kekäläinen committed
840
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 11 Dec 2015 21:57:23 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
841

842
mariadb-10.0 (10.0.22-2) unstable; urgency=low
843
844

  * Escape d/rules file correctly to avoid parse error.
845
  * Remove patches/os_sync_Free patch that is not intended for production use.
846
847
848

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 20 Nov 2015 23:11:09 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
849
mariadb-10.0 (10.0.22-2~exp2) experimental; urgency=low
850

851
  [ Alexander Barkov ]
Otto Kekäläinen's avatar
Otto Kekäläinen committed
852
853
  * Backport patch from upstream to fix MDEV-9091: mysqld crashes on shutdown
    after running TokuDB tests on Ubuntu
Otto Kekäläinen's avatar
Otto Kekäläinen committed
854
855
  * Backport patch from upstream to fix MDEV-8692: prefschema test failures

856
  [ Otto Kekäläinen ]
857
858
  * Replace old 'make test' structure with direct call on mysql-test-run and
    parallelize the test suite run in the Debian build.
859
  * Print in build log env info to help debug builds on different platforms.
860
  * Keep a list of unstable tests that are to be skipped on official builds.
861
862
863

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 22:08:49 +0200

864
mariadb-10.0 (10.0.22-2~exp1) experimental; urgency=low
865
866

  * Add diagnostics to find out the problem in os_sync_free()
867
868
  * Backport fix for TokuDB crashes in build tests on Launchpad
    and enable TokuDB builds
869

870
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 08:54:05 +0200
871

872
mariadb-10.0 (10.0.22-1) unstable; urgency=low
873

874
  [ Otto Kekäläinen ]
875
876
  * New upstream release. Includes fixes for the following security
    vulnerabilities (Closes: #802874):
877
    - CVE-2016-0610
878
    - CVE-2016-3471
879
    - CVE-2015-7744
880
881
882
883
884
885
886
887
888
889
890
891
    - CVE-2015-4802
    - CVE-2015-4807
    - CVE-2015-4815
    - CVE-2015-4826
    - CVE-2015-4830
    - CVE-2015-4836
    - CVE-2015-4858
    - CVE-2015-4861
    - CVE-2015-4870
    - CVE-2015-4913
    - CVE-2015-4792
  * New release includes updated man pages (Closes: #779992)
892
  * Update the most recent patches with proper DEP-3 compliant headers
893
  * Add CVE IDs to previous changelog entries
894

895
896
897
  [ Jean Weisbuch ]
  * Update mysqlreport to version 4.0

898
899
900
  [ Otto Kekäläinen ]

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 30 Oct 2015 11:42:30 +0200
901

Otto Kekäläinen's avatar
Otto Kekäläinen committed
902
mariadb-10.0 (10.0.21-3) unstable; urgency=low
903
904

  * Updated Brazilian Portuguese translation (Closes: #798048)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
905
906
  * Upload 10.0.21 and all changes tested initially in experimental
    to unstable. Now sensible as mysql-5.6 has entered testing.
907

Otto Kekäläinen's avatar
Otto Kekäläinen committed
908
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 18 Sep 2015 23:04:53 +0300
909

Otto Kekäläinen's avatar
Otto Kekäläinen committed
910
mariadb-10.0 (10.0.21-2) experimental; urgency=low
911
912

  * Update gdb.conf to have tags signed by default
913
  * Add CVE IDs to previous changelog entries
914
  * Pass DEB_BUILD_ARCH to CMake options to enhance buils on some platforms
915
  * Test suite failures are now fatal on all platforms and not ignored anywhere
916
  * Revert most of commit 579282f and re-enable Mroonga
917
918
919

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 26 Aug 2015 18:20:54 +0300

Tobias Frost's avatar
Tobias Frost committed
920
mariadb-10.0 (10.0.21-1) experimental; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
921

922
  [ Otto Kekäläinen ]
923
  * Created libmariadbd18 and moved .so file from libmariadbd-dev there
924
  * Reproducible build improvement: Add LC_ALL=C to mysql.sym sort command
925
  * New upstream release.
926
927
    - Upstream added skip_log_error to mysqld_safe config (Closes: #781945)
    - Diffie-Helman modulus increased to 2048-bits (Closes: #788905)
928
929
930
931
932
  * New upstream release fixes the following security vulnerabilities:
    - CVE-2015-4816
    - CVE-2015-4819
    - CVE-2015-4879
    - CVE-2015-4895
933
934
935
936
  * Split mariadb-test-data-10.0 out of the main test package. This will save
    disk space in Debian archives as the arch independent data files are
    in one single package that can be used on all platforms and the package
    that is built on multiple platform shrinks significantly.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
937

938
939
940
941
942
943
944
  [ Jean Weisbuch ]
  * The MYCHECK_RCPT variable can now be set from the default file.
  * The check_for_crashed_tables() function on the debian-start script has been
    fixed to be able to log (and email) the errors it encountered : Errors are
    sent to stderr by the CLI while only stdout was captured by the function.
  * The same function now also checks Aria tables along with MyISAM ones.

Tobias Frost's avatar
Tobias Frost committed
945
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 13 Aug 2015 10:08:38 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
946

947
mariadb-10.0 (10.0.20-3) unstable; urgency=medium
948
949
950
951

  [ Andreas Beckmann ]
  * mariadb-common: Depend on a version of mysql-common that ships
    /usr/share/mysql-common/configure-symlinks.  (Closes: #787533)
952
  * mariadb-common.postinst: Drop fallback my.cnf symlink management.
953
  * mariadb-common.preinst: Clean up my.cnf/my.cnf.old from the fallback.
954

Otto Kekäläinen's avatar
Otto Kekäläinen committed
955
  [ Otto Kekäläinen ]
956
957
958
959
  * Clean up old cruft from rules file after review by Sergei Golubchik
  * Unified config file layout with upstream .cnf layout
  * Recover mysql-upgrade dir/link handlig wrongly removed in f7caa041db
  * Minor Lintian and documentation fixes
960
  * Switch 'nm -n' to 'nm --defined-only' to improve reproducible builds
Otto Kekäläinen's avatar
Otto Kekäläinen committed
961
962
963
964
965
966
967
968
969
970

  [ Olaf van der Spek ]
  * Minor spell checking (Closes: #792123)

  [ Israel Tsadok ]
  * Fix mariadb-server-10.0.preinst script that failed to save a new
    /var/lib/mysql-upgrade/DATADIR.link if a previous DATADIR.link existed and
    the /var/lib/mysql directory was a symbolic link with an absolute path
    as target (Closes: #792918)

971
  [ Jean Weisbuch ]
972
973
  * Added a Debian default file for the mariadb-server-10.0 package which allows
    one to set the MYSQLD_STARTUP_TIMEOUT variable used in the init script
974

975
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 24 Jul 2015 23:00:00 +0300
976

Otto Kekäläinen's avatar
Otto Kekäläinen committed
977
978
979
mariadb-10.0 (10.0.20-2) unstable; urgency=low

  * Fix bash test logic in postinstall (Closes: #789589)
980
981
  * Add extra sort in d/rules mysqld.sym.gz command to satisfy Debian
    reproducible build requirements
982
  * Switch to utf8mb4 as default character set
Otto Kekäläinen's avatar
Otto Kekäläinen committed
983
984
985

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 03 Jul 2015 17:11:01 +0300

986
987
mariadb-10.0 (10.0.20-1) unstable; urgency=low

988
989
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
990
991
992
993
    - CVE-2015-2582
    - CVE-2015-2620
    - CVE-2015-2643
    - CVE-2015-2648
994
995
996
997
    - CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
      MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
      together with --ssl will ensure that the established connection is
      SSL-encrypted and the MariaDB server has a valid certificate.
998
    - CVE-2015-4752
999
    - CVE-2015-4864
Otto Kekäläinen's avatar
Otto Kekäläinen committed
1000
  * New release includes fix for memory corruption on arm64 (Closes: #787221)