changelog 43.3 KB
Newer Older
1
mariadb-10.1 (10.1.34-0+deb9u1) stretch-security; urgency=medium
2
3

  [ Otto Kekäläinen ]
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

  * SECURITY UPDATE: New upstream release 10.1.34. Includes fixes for
    the security vulnerabilities from previous releases.
  * Previous upstream version 10.1.33 included fixes for the following
    security vulnerabilities:
    - CVE-2018-2819
    - CVE-2018-2817
    - CVE-2018-2813
    - CVE-2018-2787
    - CVE-2018-2784
    - CVE-2018-2782
    - CVE-2018-2781
    - CVE-2018-2771
    - CVE-2018-2766
    - CVE-2018-2761
    - CVE-2018-2755
  * Previous upstream version 10.1.31 included fixes for the following
    security vulnerabilities:
    - CVE-2018-2668
    - CVE-2018-2665
    - CVE-2018-2640
    - CVE-2018-2622
    - CVE-2018-2612
    - CVE-2018-2562
28
29
30
31
32
  * Revert "Update d/gbp.conf to track stretch branches"
  * New upstream version 10.1.30. Includes fixes for the following
    security vulnerabilities (Closes: #885345):
    - CVE-2017-15365
  * Amend previous Debian changelog entries to contain new CVE identifiers
33
  * Refresh patches for MariaDB 10.1.30 and again for .34
34
35

  [ Ondřej Surý ]
36
37
38
39
40
  * New upstream version 10.1.29. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-10378
    - CVE-2017-10268
    - MDEV-13819
41
42
43
44
45
46
47
48
49
50
51
52
53
  * Add libconfig-inifiles-perl to mariadb-client-10.1 depends to fix
    mytop
  * Add mips64el to the list of platforms that are allowed to fail test
    suite
  * Handle new and/or missing files
  * Revert to using system pcre library
  * Ignore failed tests on more non-release platforms (kfreebsd-i386,
    kfreebsd-amd64 and sparc64)
  * Rebase patches for MariaDB 10.1.29

  [ Christian Ehrhardt ]
  * d/t/upstream: skip func_regexp_pcre on s390x

54
55
56
  [ Vicentiu Ciorbaru ]
  * Fix Mroonga compilation failure on arm64

57
 -- Otto Kekäläinen <otto@debian.org>  Thu, 02 Aug 2018 16:21:46 +0800
58

Ondrej Sury's avatar
Ondrej Sury committed
59
mariadb-10.1 (10.1.26-0+deb9u1) stretch-security; urgency=high
Ondrej Sury's avatar
Ondrej Sury committed
60
61
62

  * New upstream version 10.1.26.  Includes fixes for the following
    security vulnerabilities:
63
64
65
    - CVE-2017-10384
    - CVE-2017-10379
    - CVE-2017-10286
Ondrej Sury's avatar
Ondrej Sury committed
66
67
68
69
70
71
72
73
74
75
76
77
    - CVE-2017-3636
    - CVE-2017-3641
    - CVE-2017-3653
  * Explicitly add dh_systemd_start snippets to mariadb-server-10.1
    because it's all messed up with different name for sysvinit ('mysql')
    and systemd ('mariadb') (Closes: #865870)
  * gbp.conf: Ignore upstream debian/ directory when importing upstream
    tarball
  * Refresh patches on top of MariaDB 10.1.26

 -- Ondřej Surý <ondrej@debian.org>  Thu, 10 Aug 2017 21:07:44 +0200

Ondrej Sury's avatar
Ondrej Sury committed
78
79
80
81
82
83
84
mariadb-10.1 (10.1.25-0+deb9u1) stretch; urgency=medium

  * New upstream version 10.1.25
  * Update quilt patches on top of mariadb-10.1.25 release

 -- Ondřej Surý <ondrej@debian.org>  Thu, 20 Jul 2017 09:35:41 +0200

Ondrej Sury's avatar
Ondrej Sury committed
85
86
87
88
89
90
91
mariadb-10.1 (10.1.24-0+deb9u2) stretch; urgency=medium

  * Run invoke-rc.d mysql maintscript snippets only when running under
    sysvinit (Closes: #864593)

 -- Ondřej Surý <ondrej@debian.org>  Wed, 21 Jun 2017 11:11:53 +0200

Ondrej Sury's avatar
Ondrej Sury committed
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
mariadb-10.1 (10.1.24-0+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * New upstream version 10.1.24
  * Update d/gbp.conf to track stretch branches
  * Refresh patches on top of MariaDB 10.1.24
  * Add cracklib-runtime to Build-Depends to fix FTBFS
  * Merge mytop script improvements from src:mytop package (Original
    patches by Philipp Matthias Hahn, Werner Detter, Olaf van der Spek,
    and Steffen Zieger) (Closes: #864762)
  * Add @SYSTEMD_EXECSTARTPOST@ replacement token to mariadb@.service, so
    the /var/run/mysqld directory is created even for multi-server setup
    (Closes: #865083)

  [ Andreas Beckmann ]
  * Fix FTBFS on 32-bit mips*

  [ James Cowgill ]
  * Update C11 atomics to have correct semantics (Closes: #864774)
  * Disable jemalloc on mips*. (Closes: #864340)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 19 Jun 2017 10:19:37 +0200

115
116
117
118
119
120
121
122
mariadb-10.1 (10.1.23-9+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * Add Breaks: cqrlog (<< 1.9.0-5~) to ensure correct upgrade order
    (Closes: #864159)

 -- Andreas Beckmann <anbe@debian.org>  Wed, 07 Jun 2017 21:11:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
123
124
125
126
127
128
129
mariadb-10.1 (10.1.23-9) unstable; urgency=medium

  * Fix the invalid location of insserv configuration snippet
    (Thanks Michael Biebl for catching that)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 26 May 2017 09:26:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
130
131
132
133
134
135
136
mariadb-10.1 (10.1.23-8) unstable; urgency=medium

  * Use /etc/insserv.conf.d/mariadb to provide $database system facility
    (Closes: #862447)

 -- Ondřej Surý <ondrej@debian.org>  Sat, 13 May 2017 11:08:43 +0200

Ondrej Sury's avatar
Ondrej Sury committed
137
138
139
140
141
142
143
mariadb-10.1 (10.1.23-7) unstable; urgency=medium

  * Remove hard Breaks/Replaces with mysql-server and mysql-client
  * Move virtual packages from Breaks to Conflicts (Debian Policy 7.6.2)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 12 May 2017 12:21:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
144
145
146
147
148
149
mariadb-10.1 (10.1.23-6) unstable; urgency=medium

  * Also fix the same assertion failure in xtradb (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 19:51:47 +0200

Ondrej Sury's avatar
Ondrej Sury committed
150
151
152
153
154
155
156
mariadb-10.1 (10.1.23-5) unstable; urgency=medium

  * Add upstream patch to fix assertion failure in InnoDB storage engine
    (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 17:21:55 +0200

Ondrej Sury's avatar
Ondrej Sury committed
157
158
159
160
161
162
mariadb-10.1 (10.1.23-4) unstable; urgency=medium

  * Properly declare conflict on mytop (Closes: #861913)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 11:31:13 +0200

Ondrej Sury's avatar
Ondrej Sury committed
163
164
165
166
167
168
169
mariadb-10.1 (10.1.23-3) unstable; urgency=medium

  * Remove two internal symbols (ll2str and longlong2str) from
    kfrebsd-amd64 symbols file

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 13:19:00 +0200

Ondrej Sury's avatar
Ondrej Sury committed
170
171
172
173
174
175
176
mariadb-10.1 (10.1.23-2) unstable; urgency=medium

  * Add CVE list for 10.1.23 release
  * Fix FTBFS on kfrebsd-any due missing .service files

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 10:55:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
177
178
mariadb-10.1 (10.1.23-1) unstable; urgency=medium

Ondrej Sury's avatar
Ondrej Sury committed
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
  * New upstream version 10.1.23, includes fixes for the following
    security vulnerabilities:
   - [CVE-2017-3302]: use-after-free in C client library for MySQL
   - [CVE-2017-3313]: unauthorized (local) access to critical data or
     complete access to all MySQL Server accessible data
   - [CVE-2017-3308]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3309]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3453]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3456]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3464]: unauthorized update, insert or delete access to some
     of MySQL Server accessible data
Ondrej Sury's avatar
Ondrej Sury committed
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
  * Refresh debian/patches on top of MariaDB 10.1.23 release
  * debian/gbp.conf: Filter most common cruft in the orig tarball
  * debian/rules: Use --fail-missing to catch extra upstream files
  * debian/*.manpages: Merge into debian/*.install
  * debian/*.install: Add few missing binaries into various packages
  * Declare mariadb-plugin-tokudb as available only on (linux-)amd64
    to fix FTBFS on kfreebsd-amd64
  * Remove the extra sanity check as it is already there via standard
    dh_installinit (|| exit 0) (Closes: #861782)
  * Stop /usr/sbin/mysqld in prerm script even with systemd
  * Move mariadb.pc into proper multiarch directory (Closes: #852621)
  * Add libarchive-dev needed by mariabackup to Build-Depends
  * debian/control: run wrap-and-sort -a
  * Move mysql_install_db from mariadb-server-10.1 to
    mariadb-server-core-10.1 (Closes: #840646)
  * Add Provides: $database to mysql.init - this partially addresses
    #852776
  * Call dh_systemd_start with --no-restart-after-upgrade
    (Closes: #853137)
  * d/rules: Remove dh_prep override (legacy cruft)

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 07:23:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
217
218
219
220
221
222
223
mariadb-10.1 (10.1.22-4) unstable; urgency=medium

  * Fix small typo in d/rules that caused MySQL version suffix to not
    contain information about Debian build

 -- Ondřej Surý <ondrej@debian.org>  Sat, 29 Apr 2017 21:56:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
224
225
226
227
228
229
230
231
232
233
mariadb-10.1 (10.1.22-3) unstable; urgency=medium

  * Use pidof instead of pgrep, so we don't have to depend on procps
  * Stop stopping mariadb server that many times and just add a simple
    check to preinst that it has been really stopped (Closes: #852495)
  * Fix small typo in gettid patch
  * Disable TokuDB on kfreebsd-amd64

 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
mariadb-10.1 (10.1.22-2) unstable; urgency=medium

  [ Ondřej Surý ]
  * Add correct kfreebsd-i386 symbols file (but this needs to be fixed in
    how upstream uses linker)
  * Update italian translation (Closes: #858300)

  [ Otto Kekäläinen ]
  * Add Vietnamese translation by Trn Ngc Quân
  * Add Finnish translation by Antti Järvinen

  [ Ondřej Surý ]
  * Disable test suite on hppa, don't fail test suite on more unstable
    platforms: alpha, powerpc, and x32
  * Add swedish debconf translation (Closes: #858536)
  * Add Catalan debconf translation (Closes: #858632)
  * Use thr_self() as gettid implementation onf __FreeBSD_kernel__
  * Make mariadb-server-10.1 installable on kFreeBSD and Hurd (Closes: #851687)
  * Update Turkish debconf translation (Closes: #858340)
  * Disable specific tests on hppa to make the build succeed (Courtesy of
    John David Anglin) (Closes: #858869)

Ondrej Sury's avatar
Ondrej Sury committed
256
 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:01 +0200
Ondrej Sury's avatar
Ondrej Sury committed
257

258
mariadb-10.1 (10.1.22-1) unstable; urgency=high
259

Ondrej Sury's avatar
Ondrej Sury committed
260
  [ Otto Kekäläinen ]
261
262
263
264
265
266
267
  * New upstream release 10.1.22. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-3313
    - CVE-2017-3302
  * New upstream also includes fix to logrotate so that it no longer
    risks interrupting binary/relay log processing on the server.
    https://github.com/MariaDB/server/commit/156cf86defdc59353f37f6
Ondrej Sury's avatar
Ondrej Sury committed
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
  * Add a NEWS.Debian item with same contents as the Stretch release notes

  [ Ondřej Surý ]
  * Add myself to Uploaders
  * Use https URI for Homepage
  * Use /usr/share/dpkg/default.mk to define dpkg-architecture and other
    build variables
  * Install and use non-versioned symbols files for kFreeBSD and Hurd
    architectures
  * Make mysql_config and mariadb.pc return -lmariadbclient instead of
    missing -lmysqlclient
  * Add mysqlclient.pc -> mariadb.pc symlink into
    libmariadbclient-dev-compat package
  * MDEV-11884: Fix logrotate failing if mysqld is not running (Closes: #830976)

 -- Ondřej Surý <ondrej@debian.org>  Sun, 19 Mar 2017 15:23:26 +0100
284

Otto Kekäläinen's avatar
Otto Kekäläinen committed
285
286
mariadb-10.1 (10.1.21-5) unstable; urgency=low

287
288
289
290
291
292
  [ James Clarke ]
  * Make debian/mariadb-server-10.1.install executable (Closes: #852728)
  * Allow mariadb-plugin-tokudb/mroonga on non-linux and non-release arches
  * Detect whether libatomic is needed rather than hard-coding for mips
  * Use host architecture, not build architecture, and clean up variables
  * General clean-up in d/rules
Otto Kekäläinen's avatar
Otto Kekäläinen committed
293

294
 -- Otto Kekäläinen <otto@debian.org>  Fri, 27 Jan 2017 20:42:36 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
295

296
297
298
299
300
301
mariadb-10.1 (10.1.21-4) unstable; urgency=low

  * Hotfix to full build failure: Add missing galera_new_cluster.1 to patch

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 23:33:32 +0200

302
mariadb-10.1 (10.1.21-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
303

304
305
  [ Ian Gilfillan ]
  * Extend WSREP and Galera man pages patch to cover all commands
Otto Kekäläinen's avatar
Otto Kekäläinen committed
306

307
308
309
310
311
312
313
314
  [ Dieter Adriaenssens ]
  * Specify Architecture for mariadb-plugin-mroonga and mariadb-plugin-tokudb 
    (Closes: #852709)

  [ James Clarke ]
  * Fix FTBFS on non-Linux architectures (Closes: #852728)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 22:18:26 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
315

316
mariadb-10.1 (10.1.21-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
317

318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
  [ Otto Kekäläinen ]
  * Implement systemd packaging the Debian way
  * Extend README.Debian regarding new systemd files
  * Add config file comments about SysV init and systemd differences
  * Extend Debian.README with section about mixing with packages MariaDB.org
  * Update /etc/init.d/mysql after comparison with upstream MariaDB 10.1.21
  * Run chown much faster on the datadir during install/update
  * Check if /var/lib/mysql exists before running 'find' on it
  * Skip mysqld stopping if no mysqld process is running at all
  * Update French debconf translation by Baptiste Jammet (Closes: #850066)
  * Remove unnecessary XS-Testsuite field (as instructed by Lintian)
  * Add a modified version of upstream autobake-deb script to utilize CI tools
  * Fix server config example on how to enable SSL with YaSSL (Closes: #851132)
  * Make commands mariadb and mariadbcheck available with symlinks

  [ Jean Weisbuch ]
  * Update Innotop to latest version

  [ Ian Gilfillan ]
  * Add wsrep_* man pages
Otto Kekäläinen's avatar
Otto Kekäläinen committed
338

339
 -- Otto Kekäläinen <otto@debian.org>  Wed, 25 Jan 2017 10:42:45 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
340

341
mariadb-10.1 (10.1.21-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
342

343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities (Closes: #851759, Closes: ##849435):
    - CVE-2017-3318
    - CVE-2017-3317
    - CVE-2017-3312
    - CVE-2017-3291
    - CVE-2017-3265
    - CVE-2017-3258
    - CVE-2017-3257
    - CVE-2017-3244
    - CVE-2017-3243
    - CVE-2017-3238
    - CVE-2016-6664
  * Add new program introduced in upstream 10.1.21: mysqld_safe_helper
  * Deb-CI: remove parameter --skip-ndbcluster not available in 10.1 any more
  * Make libmariadbclient18 depend on mysql-common only (Closes: #850216)
  * Fix misleading config file comment (Closes: #677223)
  * Update preinst variable $this_version from 10.0 to 10.1 (Closes: #851257)

  [ Kristian Nielsen ]
  * Re-implement passwordless root login (Closes: #851131)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 19 Jan 2017 11:33:01 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
367

368
369
370
371
372
373
374
mariadb-10.1 (10.1.20-3) unstable; urgency=low

  [ Vicențiu Ciorbaru ]
  * Update debian rules to also account for mipsel

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 20:23:23 +0200

375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
mariadb-10.1 (10.1.20-2) unstable; urgency=low

  [ Otto Kekäläinen ]
  * Upload to unstable
  * Previous version string should had been ~exp1, thus this
    first upload to unstable is -2 and not -1 as normal
  * Disable test suite temporairly due to false regressions

  [ Dieter Adriaenssens ]
  * fix Vcs-git link format and repo name
  * update 10.0 to 10.1 in README files

  [ Vicențiu Ciorbaru ]
  * Fix mips missing atomics primitives

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 09:54:59 +0200

392
mariadb-10.1 (10.1.20-1) experimental; urgency=low
393

394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
  * Upgrade package to new MariaDB 10.1.x series:
    - New upstream release  10.1.20
    - Refresh patches after 10.1.20 import
    - Update strings 10.0 -> 10.1 after importing 10.1.20
    - Refresh patches after 10.1.20 import
    - Update d/control after 10.1 import
    - Use https protected git url in d/control
    - Backwards compatible XS-Testsuite syntax in d/control
    - Import debian/* changes done in upstream 10.1
    - Replace deprecated iproute with iproute2
    - Remove unnecessary dependencies as packages are Essential anyway
    - Remove unnecessary and big file mysql_embedded
    - Switch to 10.1 style build flag for unix socket auth module in d/rules
    - Update d/copyright after 10.1 import
    - Add missing aria_add_gis_sp.sql to mariadb-server-10.1
    - Ship SELinux and AppArmor files with the server, but as inactive
    - New package from upstream 10.1: GSS API (Kerberos) client and server
    - Extend GSSAPI plugin descriptions to satisfy Lintian
    - New plugin from upstream 10.1: Cracklib password validation
413

414
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 22:46:59 +0200
415

416
mariadb-10.0 (10.0.28-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
417

418
419
420
421
422
423
424
425
426
427
428
  [ Otto Kekäläinen ]
  * Move libmariadbd and -dev next to each other for a more logical flow in d/control
  * Move mariadb-test to last in file for a more logical flow in d/control
  * Clean away unused Lintian overrides
  * Add Lintian override for impossible mysql_config multi-arch requirement
  * Update Debian copyright based on the 2016 git log author list
  * Remove unnecessary /var/lib/mysql-upgrade (Closes: #848620)

  [ Vicențiu Ciorbaru ]
  * Fix connect.upd test in armhf
  * Fix mroonga/storage.index_read_multiple_double test in armhf
Otto Kekäläinen's avatar
Otto Kekäläinen committed
429

430
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 21:59:47 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
431

432
mariadb-10.0 (10.0.28-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
433

434
435
436
  [ Samuel Thibault ]
  * patches/hurd_socket.patch: Also avoid non-working socket path length check
    on hurd-i386.
437
  * rules: Drop symbols on hurd-i386 too (Closes: #842696).
438

439
440
441
442
443
444
445
446
447
  [ Daniel Black ]
  * Don't install private mysql header files in libmariadbclient-dev

  [ Otto Kekäläinen ]
  * Update libmariadbd18 description and contents to match latest upstream
  * Mark missing Multi-Arch as suggested by Multiarch hinter
  * Move plugins to $ARCH/*/mariadb18 to meet multiarch needs (Closes: #739452)

 -- Otto Kekäläinen <otto@debian.org>  Fri, 11 Nov 2016 22:03:33 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
448

449
mariadb-10.0 (10.0.28-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
450

451
452
  [ Vicențiu Ciorbaru ]
  * Fix tokudb jemalloc linking
Otto Kekäläinen's avatar
Otto Kekäläinen committed
453

454
455
456
457
458
459
460
461
462
463
464
465
466
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-8283
    - CVE-2016-7440
    - CVE-2016-6663
    - CVE-2016-5629
    - CVE-2016-5626
    - CVE-2016-5624
    - CVE-2016-5616
    - CVE-2016-5584
    - CVE-2016-3492
  * Drop 4 patches that have been applied upstream.
467
468
  * Delete runnable files from mariadb-test-data as they were only
    needed at build time to generate tests.
469
470

 -- Otto Kekäläinen <otto@debian.org>  Fri, 28 Oct 2016 22:51:14 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
471

472
mariadb-10.0 (10.0.27-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
473
474
475
476
477

  [ Dieter Adriaenssens ]
  * Fix typo in README.Contributor
  * Improve documentation on how to clean the build env

478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
  [ James Cowgill ]
  * Mips build and testsuite fixes (Closes: #838557, Closes: #838914)
    - Permit 93 as a valid value of the ENOTEMPTY error in the testsuite
    - Correctly fix mips64 multiplication in taocrypt
    - Ensure groonga is built with libatomic
    - Handle unaligned buffers in connect's TYPBLK class
    - Fix DEFAULT_MACHINE on mips
    - Remove various tests from unstable-tests which now pass on MIPS
    - Update debian/unstable-tests.mips*

  [ Kristian Nielsen ]
  * Fix missing path for perl in autopkgtest (Closes: #809022)
  * Fix test failures on hppa due to wrong enoempty (Closes: #837369)

 -- Otto Kekäläinen <otto@debian.org>  Sun, 02 Oct 2016 09:22:59 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
493

494
495
496
497
498
499
500
501
mariadb-10.0 (10.0.27-1) unstable; urgency=low

  * New upstream release 10.0.27
  * Remove 3 patches after 10.0.27 import as they have been applied
    upstream.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 07 Sep 2016 23:05:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
502
mariadb-10.0 (10.0.26-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
503

Otto Kekäläinen's avatar
Otto Kekäläinen committed
504
505
  [ Dieter Adriaenssens ]
  * Add DEP-12 formatted upstream metadata file (Closes: #808421)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
506

Otto Kekäläinen's avatar
Otto Kekäläinen committed
507
508
509
510
511
512
513
514
515
516
517
518
  [ Vicențiu Ciorbaru ]
  * Update innodb_xtradb patch to introduce memory barrier after lock
  * Fix failing shutdown with gcc v6

  [ Otto Kekäläinen ]
  * Extend commit d5af196 with old name of package libmariadb-dev-compat
  * Extend commit 8d2a7c9 and actually install the tokuftdump man page
  * Update mariadb-test dependencies to include also libmariadbclient18
  * Add path to fix for sporadically failing test main.information_schema_stats
  * d/rules: NUMJOBS must have a default value

 -- Otto Kekäläinen <otto@debian.org>  Wed, 17 Aug 2016 00:31:02 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
519

520
mariadb-10.0 (10.0.26-2) unstable; urgency=low
521
522

  [ Vicențiu Ciorbaru ]
523
  * Add patch to correctly revert changes from 10.0.26 that caused
524
    build failure regression on PPC64el
525

526
527
528
  [ Paul Gevers ]
  * Add autopkg tests for MariaDB 10.0 (Closes: #809022)

529
  [ Axel Beckert ]
530
  * Extend mariadb-server to purge gracefully if datadir is a mountpoint
531
    (Closes: #829491)
532
533
534
535

  [ Ian Gilfillan ]
  * Add a patch to provide a man page for tokuftdump

536
537
538
539
  [ Robie Basak ]
  * Re-add libmariadbclient18 and libmariadbclient-dev
  * Add libmariadbclient-dev-compat package

540
  [ Otto Kekäläinen ]
541
542
543
544
545
546
547
548
  * d/control: libmariadbclient18 must be 'Multi-Arch: same'
  * Make libmariadbclient-dev-compat conflict with libmariadb-dev-compat
    (Closes: #831229)
  * Add libmariadbclient-dev as dependency for libmariadbd-dev
  * Replace hacky sed of libmysqlclient->libmariadbclient with proper patch
  * Update symbols file to match newest libmariadbclient18
  * Updated Danish translation by Joe Hansen (Closes: #830592)
  * Remove mariadb-plugin-cassandra until libthrif-dev lands in unstable
549
  * Make libdbd-mysql-perl and friends Recommends instead of strict Depends
550
    (Closes: #793787)
551
552
553
554
  * Documentation and spelling fixes
  * Remove mysqlbug binary as it is not used for MariaDB
  * Update default config files with more secure TLS examples

555
 -- Otto Kekäläinen <otto@debian.org>  Fri, 29 Jul 2016 21:42:50 +0300
556

Otto Kekäläinen's avatar
Otto Kekäläinen committed
557
558
559
mariadb-10.0 (10.0.26-1) unstable; urgency=low

  * Updated French translation by Baptiste Jammet (Closes: #826879)
560
561
562
563
564
565
566
  * New upstream release 10.0.26. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-5440
    - CVE-2016-3615
    - CVE-2016-3521
    - CVE-2016-3477
  * Updated old changelog entries to include new CVE identifiers.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
567
568
569
570
  * Refresh patches after 10.0.26 import

 -- Otto Kekäläinen <otto@debian.org>  Fri, 24 Jun 2016 17:05:44 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
571
mariadb-10.0 (10.0.25-1) unstable; urgency=low
572

573
  [ Otto Kekäläinen ]
574
  * Revert previous changes tailored for Ubuntu 16.04 compatibility.
575
  * New upstream release 10.0.25. Includes fixes for the following
576
    security vulnerabilities (Closes: #823325):
577
578
579
580
581
    - CVE-2016-0666
    - CVE-2016-0655
    - CVE-2016-0648
    - CVE-2016-0647
    - CVE-2016-0643
582
583
584
    - CVE-2016-5444
    - CVE-2016-3459
    - CVE-2016-3452
585
586
587
  * Updated old changelog entries to include new CVE identifiers.
  * Upstream included changes to logrotate script that supports systems that
    has multiple mysqld processes running (Closes: #810968).
588
  * Updated Dutch translation by Frans Spiesschaert (Closes: #822894).
589
590
  * Updated Spanish translation by Javier Fernández-Sanguino Peña
    (Closes: #823099).
591
  * Updated Russian translation by Yuri Kozlov (Closes: #823422).
592
  * Updated German translation by Chris Leick (Closes: #824487).
593
  * Updated Brazilian Portuguese translation (Closes: #824644).
594
  * Updated Turkish translation by Atila KOÇ (Closes: #825802).
595
  * Add patch to provide passwordless root accounts for test suite.
596
  * Updated Japanese translation by Takuma Yamada (Closes: #825813).
597

598
599
600
  [ Vicențiu Ciorbaru ]
  * Backport upstream MDEV-9479 fix: oqgraph fails to build with boost 1.60

Otto Kekäläinen's avatar
Otto Kekäläinen committed
601
 -- Otto Kekäläinen <otto@debian.org>  Mon, 30 May 2016 22:43:30 +0300
602

603
604
605
606
607
608
609
mariadb-10.0 (10.0.24-7) unstable; urgency=low

  * Temporarily remove mariadb-plugin-cassandra as Debian FTP bot thinks
    it wasn't there before 10.0.24-6 and put the package in the NEW queue.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 13:24:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
610
mariadb-10.0 (10.0.24-6) unstable; urgency=low
611
612
613

  * Move mysql_embedded from client package to client-core package,
    equally as is in mysql-client-core-5.6 and -5.7 (LP: #1568077).
614
  * Add breaks/replaces for mariadb-client to accommodate the above.
615
616
  * Add conflicts/breaks/replaces for MySQL 5.7 series packages now
    when mysql-5.7 entered the Ubuntu repositories (LP: #1568285).
617
618
619
620
  * Detect properly if there is an incompatible data directory from 5.7,
    save it to another location and initialize a new data directory so that the
    installation can complete properly without leaving dpkg in an inconsistent
    state.
621
622
  * Remove all old passwordless root account lines to close a potential
    security vulnerability (LP: #1561062).
623

Otto Kekäläinen's avatar
Otto Kekäläinen committed
624
 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 10:56:10 +0300
625

Otto Kekäläinen's avatar
Otto Kekäläinen committed
626
mariadb-10.0 (10.0.24-5) unstable; urgency=low
627
628

  * Disable sporadically failing rpl_binlog_index test on PowerPC.
629
  * Disable another sporadic on amd64 and update all Jira links.
630
  * Fix typo in Mroonga prerm script.
631

Otto Kekäläinen's avatar
Otto Kekäläinen committed
632
 -- Otto Kekäläinen <otto@debian.org>  Sat, 12 Mar 2016 10:08:23 +0200
633

634
mariadb-10.0 (10.0.24-4) unstable; urgency=low
635

636
637
638
639
640
  * Update contributor documentation to match git-buildpackage version in sid.
  * Add libxml and unixOBDC as build-depends for ConnectSE as done by in
    upstream (Closes: #814944).
  * Upload to via NEW as mariadb-10.0 was accidentally removed from Debian
    unstable archives.
641

642
 -- Otto Kekäläinen <otto@debian.org>  Thu, 10 Mar 2016 18:40:51 +0200
643

Otto Kekäläinen's avatar
Otto Kekäläinen committed
644
mariadb-10.0 (10.0.24-3) unstable; urgency=low
645
646

  * Fix typo in rules file about Mroonga control section
647
  * Add main.delayed test exception to more platforms
648
  * Install mysql_embedded man page correctly
649

Otto Kekäläinen's avatar
Otto Kekäläinen committed
650
 -- Otto Kekäläinen <otto@debian.org>  Sun, 06 Mar 2016 22:20:52 +0200
651

Otto Kekäläinen's avatar
Otto Kekäläinen committed
652
mariadb-10.0 (10.0.24-2) unstable; urgency=low
653
654
655

  * Make new plugin packages breaks+replaces mariadb-server-10.0 as
    the files used to reside there (Closes: #815377).
656
657
  * Disable main.delayed that has been confirmed to be a false positive
    caused by built platform resource limits.
658
659
  * Disable multiple s390x tests that only fail on Ubuntu/Launchpad and
    cannot be reproduced anywhere else.
660

Otto Kekäläinen's avatar
Otto Kekäläinen committed
661
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 04 Mar 2016 08:38:25 +0200
662

Otto Kekäläinen's avatar
Otto Kekäläinen committed
663
mariadb-10.0 (10.0.24-1) unstable; urgency=low
664

665
  [ Otto Kekäläinen ]
666
667
668
  * New upstream release 10.0.24
    - Drop auth_socket patches as MDEV-8375 was partially fixed upstream
    - Refresh other patches
669
670
671
672
673
674
675
676
677
  * New upstream release includes fixes for the following security
    vulnerabilities:
    - CVE-2016-0668
    - CVE-2016-0650
    - CVE-2016-0649
    - CVE-2016-0646
    - CVE-2016-0644
    - CVE-2016-0641
    - CVE-2016-0640
678
  * Update filenames in d/copyright
679

680
  [ Ian Gilfillan ]
681
682
  * Add missing mysql_embedded man page

683
684
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 20 Feb 2016 14:23:50 +0200

Arnaud Fontaine's avatar
Arnaud Fontaine committed
685
mariadb-10.0 (10.0.23-3) unstable; urgency=low
686
687

  * Add Lintian overrides for TokuDB sources that indeed need autotools files
688
689
690
691
692
693
  * Split TokuDB, Mroonga, Spider and Cassandra into their own packages and
    start using new naming scheme 'mariadb-plugin-xzy' and rename existing
    Connect and OQGraph packages accordingly (Closes: #773727)
  * There is no need for mariadb-test packages to contain the version in the
    package name, so remove it. It only makes sense to keep the version number
    in the client and server packages, which users actually want to pin to.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
694
  * Update standards version
695
696
697

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 26 Jan 2016 11:34:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
698
mariadb-10.0 (10.0.23-2) unstable; urgency=low
699
700

  * Skip unstable Spider tests on Launchpad s390x builds
701
702
  * Extend install lists with missing files after reviewing the list
    of files produced by the build process
703
  * Update server README.Debian to match current unix socekt authentication
704
  * Lintian fixes and more updates to TokuDB plugin copyright paths
705
706
707
  * Move mysql_upgrade to server core package so that Akonadi and similar
    core package consumers can upgrade the database. Also update control file
    with breaks/replaces to allow smooth upgrades (Closes: #793977).
708
709
  * Update slow_query_log_file configuration syntax to match upstream's. Also
    fixes #677222 in MariaDB packages.
710
  * Rename and install Apport hook correctly
711
  * Remove Taocrypt workaround fixed upstream long since #627208
712
713
  * Removed CFLAGS and CXXFLAGS as suggested by Lars Tangvald and also done
    in mysql-5.6 packaging commit id 16a64e810e28f1d0b66ede274cd4c2b1a425fecb
714
715
  * Unmask the systemd mysql.service if left behind by a mysql-server-5.6
    installation, otherwise the MariaDB service would remain masked too.
716
  * Add gdb to build-deps as suggested in #627208 to get automatic stack traces
717
  * Updated Turkish translation by Atila KOÇ (Closes: #811414)
718

Otto Kekäläinen's avatar
Otto Kekäläinen committed
719
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 23 Jan 2016 23:07:15 +0200
720

721
722
mariadb-10.0 (10.0.23-1) unstable; urgency=low

723
724
725
  * New upstream release 10.0.23. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-2047
726
727
    - CVE-2016-0651
    - CVE-2016-0642
728
729
730
731
732
733
734
735
736
737
    - CVE-2016-0616
    - CVE-2016-0609
    - CVE-2016-0608
    - CVE-2016-0606
    - CVE-2016-0600
    - CVE-2016-0598
    - CVE-2016-0597
    - CVE-2016-0596
    - CVE-2016-0546
    - CVE-2016-0505
738
  * Ignore test suite exit code on unstable platforms (mips, mipsel)
739
740
  * Update TokuDB plugin install and copyright paths to match latest
    release done under Percona ownership
741
742
743

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 20 Dec 2015 14:18:33 +0200

744
mariadb-10.0 (10.0.22-6) unstable; urgency=low
745

746
  * Add patches to make passwordless root login default on all new
747
748
749
    installs in all situations. Make auth_socket a built-in plugin.
  * Clean up previous passwordless root implementation so that it
    applies only to new installs and existing databases continue
750
    to operate with the passwords defined in their user tables
751
752
  * As disabled.def intrepreted test names in a special way, switch
    back to using --skip-test-list option
753
754
  * Make the watch file to make it better suited for the
    git-buildpackage workflow and remove call to uupdate
755

756
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 19 Dec 2015 22:28:23 +0200
757

758
759
760
761
762
763
764
mariadb-10.0 (10.0.22-5) unstable; urgency=low

  * Fix non-working path of unstable-test in d/rules
  * Add unstable test for amd64 to fix reproducible builds

 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 17 Dec 2015 13:31:56 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
765
766
767
768
769
770
mariadb-10.0 (10.0.22-4) unstable; urgency=low

  * Upload to unstable

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 14 Dec 2015 00:49:14 +0200

771
772
773
774
775
776
mariadb-10.0 (10.0.22-4~exp1) experimental; urgency=low

  * Rewrite unstable tests section in d/rules that was not working

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 13 Dec 2015 21:36:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
777
mariadb-10.0 (10.0.22-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
778
779

  * Fix typo in d/rules
780
  * Extend list of unstable tests for arch mips, mipsel64 and alpha
Otto Kekäläinen's avatar
Otto Kekäläinen committed
781

Otto Kekäläinen's avatar
Otto Kekäläinen committed
782
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 11 Dec 2015 21:57:23 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
783

784
mariadb-10.0 (10.0.22-2) unstable; urgency=low
785
786

  * Escape d/rules file correctly to avoid parse error.
787
  * Remove patches/os_sync_Free patch that is not intended for production use.
788
789
790

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 20 Nov 2015 23:11:09 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
791
mariadb-10.0 (10.0.22-2~exp2) experimental; urgency=low
792

793
  [ Alexander Barkov ]
Otto Kekäläinen's avatar
Otto Kekäläinen committed
794
795
  * Backport patch from upstream to fix MDEV-9091: mysqld crashes on shutdown
    after running TokuDB tests on Ubuntu
Otto Kekäläinen's avatar
Otto Kekäläinen committed
796
797
  * Backport patch from upstream to fix MDEV-8692: prefschema test failures

798
  [ Otto Kekäläinen ]
799
800
  * Replace old 'make test' structure with direct call on mysql-test-run and
    parallelize the test suite run in the Debian build.
801
  * Print in build log env info to help debug builds on different platforms.
802
  * Keep a list of unstable tests that are to be skipped on official builds.
803
804
805

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 22:08:49 +0200

806
mariadb-10.0 (10.0.22-2~exp1) experimental; urgency=low
807
808

  * Add diagnostics to find out the problem in os_sync_free()
809
810
  * Backport fix for TokuDB crashes in build tests on Launchpad
    and enable TokuDB builds
811

812
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 08:54:05 +0200
813

814
mariadb-10.0 (10.0.22-1) unstable; urgency=low
815

816
  [ Otto Kekäläinen ]
817
818
  * New upstream release. Includes fixes for the following security
    vulnerabilities (Closes: #802874):
819
    - CVE-2016-0610
820
    - CVE-2016-3471
821
    - CVE-2015-7744
822
823
824
825
826
827
828
829
830
831
832
833
    - CVE-2015-4802
    - CVE-2015-4807
    - CVE-2015-4815
    - CVE-2015-4826
    - CVE-2015-4830
    - CVE-2015-4836
    - CVE-2015-4858
    - CVE-2015-4861
    - CVE-2015-4870
    - CVE-2015-4913
    - CVE-2015-4792
  * New release includes updated man pages (Closes: #779992)
834
  * Update the most recent patches with proper DEP-3 compliant headers
835
  * Add CVE IDs to previous changelog entries
836

837
838
839
  [ Jean Weisbuch ]
  * Update mysqlreport to version 4.0

840
841
842
  [ Otto Kekäläinen ]

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 30 Oct 2015 11:42:30 +0200
843

Otto Kekäläinen's avatar
Otto Kekäläinen committed
844
mariadb-10.0 (10.0.21-3) unstable; urgency=low
845
846

  * Updated Brazilian Portuguese translation (Closes: #798048)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
847
848
  * Upload 10.0.21 and all changes tested initially in experimental
    to unstable. Now sensible as mysql-5.6 has entered testing.
849

Otto Kekäläinen's avatar
Otto Kekäläinen committed
850
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 18 Sep 2015 23:04:53 +0300
851

Otto Kekäläinen's avatar
Otto Kekäläinen committed
852
mariadb-10.0 (10.0.21-2) experimental; urgency=low
853
854

  * Update gdb.conf to have tags signed by default
855
  * Add CVE IDs to previous changelog entries
856
  * Pass DEB_BUILD_ARCH to CMake options to enhance buils on some platforms
857
  * Test suite failures are now fatal on all platforms and not ignored anywhere
858
  * Revert most of commit 579282f and re-enable Mroonga
859
860
861

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 26 Aug 2015 18:20:54 +0300

Tobias Frost's avatar
Tobias Frost committed
862
mariadb-10.0 (10.0.21-1) experimental; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
863

864
  [ Otto Kekäläinen ]
865
  * Created libmariadbd18 and moved .so file from libmariadbd-dev there
866
  * Reproducible build improvement: Add LC_ALL=C to mysql.sym sort command
867
  * New upstream release.
868
869
    - Upstream added skip_log_error to mysqld_safe config (Closes: #781945)
    - Diffie-Helman modulus increased to 2048-bits (Closes: #788905)
870
871
872
873
874
  * New upstream release fixes the following security vulnerabilities:
    - CVE-2015-4816
    - CVE-2015-4819
    - CVE-2015-4879
    - CVE-2015-4895
875
876
877
878
  * Split mariadb-test-data-10.0 out of the main test package. This will save
    disk space in Debian archives as the arch independent data files are
    in one single package that can be used on all platforms and the package
    that is built on multiple platform shrinks significantly.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
879

880
881
882
883
884
885
886
  [ Jean Weisbuch ]
  * The MYCHECK_RCPT variable can now be set from the default file.
  * The check_for_crashed_tables() function on the debian-start script has been
    fixed to be able to log (and email) the errors it encountered : Errors are
    sent to stderr by the CLI while only stdout was captured by the function.
  * The same function now also checks Aria tables along with MyISAM ones.

Tobias Frost's avatar
Tobias Frost committed
887
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 13 Aug 2015 10:08:38 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
888

889
mariadb-10.0 (10.0.20-3) unstable; urgency=medium
890
891
892
893

  [ Andreas Beckmann ]
  * mariadb-common: Depend on a version of mysql-common that ships
    /usr/share/mysql-common/configure-symlinks.  (Closes: #787533)
894
  * mariadb-common.postinst: Drop fallback my.cnf symlink management.
895
  * mariadb-common.preinst: Clean up my.cnf/my.cnf.old from the fallback.
896

Otto Kekäläinen's avatar
Otto Kekäläinen committed
897
  [ Otto Kekäläinen ]
898
899
900
901
  * Clean up old cruft from rules file after review by Sergei Golubchik
  * Unified config file layout with upstream .cnf layout
  * Recover mysql-upgrade dir/link handlig wrongly removed in f7caa041db
  * Minor Lintian and documentation fixes
902
  * Switch 'nm -n' to 'nm --defined-only' to improve reproducible builds
Otto Kekäläinen's avatar
Otto Kekäläinen committed
903
904
905
906
907
908
909
910
911
912

  [ Olaf van der Spek ]
  * Minor spell checking (Closes: #792123)

  [ Israel Tsadok ]
  * Fix mariadb-server-10.0.preinst script that failed to save a new
    /var/lib/mysql-upgrade/DATADIR.link if a previous DATADIR.link existed and
    the /var/lib/mysql directory was a symbolic link with an absolute path
    as target (Closes: #792918)

913
  [ Jean Weisbuch ]
914
915
  * Added a Debian default file for the mariadb-server-10.0 package which allows
    one to set the MYSQLD_STARTUP_TIMEOUT variable used in the init script
916

917
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 24 Jul 2015 23:00:00 +0300
918

Otto Kekäläinen's avatar
Otto Kekäläinen committed
919
920
921
mariadb-10.0 (10.0.20-2) unstable; urgency=low

  * Fix bash test logic in postinstall (Closes: #789589)
922
923
  * Add extra sort in d/rules mysqld.sym.gz command to satisfy Debian
    reproducible build requirements
924
  * Switch to utf8mb4 as default character set
Otto Kekäläinen's avatar
Otto Kekäläinen committed
925
926
927

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 03 Jul 2015 17:11:01 +0300

928
929
mariadb-10.0 (10.0.20-1) unstable; urgency=low

930
931
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
932
933
934
935
    - CVE-2015-2582
    - CVE-2015-2620
    - CVE-2015-2643
    - CVE-2015-2648
936
937
938
939
    - CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
      MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
      together with --ssl will ensure that the established connection is
      SSL-encrypted and the MariaDB server has a valid certificate.
940
    - CVE-2015-4752
941
    - CVE-2015-4864
Otto Kekäläinen's avatar
Otto Kekäläinen committed
942
  * New release includes fix for memory corruption on arm64 (Closes: #787221)
943
  * Added patch to enhance build reproducibility regarding the file INFO_BIN
944
945
946

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 19 Jun 2015 13:01:56 +0300

947
948
mariadb-10.0 (10.0.19-1) unstable; urgency=low

949
  * New upstream release. Fixed the server crash caused by mysql_upgrade
950
951
952
953
954
    (MDEV-8115).
  * Upload to unstable from master branch as Jessie is not released.

 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 09 May 2015 22:24:03 +0300

955
mariadb-10.0 (10.0.18-1~exp1) experimental; urgency=low
956

957
958
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
959
    - CVE-2015-4866
960
961
962
963
964
965
966
967
    - CVE-2014-8964 bundled PCRE contained heap-based buffer overflow
      vulnerability that allowed the server to crash or have other unspecified
      impact via a crafted regular expression made possible with the
      REGEXP_SUBSTR function (MDEV-8006).
    - CVE-2015-0501
    - CVE-2015-2571
    - CVE-2015-0505
    - CVE-2015-0499
968
    - CVE-2015-4757
969
    - CVE-2015-4866
970
  * Cleanup in d/copyright
971
972
  * Make the mariadb-common depends versioned to guarantee that latest
    config files are installed
973

974
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 07 May 2015 23:21:20 +0300
975

976
mariadb-10.0 (10.0.17-1~exp2) experimental; urgency=low
977
978
979

  * d/control: Related to innochecksum manpage move, also break/replace
    the mysql-client-5.5/6 packages (Closes: #779873)
980
981
982
  * Add automatic fallback to the new /etc/mysql/my.cnf management scheme
    for cases where mysql-common/configure-symlinks is not yet available
    and users complain the installation ends up broken.
983
  * New release confirmed to build with GCC-5 (Closes: #777996)
984
985
986

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 06 Mar 2015 16:42:21 +0200

987
mariadb-10.0 (10.0.17-1~exp1) experimental; urgency=low
988

989
990
991
992
993
994
  [ Jan Wagner ]
  * Adding mysqld_multi.server_lsb-header.patch, provides LSB headers for
    example initscript (Closes: #778762)
  * Adding mysqld_multi_confd.patch, makes mysqld_multi reading conf.d
    (Closes: #778761)

995
  [ Robie Basak ]
996
997
  * Move innochecksum back to mariadb-server-core-10.0 to align with other
    variants (LP: #1421520).
998
  * Fix typo in mariadb-server-10.0.postinst.
Robie Basak's avatar
Robie Basak committed
999
  * Fix typo in postinst mktemp call (LP: #1420831).
1000