changelog 42.6 KB
Newer Older
1
2
3
4
5
6
7
8
9
mariadb-10.1 (10.1.30-0+deb9u1) stretch-security; urgency=high

  [ Otto Kekäläinen ]
  * Revert "Update d/gbp.conf to track stretch branches"
  * New upstream version 10.1.30. Includes fixes for the following
    security vulnerabilities (Closes: #885345):
    - CVE-2017-15365
  * Amend previous Debian changelog entries to contain new CVE identifiers
  * Refresh patches for MariaDB 10.1.30
10
11

  [ Ondřej Surý ]
12
13
14
15
16
  * New upstream version 10.1.29. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-10378
    - CVE-2017-10268
    - MDEV-13819
17
18
19
20
21
22
23
24
25
26
27
28
29
  * Add libconfig-inifiles-perl to mariadb-client-10.1 depends to fix
    mytop
  * Add mips64el to the list of platforms that are allowed to fail test
    suite
  * Handle new and/or missing files
  * Revert to using system pcre library
  * Ignore failed tests on more non-release platforms (kfreebsd-i386,
    kfreebsd-amd64 and sparc64)
  * Rebase patches for MariaDB 10.1.29

  [ Christian Ehrhardt ]
  * d/t/upstream: skip func_regexp_pcre on s390x

30
 -- Otto Kekäläinen <otto@debian.org>  Thu, 28 Dec 2017 23:27:25 +0200
31

Ondrej Sury's avatar
Ondrej Sury committed
32
mariadb-10.1 (10.1.26-0+deb9u1) stretch-security; urgency=high
Ondrej Sury's avatar
Ondrej Sury committed
33
34
35

  * New upstream version 10.1.26.  Includes fixes for the following
    security vulnerabilities:
36
37
38
    - CVE-2017-10384
    - CVE-2017-10379
    - CVE-2017-10286
Ondrej Sury's avatar
Ondrej Sury committed
39
40
41
42
43
44
45
46
47
48
49
50
    - CVE-2017-3636
    - CVE-2017-3641
    - CVE-2017-3653
  * Explicitly add dh_systemd_start snippets to mariadb-server-10.1
    because it's all messed up with different name for sysvinit ('mysql')
    and systemd ('mariadb') (Closes: #865870)
  * gbp.conf: Ignore upstream debian/ directory when importing upstream
    tarball
  * Refresh patches on top of MariaDB 10.1.26

 -- Ondřej Surý <ondrej@debian.org>  Thu, 10 Aug 2017 21:07:44 +0200

Ondrej Sury's avatar
Ondrej Sury committed
51
52
53
54
55
56
57
mariadb-10.1 (10.1.25-0+deb9u1) stretch; urgency=medium

  * New upstream version 10.1.25
  * Update quilt patches on top of mariadb-10.1.25 release

 -- Ondřej Surý <ondrej@debian.org>  Thu, 20 Jul 2017 09:35:41 +0200

Ondrej Sury's avatar
Ondrej Sury committed
58
59
60
61
62
63
64
mariadb-10.1 (10.1.24-0+deb9u2) stretch; urgency=medium

  * Run invoke-rc.d mysql maintscript snippets only when running under
    sysvinit (Closes: #864593)

 -- Ondřej Surý <ondrej@debian.org>  Wed, 21 Jun 2017 11:11:53 +0200

Ondrej Sury's avatar
Ondrej Sury committed
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
mariadb-10.1 (10.1.24-0+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * New upstream version 10.1.24
  * Update d/gbp.conf to track stretch branches
  * Refresh patches on top of MariaDB 10.1.24
  * Add cracklib-runtime to Build-Depends to fix FTBFS
  * Merge mytop script improvements from src:mytop package (Original
    patches by Philipp Matthias Hahn, Werner Detter, Olaf van der Spek,
    and Steffen Zieger) (Closes: #864762)
  * Add @SYSTEMD_EXECSTARTPOST@ replacement token to mariadb@.service, so
    the /var/run/mysqld directory is created even for multi-server setup
    (Closes: #865083)

  [ Andreas Beckmann ]
  * Fix FTBFS on 32-bit mips*

  [ James Cowgill ]
  * Update C11 atomics to have correct semantics (Closes: #864774)
  * Disable jemalloc on mips*. (Closes: #864340)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 19 Jun 2017 10:19:37 +0200

88
89
90
91
92
93
94
95
mariadb-10.1 (10.1.23-9+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * Add Breaks: cqrlog (<< 1.9.0-5~) to ensure correct upgrade order
    (Closes: #864159)

 -- Andreas Beckmann <anbe@debian.org>  Wed, 07 Jun 2017 21:11:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
96
97
98
99
100
101
102
mariadb-10.1 (10.1.23-9) unstable; urgency=medium

  * Fix the invalid location of insserv configuration snippet
    (Thanks Michael Biebl for catching that)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 26 May 2017 09:26:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
103
104
105
106
107
108
109
mariadb-10.1 (10.1.23-8) unstable; urgency=medium

  * Use /etc/insserv.conf.d/mariadb to provide $database system facility
    (Closes: #862447)

 -- Ondřej Surý <ondrej@debian.org>  Sat, 13 May 2017 11:08:43 +0200

Ondrej Sury's avatar
Ondrej Sury committed
110
111
112
113
114
115
116
mariadb-10.1 (10.1.23-7) unstable; urgency=medium

  * Remove hard Breaks/Replaces with mysql-server and mysql-client
  * Move virtual packages from Breaks to Conflicts (Debian Policy 7.6.2)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 12 May 2017 12:21:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
117
118
119
120
121
122
mariadb-10.1 (10.1.23-6) unstable; urgency=medium

  * Also fix the same assertion failure in xtradb (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 19:51:47 +0200

Ondrej Sury's avatar
Ondrej Sury committed
123
124
125
126
127
128
129
mariadb-10.1 (10.1.23-5) unstable; urgency=medium

  * Add upstream patch to fix assertion failure in InnoDB storage engine
    (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 17:21:55 +0200

Ondrej Sury's avatar
Ondrej Sury committed
130
131
132
133
134
135
mariadb-10.1 (10.1.23-4) unstable; urgency=medium

  * Properly declare conflict on mytop (Closes: #861913)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 11:31:13 +0200

Ondrej Sury's avatar
Ondrej Sury committed
136
137
138
139
140
141
142
mariadb-10.1 (10.1.23-3) unstable; urgency=medium

  * Remove two internal symbols (ll2str and longlong2str) from
    kfrebsd-amd64 symbols file

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 13:19:00 +0200

Ondrej Sury's avatar
Ondrej Sury committed
143
144
145
146
147
148
149
mariadb-10.1 (10.1.23-2) unstable; urgency=medium

  * Add CVE list for 10.1.23 release
  * Fix FTBFS on kfrebsd-any due missing .service files

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 10:55:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
150
151
mariadb-10.1 (10.1.23-1) unstable; urgency=medium

Ondrej Sury's avatar
Ondrej Sury committed
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
  * New upstream version 10.1.23, includes fixes for the following
    security vulnerabilities:
   - [CVE-2017-3302]: use-after-free in C client library for MySQL
   - [CVE-2017-3313]: unauthorized (local) access to critical data or
     complete access to all MySQL Server accessible data
   - [CVE-2017-3308]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3309]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3453]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3456]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3464]: unauthorized update, insert or delete access to some
     of MySQL Server accessible data
Ondrej Sury's avatar
Ondrej Sury committed
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
  * Refresh debian/patches on top of MariaDB 10.1.23 release
  * debian/gbp.conf: Filter most common cruft in the orig tarball
  * debian/rules: Use --fail-missing to catch extra upstream files
  * debian/*.manpages: Merge into debian/*.install
  * debian/*.install: Add few missing binaries into various packages
  * Declare mariadb-plugin-tokudb as available only on (linux-)amd64
    to fix FTBFS on kfreebsd-amd64
  * Remove the extra sanity check as it is already there via standard
    dh_installinit (|| exit 0) (Closes: #861782)
  * Stop /usr/sbin/mysqld in prerm script even with systemd
  * Move mariadb.pc into proper multiarch directory (Closes: #852621)
  * Add libarchive-dev needed by mariabackup to Build-Depends
  * debian/control: run wrap-and-sort -a
  * Move mysql_install_db from mariadb-server-10.1 to
    mariadb-server-core-10.1 (Closes: #840646)
  * Add Provides: $database to mysql.init - this partially addresses
    #852776
  * Call dh_systemd_start with --no-restart-after-upgrade
    (Closes: #853137)
  * d/rules: Remove dh_prep override (legacy cruft)

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 07:23:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
190
191
192
193
194
195
196
mariadb-10.1 (10.1.22-4) unstable; urgency=medium

  * Fix small typo in d/rules that caused MySQL version suffix to not
    contain information about Debian build

 -- Ondřej Surý <ondrej@debian.org>  Sat, 29 Apr 2017 21:56:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
197
198
199
200
201
202
203
204
205
206
mariadb-10.1 (10.1.22-3) unstable; urgency=medium

  * Use pidof instead of pgrep, so we don't have to depend on procps
  * Stop stopping mariadb server that many times and just add a simple
    check to preinst that it has been really stopped (Closes: #852495)
  * Fix small typo in gettid patch
  * Disable TokuDB on kfreebsd-amd64

 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
mariadb-10.1 (10.1.22-2) unstable; urgency=medium

  [ Ondřej Surý ]
  * Add correct kfreebsd-i386 symbols file (but this needs to be fixed in
    how upstream uses linker)
  * Update italian translation (Closes: #858300)

  [ Otto Kekäläinen ]
  * Add Vietnamese translation by Trn Ngc Quân
  * Add Finnish translation by Antti Järvinen

  [ Ondřej Surý ]
  * Disable test suite on hppa, don't fail test suite on more unstable
    platforms: alpha, powerpc, and x32
  * Add swedish debconf translation (Closes: #858536)
  * Add Catalan debconf translation (Closes: #858632)
  * Use thr_self() as gettid implementation onf __FreeBSD_kernel__
  * Make mariadb-server-10.1 installable on kFreeBSD and Hurd (Closes: #851687)
  * Update Turkish debconf translation (Closes: #858340)
  * Disable specific tests on hppa to make the build succeed (Courtesy of
    John David Anglin) (Closes: #858869)

Ondrej Sury's avatar
Ondrej Sury committed
229
 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:01 +0200
Ondrej Sury's avatar
Ondrej Sury committed
230

231
mariadb-10.1 (10.1.22-1) unstable; urgency=high
232

Ondrej Sury's avatar
Ondrej Sury committed
233
  [ Otto Kekäläinen ]
234
235
236
237
238
239
240
  * New upstream release 10.1.22. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-3313
    - CVE-2017-3302
  * New upstream also includes fix to logrotate so that it no longer
    risks interrupting binary/relay log processing on the server.
    https://github.com/MariaDB/server/commit/156cf86defdc59353f37f6
Ondrej Sury's avatar
Ondrej Sury committed
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
  * Add a NEWS.Debian item with same contents as the Stretch release notes

  [ Ondřej Surý ]
  * Add myself to Uploaders
  * Use https URI for Homepage
  * Use /usr/share/dpkg/default.mk to define dpkg-architecture and other
    build variables
  * Install and use non-versioned symbols files for kFreeBSD and Hurd
    architectures
  * Make mysql_config and mariadb.pc return -lmariadbclient instead of
    missing -lmysqlclient
  * Add mysqlclient.pc -> mariadb.pc symlink into
    libmariadbclient-dev-compat package
  * MDEV-11884: Fix logrotate failing if mysqld is not running (Closes: #830976)

 -- Ondřej Surý <ondrej@debian.org>  Sun, 19 Mar 2017 15:23:26 +0100
257

Otto Kekäläinen's avatar
Otto Kekäläinen committed
258
259
mariadb-10.1 (10.1.21-5) unstable; urgency=low

260
261
262
263
264
265
  [ James Clarke ]
  * Make debian/mariadb-server-10.1.install executable (Closes: #852728)
  * Allow mariadb-plugin-tokudb/mroonga on non-linux and non-release arches
  * Detect whether libatomic is needed rather than hard-coding for mips
  * Use host architecture, not build architecture, and clean up variables
  * General clean-up in d/rules
Otto Kekäläinen's avatar
Otto Kekäläinen committed
266

267
 -- Otto Kekäläinen <otto@debian.org>  Fri, 27 Jan 2017 20:42:36 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
268

269
270
271
272
273
274
mariadb-10.1 (10.1.21-4) unstable; urgency=low

  * Hotfix to full build failure: Add missing galera_new_cluster.1 to patch

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 23:33:32 +0200

275
mariadb-10.1 (10.1.21-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
276

277
278
  [ Ian Gilfillan ]
  * Extend WSREP and Galera man pages patch to cover all commands
Otto Kekäläinen's avatar
Otto Kekäläinen committed
279

280
281
282
283
284
285
286
287
  [ Dieter Adriaenssens ]
  * Specify Architecture for mariadb-plugin-mroonga and mariadb-plugin-tokudb 
    (Closes: #852709)

  [ James Clarke ]
  * Fix FTBFS on non-Linux architectures (Closes: #852728)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 22:18:26 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
288

289
mariadb-10.1 (10.1.21-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
290

291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
  [ Otto Kekäläinen ]
  * Implement systemd packaging the Debian way
  * Extend README.Debian regarding new systemd files
  * Add config file comments about SysV init and systemd differences
  * Extend Debian.README with section about mixing with packages MariaDB.org
  * Update /etc/init.d/mysql after comparison with upstream MariaDB 10.1.21
  * Run chown much faster on the datadir during install/update
  * Check if /var/lib/mysql exists before running 'find' on it
  * Skip mysqld stopping if no mysqld process is running at all
  * Update French debconf translation by Baptiste Jammet (Closes: #850066)
  * Remove unnecessary XS-Testsuite field (as instructed by Lintian)
  * Add a modified version of upstream autobake-deb script to utilize CI tools
  * Fix server config example on how to enable SSL with YaSSL (Closes: #851132)
  * Make commands mariadb and mariadbcheck available with symlinks

  [ Jean Weisbuch ]
  * Update Innotop to latest version

  [ Ian Gilfillan ]
  * Add wsrep_* man pages
Otto Kekäläinen's avatar
Otto Kekäläinen committed
311

312
 -- Otto Kekäläinen <otto@debian.org>  Wed, 25 Jan 2017 10:42:45 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
313

314
mariadb-10.1 (10.1.21-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
315

316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities (Closes: #851759, Closes: ##849435):
    - CVE-2017-3318
    - CVE-2017-3317
    - CVE-2017-3312
    - CVE-2017-3291
    - CVE-2017-3265
    - CVE-2017-3258
    - CVE-2017-3257
    - CVE-2017-3244
    - CVE-2017-3243
    - CVE-2017-3238
    - CVE-2016-6664
  * Add new program introduced in upstream 10.1.21: mysqld_safe_helper
  * Deb-CI: remove parameter --skip-ndbcluster not available in 10.1 any more
  * Make libmariadbclient18 depend on mysql-common only (Closes: #850216)
  * Fix misleading config file comment (Closes: #677223)
  * Update preinst variable $this_version from 10.0 to 10.1 (Closes: #851257)

  [ Kristian Nielsen ]
  * Re-implement passwordless root login (Closes: #851131)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 19 Jan 2017 11:33:01 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
340

341
342
343
344
345
346
347
mariadb-10.1 (10.1.20-3) unstable; urgency=low

  [ Vicențiu Ciorbaru ]
  * Update debian rules to also account for mipsel

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 20:23:23 +0200

348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
mariadb-10.1 (10.1.20-2) unstable; urgency=low

  [ Otto Kekäläinen ]
  * Upload to unstable
  * Previous version string should had been ~exp1, thus this
    first upload to unstable is -2 and not -1 as normal
  * Disable test suite temporairly due to false regressions

  [ Dieter Adriaenssens ]
  * fix Vcs-git link format and repo name
  * update 10.0 to 10.1 in README files

  [ Vicențiu Ciorbaru ]
  * Fix mips missing atomics primitives

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 09:54:59 +0200

365
mariadb-10.1 (10.1.20-1) experimental; urgency=low
366

367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
  * Upgrade package to new MariaDB 10.1.x series:
    - New upstream release  10.1.20
    - Refresh patches after 10.1.20 import
    - Update strings 10.0 -> 10.1 after importing 10.1.20
    - Refresh patches after 10.1.20 import
    - Update d/control after 10.1 import
    - Use https protected git url in d/control
    - Backwards compatible XS-Testsuite syntax in d/control
    - Import debian/* changes done in upstream 10.1
    - Replace deprecated iproute with iproute2
    - Remove unnecessary dependencies as packages are Essential anyway
    - Remove unnecessary and big file mysql_embedded
    - Switch to 10.1 style build flag for unix socket auth module in d/rules
    - Update d/copyright after 10.1 import
    - Add missing aria_add_gis_sp.sql to mariadb-server-10.1
    - Ship SELinux and AppArmor files with the server, but as inactive
    - New package from upstream 10.1: GSS API (Kerberos) client and server
    - Extend GSSAPI plugin descriptions to satisfy Lintian
    - New plugin from upstream 10.1: Cracklib password validation
386

387
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 22:46:59 +0200
388

389
mariadb-10.0 (10.0.28-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
390

391
392
393
394
395
396
397
398
399
400
401
  [ Otto Kekäläinen ]
  * Move libmariadbd and -dev next to each other for a more logical flow in d/control
  * Move mariadb-test to last in file for a more logical flow in d/control
  * Clean away unused Lintian overrides
  * Add Lintian override for impossible mysql_config multi-arch requirement
  * Update Debian copyright based on the 2016 git log author list
  * Remove unnecessary /var/lib/mysql-upgrade (Closes: #848620)

  [ Vicențiu Ciorbaru ]
  * Fix connect.upd test in armhf
  * Fix mroonga/storage.index_read_multiple_double test in armhf
Otto Kekäläinen's avatar
Otto Kekäläinen committed
402

403
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 21:59:47 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
404

405
mariadb-10.0 (10.0.28-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
406

407
408
409
  [ Samuel Thibault ]
  * patches/hurd_socket.patch: Also avoid non-working socket path length check
    on hurd-i386.
410
  * rules: Drop symbols on hurd-i386 too (Closes: #842696).
411

412
413
414
415
416
417
418
419
420
  [ Daniel Black ]
  * Don't install private mysql header files in libmariadbclient-dev

  [ Otto Kekäläinen ]
  * Update libmariadbd18 description and contents to match latest upstream
  * Mark missing Multi-Arch as suggested by Multiarch hinter
  * Move plugins to $ARCH/*/mariadb18 to meet multiarch needs (Closes: #739452)

 -- Otto Kekäläinen <otto@debian.org>  Fri, 11 Nov 2016 22:03:33 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
421

422
mariadb-10.0 (10.0.28-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
423

424
425
  [ Vicențiu Ciorbaru ]
  * Fix tokudb jemalloc linking
Otto Kekäläinen's avatar
Otto Kekäläinen committed
426

427
428
429
430
431
432
433
434
435
436
437
438
439
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-8283
    - CVE-2016-7440
    - CVE-2016-6663
    - CVE-2016-5629
    - CVE-2016-5626
    - CVE-2016-5624
    - CVE-2016-5616
    - CVE-2016-5584
    - CVE-2016-3492
  * Drop 4 patches that have been applied upstream.
440
441
  * Delete runnable files from mariadb-test-data as they were only
    needed at build time to generate tests.
442
443

 -- Otto Kekäläinen <otto@debian.org>  Fri, 28 Oct 2016 22:51:14 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
444

445
mariadb-10.0 (10.0.27-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
446
447
448
449
450

  [ Dieter Adriaenssens ]
  * Fix typo in README.Contributor
  * Improve documentation on how to clean the build env

451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
  [ James Cowgill ]
  * Mips build and testsuite fixes (Closes: #838557, Closes: #838914)
    - Permit 93 as a valid value of the ENOTEMPTY error in the testsuite
    - Correctly fix mips64 multiplication in taocrypt
    - Ensure groonga is built with libatomic
    - Handle unaligned buffers in connect's TYPBLK class
    - Fix DEFAULT_MACHINE on mips
    - Remove various tests from unstable-tests which now pass on MIPS
    - Update debian/unstable-tests.mips*

  [ Kristian Nielsen ]
  * Fix missing path for perl in autopkgtest (Closes: #809022)
  * Fix test failures on hppa due to wrong enoempty (Closes: #837369)

 -- Otto Kekäläinen <otto@debian.org>  Sun, 02 Oct 2016 09:22:59 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
466

467
468
469
470
471
472
473
474
mariadb-10.0 (10.0.27-1) unstable; urgency=low

  * New upstream release 10.0.27
  * Remove 3 patches after 10.0.27 import as they have been applied
    upstream.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 07 Sep 2016 23:05:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
475
mariadb-10.0 (10.0.26-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
476

Otto Kekäläinen's avatar
Otto Kekäläinen committed
477
478
  [ Dieter Adriaenssens ]
  * Add DEP-12 formatted upstream metadata file (Closes: #808421)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
479

Otto Kekäläinen's avatar
Otto Kekäläinen committed
480
481
482
483
484
485
486
487
488
489
490
491
  [ Vicențiu Ciorbaru ]
  * Update innodb_xtradb patch to introduce memory barrier after lock
  * Fix failing shutdown with gcc v6

  [ Otto Kekäläinen ]
  * Extend commit d5af196 with old name of package libmariadb-dev-compat
  * Extend commit 8d2a7c9 and actually install the tokuftdump man page
  * Update mariadb-test dependencies to include also libmariadbclient18
  * Add path to fix for sporadically failing test main.information_schema_stats
  * d/rules: NUMJOBS must have a default value

 -- Otto Kekäläinen <otto@debian.org>  Wed, 17 Aug 2016 00:31:02 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
492

493
mariadb-10.0 (10.0.26-2) unstable; urgency=low
494
495

  [ Vicențiu Ciorbaru ]
496
  * Add patch to correctly revert changes from 10.0.26 that caused
497
    build failure regression on PPC64el
498

499
500
501
  [ Paul Gevers ]
  * Add autopkg tests for MariaDB 10.0 (Closes: #809022)

502
  [ Axel Beckert ]
503
  * Extend mariadb-server to purge gracefully if datadir is a mountpoint
504
    (Closes: #829491)
505
506
507
508

  [ Ian Gilfillan ]
  * Add a patch to provide a man page for tokuftdump

509
510
511
512
  [ Robie Basak ]
  * Re-add libmariadbclient18 and libmariadbclient-dev
  * Add libmariadbclient-dev-compat package

513
  [ Otto Kekäläinen ]
514
515
516
517
518
519
520
521
  * d/control: libmariadbclient18 must be 'Multi-Arch: same'
  * Make libmariadbclient-dev-compat conflict with libmariadb-dev-compat
    (Closes: #831229)
  * Add libmariadbclient-dev as dependency for libmariadbd-dev
  * Replace hacky sed of libmysqlclient->libmariadbclient with proper patch
  * Update symbols file to match newest libmariadbclient18
  * Updated Danish translation by Joe Hansen (Closes: #830592)
  * Remove mariadb-plugin-cassandra until libthrif-dev lands in unstable
522
  * Make libdbd-mysql-perl and friends Recommends instead of strict Depends
523
    (Closes: #793787)
524
525
526
527
  * Documentation and spelling fixes
  * Remove mysqlbug binary as it is not used for MariaDB
  * Update default config files with more secure TLS examples

528
 -- Otto Kekäläinen <otto@debian.org>  Fri, 29 Jul 2016 21:42:50 +0300
529

Otto Kekäläinen's avatar
Otto Kekäläinen committed
530
531
532
mariadb-10.0 (10.0.26-1) unstable; urgency=low

  * Updated French translation by Baptiste Jammet (Closes: #826879)
533
534
535
536
537
538
539
  * New upstream release 10.0.26. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-5440
    - CVE-2016-3615
    - CVE-2016-3521
    - CVE-2016-3477
  * Updated old changelog entries to include new CVE identifiers.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
540
541
542
543
  * Refresh patches after 10.0.26 import

 -- Otto Kekäläinen <otto@debian.org>  Fri, 24 Jun 2016 17:05:44 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
544
mariadb-10.0 (10.0.25-1) unstable; urgency=low
545

546
  [ Otto Kekäläinen ]
547
  * Revert previous changes tailored for Ubuntu 16.04 compatibility.
548
  * New upstream release 10.0.25. Includes fixes for the following
549
    security vulnerabilities (Closes: #823325):
550
551
552
553
554
    - CVE-2016-0666
    - CVE-2016-0655
    - CVE-2016-0648
    - CVE-2016-0647
    - CVE-2016-0643
555
556
557
    - CVE-2016-5444
    - CVE-2016-3459
    - CVE-2016-3452
558
559
560
  * Updated old changelog entries to include new CVE identifiers.
  * Upstream included changes to logrotate script that supports systems that
    has multiple mysqld processes running (Closes: #810968).
561
  * Updated Dutch translation by Frans Spiesschaert (Closes: #822894).
562
563
  * Updated Spanish translation by Javier Fernández-Sanguino Peña
    (Closes: #823099).
564
  * Updated Russian translation by Yuri Kozlov (Closes: #823422).
565
  * Updated German translation by Chris Leick (Closes: #824487).
566
  * Updated Brazilian Portuguese translation (Closes: #824644).
567
  * Updated Turkish translation by Atila KOÇ (Closes: #825802).
568
  * Add patch to provide passwordless root accounts for test suite.
569
  * Updated Japanese translation by Takuma Yamada (Closes: #825813).
570

571
572
573
  [ Vicențiu Ciorbaru ]
  * Backport upstream MDEV-9479 fix: oqgraph fails to build with boost 1.60

Otto Kekäläinen's avatar
Otto Kekäläinen committed
574
 -- Otto Kekäläinen <otto@debian.org>  Mon, 30 May 2016 22:43:30 +0300
575

576
577
578
579
580
581
582
mariadb-10.0 (10.0.24-7) unstable; urgency=low

  * Temporarily remove mariadb-plugin-cassandra as Debian FTP bot thinks
    it wasn't there before 10.0.24-6 and put the package in the NEW queue.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 13:24:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
583
mariadb-10.0 (10.0.24-6) unstable; urgency=low
584
585
586

  * Move mysql_embedded from client package to client-core package,
    equally as is in mysql-client-core-5.6 and -5.7 (LP: #1568077).
587
  * Add breaks/replaces for mariadb-client to accommodate the above.
588
589
  * Add conflicts/breaks/replaces for MySQL 5.7 series packages now
    when mysql-5.7 entered the Ubuntu repositories (LP: #1568285).
590
591
592
593
  * Detect properly if there is an incompatible data directory from 5.7,
    save it to another location and initialize a new data directory so that the
    installation can complete properly without leaving dpkg in an inconsistent
    state.
594
595
  * Remove all old passwordless root account lines to close a potential
    security vulnerability (LP: #1561062).
596

Otto Kekäläinen's avatar
Otto Kekäläinen committed
597
 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 10:56:10 +0300
598

Otto Kekäläinen's avatar
Otto Kekäläinen committed
599
mariadb-10.0 (10.0.24-5) unstable; urgency=low
600
601

  * Disable sporadically failing rpl_binlog_index test on PowerPC.
602
  * Disable another sporadic on amd64 and update all Jira links.
603
  * Fix typo in Mroonga prerm script.
604

Otto Kekäläinen's avatar
Otto Kekäläinen committed
605
 -- Otto Kekäläinen <otto@debian.org>  Sat, 12 Mar 2016 10:08:23 +0200
606

607
mariadb-10.0 (10.0.24-4) unstable; urgency=low
608

609
610
611
612
613
  * Update contributor documentation to match git-buildpackage version in sid.
  * Add libxml and unixOBDC as build-depends for ConnectSE as done by in
    upstream (Closes: #814944).
  * Upload to via NEW as mariadb-10.0 was accidentally removed from Debian
    unstable archives.
614

615
 -- Otto Kekäläinen <otto@debian.org>  Thu, 10 Mar 2016 18:40:51 +0200
616

Otto Kekäläinen's avatar
Otto Kekäläinen committed
617
mariadb-10.0 (10.0.24-3) unstable; urgency=low
618
619

  * Fix typo in rules file about Mroonga control section
620
  * Add main.delayed test exception to more platforms
621
  * Install mysql_embedded man page correctly
622

Otto Kekäläinen's avatar
Otto Kekäläinen committed
623
 -- Otto Kekäläinen <otto@debian.org>  Sun, 06 Mar 2016 22:20:52 +0200
624

Otto Kekäläinen's avatar
Otto Kekäläinen committed
625
mariadb-10.0 (10.0.24-2) unstable; urgency=low
626
627
628

  * Make new plugin packages breaks+replaces mariadb-server-10.0 as
    the files used to reside there (Closes: #815377).
629
630
  * Disable main.delayed that has been confirmed to be a false positive
    caused by built platform resource limits.
631
632
  * Disable multiple s390x tests that only fail on Ubuntu/Launchpad and
    cannot be reproduced anywhere else.
633

Otto Kekäläinen's avatar
Otto Kekäläinen committed
634
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 04 Mar 2016 08:38:25 +0200
635

Otto Kekäläinen's avatar
Otto Kekäläinen committed
636
mariadb-10.0 (10.0.24-1) unstable; urgency=low
637

638
  [ Otto Kekäläinen ]
639
640
641
  * New upstream release 10.0.24
    - Drop auth_socket patches as MDEV-8375 was partially fixed upstream
    - Refresh other patches
642
643
644
645
646
647
648
649
650
  * New upstream release includes fixes for the following security
    vulnerabilities:
    - CVE-2016-0668
    - CVE-2016-0650
    - CVE-2016-0649
    - CVE-2016-0646
    - CVE-2016-0644
    - CVE-2016-0641
    - CVE-2016-0640
651
  * Update filenames in d/copyright
652

653
  [ Ian Gilfillan ]
654
655
  * Add missing mysql_embedded man page

656
657
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 20 Feb 2016 14:23:50 +0200

Arnaud Fontaine's avatar
Arnaud Fontaine committed
658
mariadb-10.0 (10.0.23-3) unstable; urgency=low
659
660

  * Add Lintian overrides for TokuDB sources that indeed need autotools files
661
662
663
664
665
666
  * Split TokuDB, Mroonga, Spider and Cassandra into their own packages and
    start using new naming scheme 'mariadb-plugin-xzy' and rename existing
    Connect and OQGraph packages accordingly (Closes: #773727)
  * There is no need for mariadb-test packages to contain the version in the
    package name, so remove it. It only makes sense to keep the version number
    in the client and server packages, which users actually want to pin to.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
667
  * Update standards version
668
669
670

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 26 Jan 2016 11:34:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
671
mariadb-10.0 (10.0.23-2) unstable; urgency=low
672
673

  * Skip unstable Spider tests on Launchpad s390x builds
674
675
  * Extend install lists with missing files after reviewing the list
    of files produced by the build process
676
  * Update server README.Debian to match current unix socekt authentication
677
  * Lintian fixes and more updates to TokuDB plugin copyright paths
678
679
680
  * Move mysql_upgrade to server core package so that Akonadi and similar
    core package consumers can upgrade the database. Also update control file
    with breaks/replaces to allow smooth upgrades (Closes: #793977).
681
682
  * Update slow_query_log_file configuration syntax to match upstream's. Also
    fixes #677222 in MariaDB packages.
683
  * Rename and install Apport hook correctly
684
  * Remove Taocrypt workaround fixed upstream long since #627208
685
686
  * Removed CFLAGS and CXXFLAGS as suggested by Lars Tangvald and also done
    in mysql-5.6 packaging commit id 16a64e810e28f1d0b66ede274cd4c2b1a425fecb
687
688
  * Unmask the systemd mysql.service if left behind by a mysql-server-5.6
    installation, otherwise the MariaDB service would remain masked too.
689
  * Add gdb to build-deps as suggested in #627208 to get automatic stack traces
690
  * Updated Turkish translation by Atila KOÇ (Closes: #811414)
691

Otto Kekäläinen's avatar
Otto Kekäläinen committed
692
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 23 Jan 2016 23:07:15 +0200
693

694
695
mariadb-10.0 (10.0.23-1) unstable; urgency=low

696
697
698
  * New upstream release 10.0.23. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-2047
699
700
    - CVE-2016-0651
    - CVE-2016-0642
701
702
703
704
705
706
707
708
709
710
    - CVE-2016-0616
    - CVE-2016-0609
    - CVE-2016-0608
    - CVE-2016-0606
    - CVE-2016-0600
    - CVE-2016-0598
    - CVE-2016-0597
    - CVE-2016-0596
    - CVE-2016-0546
    - CVE-2016-0505
711
  * Ignore test suite exit code on unstable platforms (mips, mipsel)
712
713
  * Update TokuDB plugin install and copyright paths to match latest
    release done under Percona ownership
714
715
716

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 20 Dec 2015 14:18:33 +0200

717
mariadb-10.0 (10.0.22-6) unstable; urgency=low
718

719
  * Add patches to make passwordless root login default on all new
720
721
722
    installs in all situations. Make auth_socket a built-in plugin.
  * Clean up previous passwordless root implementation so that it
    applies only to new installs and existing databases continue
723
    to operate with the passwords defined in their user tables
724
725
  * As disabled.def intrepreted test names in a special way, switch
    back to using --skip-test-list option
726
727
  * Make the watch file to make it better suited for the
    git-buildpackage workflow and remove call to uupdate
728

729
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 19 Dec 2015 22:28:23 +0200
730

731
732
733
734
735
736
737
mariadb-10.0 (10.0.22-5) unstable; urgency=low

  * Fix non-working path of unstable-test in d/rules
  * Add unstable test for amd64 to fix reproducible builds

 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 17 Dec 2015 13:31:56 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
738
739
740
741
742
743
mariadb-10.0 (10.0.22-4) unstable; urgency=low

  * Upload to unstable

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 14 Dec 2015 00:49:14 +0200

744
745
746
747
748
749
mariadb-10.0 (10.0.22-4~exp1) experimental; urgency=low

  * Rewrite unstable tests section in d/rules that was not working

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 13 Dec 2015 21:36:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
750
mariadb-10.0 (10.0.22-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
751
752

  * Fix typo in d/rules
753
  * Extend list of unstable tests for arch mips, mipsel64 and alpha
Otto Kekäläinen's avatar
Otto Kekäläinen committed
754

Otto Kekäläinen's avatar
Otto Kekäläinen committed
755
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 11 Dec 2015 21:57:23 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
756

757
mariadb-10.0 (10.0.22-2) unstable; urgency=low
758
759

  * Escape d/rules file correctly to avoid parse error.
760
  * Remove patches/os_sync_Free patch that is not intended for production use.
761
762
763

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 20 Nov 2015 23:11:09 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
764
mariadb-10.0 (10.0.22-2~exp2) experimental; urgency=low
765

766
  [ Alexander Barkov ]
Otto Kekäläinen's avatar
Otto Kekäläinen committed
767
768
  * Backport patch from upstream to fix MDEV-9091: mysqld crashes on shutdown
    after running TokuDB tests on Ubuntu
Otto Kekäläinen's avatar
Otto Kekäläinen committed
769
770
  * Backport patch from upstream to fix MDEV-8692: prefschema test failures

771
  [ Otto Kekäläinen ]
772
773
  * Replace old 'make test' structure with direct call on mysql-test-run and
    parallelize the test suite run in the Debian build.
774
  * Print in build log env info to help debug builds on different platforms.
775
  * Keep a list of unstable tests that are to be skipped on official builds.
776
777
778

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 22:08:49 +0200

779
mariadb-10.0 (10.0.22-2~exp1) experimental; urgency=low
780
781

  * Add diagnostics to find out the problem in os_sync_free()
782
783
  * Backport fix for TokuDB crashes in build tests on Launchpad
    and enable TokuDB builds
784

785
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 08:54:05 +0200
786

787
mariadb-10.0 (10.0.22-1) unstable; urgency=low
788

789
  [ Otto Kekäläinen ]
790
791
  * New upstream release. Includes fixes for the following security
    vulnerabilities (Closes: #802874):
792
    - CVE-2016-0610
793
    - CVE-2016-3471
794
    - CVE-2015-7744
795
796
797
798
799
800
801
802
803
804
805
806
    - CVE-2015-4802
    - CVE-2015-4807
    - CVE-2015-4815
    - CVE-2015-4826
    - CVE-2015-4830
    - CVE-2015-4836
    - CVE-2015-4858
    - CVE-2015-4861
    - CVE-2015-4870
    - CVE-2015-4913
    - CVE-2015-4792
  * New release includes updated man pages (Closes: #779992)
807
  * Update the most recent patches with proper DEP-3 compliant headers
808
  * Add CVE IDs to previous changelog entries
809

810
811
812
  [ Jean Weisbuch ]
  * Update mysqlreport to version 4.0

813
814
815
  [ Otto Kekäläinen ]

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 30 Oct 2015 11:42:30 +0200
816

Otto Kekäläinen's avatar
Otto Kekäläinen committed
817
mariadb-10.0 (10.0.21-3) unstable; urgency=low
818
819

  * Updated Brazilian Portuguese translation (Closes: #798048)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
820
821
  * Upload 10.0.21 and all changes tested initially in experimental
    to unstable. Now sensible as mysql-5.6 has entered testing.
822

Otto Kekäläinen's avatar
Otto Kekäläinen committed
823
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 18 Sep 2015 23:04:53 +0300
824

Otto Kekäläinen's avatar
Otto Kekäläinen committed
825
mariadb-10.0 (10.0.21-2) experimental; urgency=low
826
827

  * Update gdb.conf to have tags signed by default
828
  * Add CVE IDs to previous changelog entries
829
  * Pass DEB_BUILD_ARCH to CMake options to enhance buils on some platforms
830
  * Test suite failures are now fatal on all platforms and not ignored anywhere
831
  * Revert most of commit 579282f and re-enable Mroonga
832
833
834

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 26 Aug 2015 18:20:54 +0300

Tobias Frost's avatar
Tobias Frost committed
835
mariadb-10.0 (10.0.21-1) experimental; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
836

837
  [ Otto Kekäläinen ]
838
  * Created libmariadbd18 and moved .so file from libmariadbd-dev there
839
  * Reproducible build improvement: Add LC_ALL=C to mysql.sym sort command
840
  * New upstream release.
841
842
    - Upstream added skip_log_error to mysqld_safe config (Closes: #781945)
    - Diffie-Helman modulus increased to 2048-bits (Closes: #788905)
843
844
845
846
847
  * New upstream release fixes the following security vulnerabilities:
    - CVE-2015-4816
    - CVE-2015-4819
    - CVE-2015-4879
    - CVE-2015-4895
848
849
850
851
  * Split mariadb-test-data-10.0 out of the main test package. This will save
    disk space in Debian archives as the arch independent data files are
    in one single package that can be used on all platforms and the package
    that is built on multiple platform shrinks significantly.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
852

853
854
855
856
857
858
859
  [ Jean Weisbuch ]
  * The MYCHECK_RCPT variable can now be set from the default file.
  * The check_for_crashed_tables() function on the debian-start script has been
    fixed to be able to log (and email) the errors it encountered : Errors are
    sent to stderr by the CLI while only stdout was captured by the function.
  * The same function now also checks Aria tables along with MyISAM ones.

Tobias Frost's avatar
Tobias Frost committed
860
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 13 Aug 2015 10:08:38 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
861

862
mariadb-10.0 (10.0.20-3) unstable; urgency=medium
863
864
865
866

  [ Andreas Beckmann ]
  * mariadb-common: Depend on a version of mysql-common that ships
    /usr/share/mysql-common/configure-symlinks.  (Closes: #787533)
867
  * mariadb-common.postinst: Drop fallback my.cnf symlink management.
868
  * mariadb-common.preinst: Clean up my.cnf/my.cnf.old from the fallback.
869

Otto Kekäläinen's avatar
Otto Kekäläinen committed
870
  [ Otto Kekäläinen ]
871
872
873
874
  * Clean up old cruft from rules file after review by Sergei Golubchik
  * Unified config file layout with upstream .cnf layout
  * Recover mysql-upgrade dir/link handlig wrongly removed in f7caa041db
  * Minor Lintian and documentation fixes
875
  * Switch 'nm -n' to 'nm --defined-only' to improve reproducible builds
Otto Kekäläinen's avatar
Otto Kekäläinen committed
876
877
878
879
880
881
882
883
884
885

  [ Olaf van der Spek ]
  * Minor spell checking (Closes: #792123)

  [ Israel Tsadok ]
  * Fix mariadb-server-10.0.preinst script that failed to save a new
    /var/lib/mysql-upgrade/DATADIR.link if a previous DATADIR.link existed and
    the /var/lib/mysql directory was a symbolic link with an absolute path
    as target (Closes: #792918)

886
  [ Jean Weisbuch ]
887
888
  * Added a Debian default file for the mariadb-server-10.0 package which allows
    one to set the MYSQLD_STARTUP_TIMEOUT variable used in the init script
889

890
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 24 Jul 2015 23:00:00 +0300
891

Otto Kekäläinen's avatar
Otto Kekäläinen committed
892
893
894
mariadb-10.0 (10.0.20-2) unstable; urgency=low

  * Fix bash test logic in postinstall (Closes: #789589)
895
896
  * Add extra sort in d/rules mysqld.sym.gz command to satisfy Debian
    reproducible build requirements
897
  * Switch to utf8mb4 as default character set
Otto Kekäläinen's avatar
Otto Kekäläinen committed
898
899
900

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 03 Jul 2015 17:11:01 +0300

901
902
mariadb-10.0 (10.0.20-1) unstable; urgency=low

903
904
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
905
906
907
908
    - CVE-2015-2582
    - CVE-2015-2620
    - CVE-2015-2643
    - CVE-2015-2648
909
910
911
912
    - CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
      MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
      together with --ssl will ensure that the established connection is
      SSL-encrypted and the MariaDB server has a valid certificate.
913
    - CVE-2015-4752
914
    - CVE-2015-4864
Otto Kekäläinen's avatar
Otto Kekäläinen committed
915
  * New release includes fix for memory corruption on arm64 (Closes: #787221)
916
  * Added patch to enhance build reproducibility regarding the file INFO_BIN
917
918
919

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 19 Jun 2015 13:01:56 +0300

920
921
mariadb-10.0 (10.0.19-1) unstable; urgency=low

922
  * New upstream release. Fixed the server crash caused by mysql_upgrade
923
924
925
926
927
    (MDEV-8115).
  * Upload to unstable from master branch as Jessie is not released.

 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 09 May 2015 22:24:03 +0300

928
mariadb-10.0 (10.0.18-1~exp1) experimental; urgency=low
929

930
931
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
932
    - CVE-2015-4866
933
934
935
936
937
938
939
940
    - CVE-2014-8964 bundled PCRE contained heap-based buffer overflow
      vulnerability that allowed the server to crash or have other unspecified
      impact via a crafted regular expression made possible with the
      REGEXP_SUBSTR function (MDEV-8006).
    - CVE-2015-0501
    - CVE-2015-2571
    - CVE-2015-0505
    - CVE-2015-0499
941
    - CVE-2015-4757
942
    - CVE-2015-4866
943
  * Cleanup in d/copyright
944
945
  * Make the mariadb-common depends versioned to guarantee that latest
    config files are installed
946

947
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 07 May 2015 23:21:20 +0300
948

949
mariadb-10.0 (10.0.17-1~exp2) experimental; urgency=low
950
951
952

  * d/control: Related to innochecksum manpage move, also break/replace
    the mysql-client-5.5/6 packages (Closes: #779873)
953
954
955
  * Add automatic fallback to the new /etc/mysql/my.cnf management scheme
    for cases where mysql-common/configure-symlinks is not yet available
    and users complain the installation ends up broken.
956
  * New release confirmed to build with GCC-5 (Closes: #777996)
957
958
959

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 06 Mar 2015 16:42:21 +0200

960
mariadb-10.0 (10.0.17-1~exp1) experimental; urgency=low
961

962
963
964
965
966
967
  [ Jan Wagner ]
  * Adding mysqld_multi.server_lsb-header.patch, provides LSB headers for
    example initscript (Closes: #778762)
  * Adding mysqld_multi_confd.patch, makes mysqld_multi reading conf.d
    (Closes: #778761)

968
  [ Robie Basak ]
969
970
  * Move innochecksum back to mariadb-server-core-10.0 to align with other
    variants (LP: #1421520).
971
  * Fix typo in mariadb-server-10.0.postinst.
Robie Basak's avatar
Robie Basak committed
972
  * Fix typo in postinst mktemp call (LP: #1420831).
973

974
975
976
977
978
  [ Arnaud Fontaine ]
  * d/control: innochecksum manpage has been moved to mariadb-client-10.0 in
    10.0.13-1 (ba97056), thus add Breaks/Replaces in mariadb-client-10.0
    against mariadb-server-10.0 << 10.0.13-1~.

979
  [ Otto Kekäläinen ]
980
  * Follow to new /etc/mysql/my.cnf management scheme
981
982
983
  * Remove the my.cnf move command as it increases complexity too much and might
    emit an error code if mariadb-common is upgraded before mysql-common is.
  * Add patch to enhance build reproducibility
984
985
  * Remove /var/log/mysql.log from logrotate. Everything should be inside
    the mysql directory (/var/log/mysql/) and not directly on plain /var/log
986
987
988
989
990
991
  * New upstream release. Includes fixes for the following security
    vulnerabilities (changelog updated post release):
    - CVE-2015-2568
    - CVE-2015-2573
    - CVE-2015-0433
    - CVE-2015-0441
992

993
 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 02 Mar 2015 20:01:13 +0200
994

995
996
997
mariadb-10.0 (10.0.16-1~exp3) experimental; urgency=low

  * Update the mail.ssl test to match new cacert.pem
998
999
1000
  * Stop asking and setting a database root user password. Instead enable
    the auth_socket plugin and let unix user root access MariaDB without
    a separate password. Admins using sudo or cron scripts can use the