changelog 43.6 KB
Newer Older
1
mariadb-10.1 (10.1.34-0+deb9u1) stretch-security; urgency=medium
2
3

  [ Otto Kekäläinen ]
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
  * SECURITY UPDATE: New upstream release 10.1.34. Includes fixes for
    the security vulnerabilities from previous releases.
  * Previous upstream version 10.1.33 included fixes for the following
    security vulnerabilities:
    - CVE-2018-2819
    - CVE-2018-2817
    - CVE-2018-2813
    - CVE-2018-2787
    - CVE-2018-2784
    - CVE-2018-2782
    - CVE-2018-2781
    - CVE-2018-2771
    - CVE-2018-2766
    - CVE-2018-2761
    - CVE-2018-2755
  * Previous upstream version 10.1.31 included fixes for the following
    security vulnerabilities:
    - CVE-2018-2668
    - CVE-2018-2665
    - CVE-2018-2640
    - CVE-2018-2622
    - CVE-2018-2612
    - CVE-2018-2562
27
28
29
30
31
  * Revert "Update d/gbp.conf to track stretch branches"
  * New upstream version 10.1.30. Includes fixes for the following
    security vulnerabilities (Closes: #885345):
    - CVE-2017-15365
  * Amend previous Debian changelog entries to contain new CVE identifiers
32
  * Refresh patches for MariaDB 10.1.30 and again for .34
33
34
35
  * Delete unnecessary systemd files introduced by upstream
  * Add new files introduced by upstream to correct packages
  * Use list-missing instead of fail in d/rules so builds pass
36
37

  [ Ondřej Surý ]
38
39
40
41
42
  * New upstream version 10.1.29. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-10378
    - CVE-2017-10268
    - MDEV-13819
43
44
45
46
47
48
49
50
51
52
53
54
  * Add libconfig-inifiles-perl to mariadb-client-10.1 depends to fix
    mytop
  * Add mips64el to the list of platforms that are allowed to fail test
    suite
  * Handle new and/or missing files
  * Ignore failed tests on more non-release platforms (kfreebsd-i386,
    kfreebsd-amd64 and sparc64)
  * Rebase patches for MariaDB 10.1.29

  [ Christian Ehrhardt ]
  * d/t/upstream: skip func_regexp_pcre on s390x

55
56
  [ Vicentiu Ciorbaru ]
  * Fix Mroonga compilation failure on arm64
57
58
  * Extend libmariadbclient-rename.patch to cover TokuDB as well
  * Disable disks.disks test
59

60
 -- Otto Kekäläinen <otto@debian.org>  Thu, 02 Aug 2018 16:21:46 +0800
61

Ondrej Sury's avatar
Ondrej Sury committed
62
mariadb-10.1 (10.1.26-0+deb9u1) stretch-security; urgency=high
Ondrej Sury's avatar
Ondrej Sury committed
63
64
65

  * New upstream version 10.1.26.  Includes fixes for the following
    security vulnerabilities:
66
67
68
    - CVE-2017-10384
    - CVE-2017-10379
    - CVE-2017-10286
Ondrej Sury's avatar
Ondrej Sury committed
69
70
71
72
73
74
75
76
77
78
79
80
    - CVE-2017-3636
    - CVE-2017-3641
    - CVE-2017-3653
  * Explicitly add dh_systemd_start snippets to mariadb-server-10.1
    because it's all messed up with different name for sysvinit ('mysql')
    and systemd ('mariadb') (Closes: #865870)
  * gbp.conf: Ignore upstream debian/ directory when importing upstream
    tarball
  * Refresh patches on top of MariaDB 10.1.26

 -- Ondřej Surý <ondrej@debian.org>  Thu, 10 Aug 2017 21:07:44 +0200

Ondrej Sury's avatar
Ondrej Sury committed
81
82
83
84
85
86
87
mariadb-10.1 (10.1.25-0+deb9u1) stretch; urgency=medium

  * New upstream version 10.1.25
  * Update quilt patches on top of mariadb-10.1.25 release

 -- Ondřej Surý <ondrej@debian.org>  Thu, 20 Jul 2017 09:35:41 +0200

Ondrej Sury's avatar
Ondrej Sury committed
88
89
90
91
92
93
94
mariadb-10.1 (10.1.24-0+deb9u2) stretch; urgency=medium

  * Run invoke-rc.d mysql maintscript snippets only when running under
    sysvinit (Closes: #864593)

 -- Ondřej Surý <ondrej@debian.org>  Wed, 21 Jun 2017 11:11:53 +0200

Ondrej Sury's avatar
Ondrej Sury committed
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
mariadb-10.1 (10.1.24-0+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * New upstream version 10.1.24
  * Update d/gbp.conf to track stretch branches
  * Refresh patches on top of MariaDB 10.1.24
  * Add cracklib-runtime to Build-Depends to fix FTBFS
  * Merge mytop script improvements from src:mytop package (Original
    patches by Philipp Matthias Hahn, Werner Detter, Olaf van der Spek,
    and Steffen Zieger) (Closes: #864762)
  * Add @SYSTEMD_EXECSTARTPOST@ replacement token to mariadb@.service, so
    the /var/run/mysqld directory is created even for multi-server setup
    (Closes: #865083)

  [ Andreas Beckmann ]
  * Fix FTBFS on 32-bit mips*

  [ James Cowgill ]
  * Update C11 atomics to have correct semantics (Closes: #864774)
  * Disable jemalloc on mips*. (Closes: #864340)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 19 Jun 2017 10:19:37 +0200

118
119
120
121
122
123
124
125
mariadb-10.1 (10.1.23-9+deb9u1) stretch; urgency=medium

  [ Ondřej Surý ]
  * Add Breaks: cqrlog (<< 1.9.0-5~) to ensure correct upgrade order
    (Closes: #864159)

 -- Andreas Beckmann <anbe@debian.org>  Wed, 07 Jun 2017 21:11:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
126
127
128
129
130
131
132
mariadb-10.1 (10.1.23-9) unstable; urgency=medium

  * Fix the invalid location of insserv configuration snippet
    (Thanks Michael Biebl for catching that)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 26 May 2017 09:26:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
133
134
135
136
137
138
139
mariadb-10.1 (10.1.23-8) unstable; urgency=medium

  * Use /etc/insserv.conf.d/mariadb to provide $database system facility
    (Closes: #862447)

 -- Ondřej Surý <ondrej@debian.org>  Sat, 13 May 2017 11:08:43 +0200

Ondrej Sury's avatar
Ondrej Sury committed
140
141
142
143
144
145
146
mariadb-10.1 (10.1.23-7) unstable; urgency=medium

  * Remove hard Breaks/Replaces with mysql-server and mysql-client
  * Move virtual packages from Breaks to Conflicts (Debian Policy 7.6.2)

 -- Ondřej Surý <ondrej@debian.org>  Fri, 12 May 2017 12:21:33 +0200

Ondrej Sury's avatar
Ondrej Sury committed
147
148
149
150
151
152
mariadb-10.1 (10.1.23-6) unstable; urgency=medium

  * Also fix the same assertion failure in xtradb (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 19:51:47 +0200

Ondrej Sury's avatar
Ondrej Sury committed
153
154
155
156
157
158
159
mariadb-10.1 (10.1.23-5) unstable; urgency=medium

  * Add upstream patch to fix assertion failure in InnoDB storage engine
    (Closes: #862103)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 17:21:55 +0200

Ondrej Sury's avatar
Ondrej Sury committed
160
161
162
163
164
165
mariadb-10.1 (10.1.23-4) unstable; urgency=medium

  * Properly declare conflict on mytop (Closes: #861913)

 -- Ondřej Surý <ondrej@debian.org>  Mon, 08 May 2017 11:31:13 +0200

Ondrej Sury's avatar
Ondrej Sury committed
166
167
168
169
170
171
172
mariadb-10.1 (10.1.23-3) unstable; urgency=medium

  * Remove two internal symbols (ll2str and longlong2str) from
    kfrebsd-amd64 symbols file

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 13:19:00 +0200

Ondrej Sury's avatar
Ondrej Sury committed
173
174
175
176
177
178
179
mariadb-10.1 (10.1.23-2) unstable; urgency=medium

  * Add CVE list for 10.1.23 release
  * Fix FTBFS on kfrebsd-any due missing .service files

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 10:55:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
180
181
mariadb-10.1 (10.1.23-1) unstable; urgency=medium

Ondrej Sury's avatar
Ondrej Sury committed
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
  * New upstream version 10.1.23, includes fixes for the following
    security vulnerabilities:
   - [CVE-2017-3302]: use-after-free in C client library for MySQL
   - [CVE-2017-3313]: unauthorized (local) access to critical data or
     complete access to all MySQL Server accessible data
   - [CVE-2017-3308]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3309]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3453]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3456]: unauthorized (network) ability to cause a hang or
     frequently repeatable crash
   - [CVE-2017-3464]: unauthorized update, insert or delete access to some
     of MySQL Server accessible data
Ondrej Sury's avatar
Ondrej Sury committed
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
  * Refresh debian/patches on top of MariaDB 10.1.23 release
  * debian/gbp.conf: Filter most common cruft in the orig tarball
  * debian/rules: Use --fail-missing to catch extra upstream files
  * debian/*.manpages: Merge into debian/*.install
  * debian/*.install: Add few missing binaries into various packages
  * Declare mariadb-plugin-tokudb as available only on (linux-)amd64
    to fix FTBFS on kfreebsd-amd64
  * Remove the extra sanity check as it is already there via standard
    dh_installinit (|| exit 0) (Closes: #861782)
  * Stop /usr/sbin/mysqld in prerm script even with systemd
  * Move mariadb.pc into proper multiarch directory (Closes: #852621)
  * Add libarchive-dev needed by mariabackup to Build-Depends
  * debian/control: run wrap-and-sort -a
  * Move mysql_install_db from mariadb-server-10.1 to
    mariadb-server-core-10.1 (Closes: #840646)
  * Add Provides: $database to mysql.init - this partially addresses
    #852776
  * Call dh_systemd_start with --no-restart-after-upgrade
    (Closes: #853137)
  * d/rules: Remove dh_prep override (legacy cruft)

 -- Ondřej Surý <ondrej@debian.org>  Thu, 04 May 2017 07:23:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
220
221
222
223
224
225
226
mariadb-10.1 (10.1.22-4) unstable; urgency=medium

  * Fix small typo in d/rules that caused MySQL version suffix to not
    contain information about Debian build

 -- Ondřej Surý <ondrej@debian.org>  Sat, 29 Apr 2017 21:56:23 +0200

Ondrej Sury's avatar
Ondrej Sury committed
227
228
229
230
231
232
233
234
235
236
mariadb-10.1 (10.1.22-3) unstable; urgency=medium

  * Use pidof instead of pgrep, so we don't have to depend on procps
  * Stop stopping mariadb server that many times and just add a simple
    check to preinst that it has been really stopped (Closes: #852495)
  * Fix small typo in gettid patch
  * Disable TokuDB on kfreebsd-amd64

 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:06 +0200

Ondrej Sury's avatar
Ondrej Sury committed
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
mariadb-10.1 (10.1.22-2) unstable; urgency=medium

  [ Ondřej Surý ]
  * Add correct kfreebsd-i386 symbols file (but this needs to be fixed in
    how upstream uses linker)
  * Update italian translation (Closes: #858300)

  [ Otto Kekäläinen ]
  * Add Vietnamese translation by Trn Ngc Quân
  * Add Finnish translation by Antti Järvinen

  [ Ondřej Surý ]
  * Disable test suite on hppa, don't fail test suite on more unstable
    platforms: alpha, powerpc, and x32
  * Add swedish debconf translation (Closes: #858536)
  * Add Catalan debconf translation (Closes: #858632)
  * Use thr_self() as gettid implementation onf __FreeBSD_kernel__
  * Make mariadb-server-10.1 installable on kFreeBSD and Hurd (Closes: #851687)
  * Update Turkish debconf translation (Closes: #858340)
  * Disable specific tests on hppa to make the build succeed (Courtesy of
    John David Anglin) (Closes: #858869)

Ondrej Sury's avatar
Ondrej Sury committed
259
 -- Ondřej Surý <ondrej@debian.org>  Tue, 28 Mar 2017 22:59:01 +0200
Ondrej Sury's avatar
Ondrej Sury committed
260

261
mariadb-10.1 (10.1.22-1) unstable; urgency=high
262

Ondrej Sury's avatar
Ondrej Sury committed
263
  [ Otto Kekäläinen ]
264
265
266
267
268
269
270
  * New upstream release 10.1.22. Includes fixes for the following
    security vulnerabilities:
    - CVE-2017-3313
    - CVE-2017-3302
  * New upstream also includes fix to logrotate so that it no longer
    risks interrupting binary/relay log processing on the server.
    https://github.com/MariaDB/server/commit/156cf86defdc59353f37f6
Ondrej Sury's avatar
Ondrej Sury committed
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
  * Add a NEWS.Debian item with same contents as the Stretch release notes

  [ Ondřej Surý ]
  * Add myself to Uploaders
  * Use https URI for Homepage
  * Use /usr/share/dpkg/default.mk to define dpkg-architecture and other
    build variables
  * Install and use non-versioned symbols files for kFreeBSD and Hurd
    architectures
  * Make mysql_config and mariadb.pc return -lmariadbclient instead of
    missing -lmysqlclient
  * Add mysqlclient.pc -> mariadb.pc symlink into
    libmariadbclient-dev-compat package
  * MDEV-11884: Fix logrotate failing if mysqld is not running (Closes: #830976)

 -- Ondřej Surý <ondrej@debian.org>  Sun, 19 Mar 2017 15:23:26 +0100
287

Otto Kekäläinen's avatar
Otto Kekäläinen committed
288
289
mariadb-10.1 (10.1.21-5) unstable; urgency=low

290
291
292
293
294
295
  [ James Clarke ]
  * Make debian/mariadb-server-10.1.install executable (Closes: #852728)
  * Allow mariadb-plugin-tokudb/mroonga on non-linux and non-release arches
  * Detect whether libatomic is needed rather than hard-coding for mips
  * Use host architecture, not build architecture, and clean up variables
  * General clean-up in d/rules
Otto Kekäläinen's avatar
Otto Kekäläinen committed
296

297
 -- Otto Kekäläinen <otto@debian.org>  Fri, 27 Jan 2017 20:42:36 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
298

299
300
301
302
303
304
mariadb-10.1 (10.1.21-4) unstable; urgency=low

  * Hotfix to full build failure: Add missing galera_new_cluster.1 to patch

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 23:33:32 +0200

305
mariadb-10.1 (10.1.21-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
306

307
308
  [ Ian Gilfillan ]
  * Extend WSREP and Galera man pages patch to cover all commands
Otto Kekäläinen's avatar
Otto Kekäläinen committed
309

310
311
312
313
314
315
316
317
  [ Dieter Adriaenssens ]
  * Specify Architecture for mariadb-plugin-mroonga and mariadb-plugin-tokudb 
    (Closes: #852709)

  [ James Clarke ]
  * Fix FTBFS on non-Linux architectures (Closes: #852728)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 26 Jan 2017 22:18:26 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
318

319
mariadb-10.1 (10.1.21-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
320

321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
  [ Otto Kekäläinen ]
  * Implement systemd packaging the Debian way
  * Extend README.Debian regarding new systemd files
  * Add config file comments about SysV init and systemd differences
  * Extend Debian.README with section about mixing with packages MariaDB.org
  * Update /etc/init.d/mysql after comparison with upstream MariaDB 10.1.21
  * Run chown much faster on the datadir during install/update
  * Check if /var/lib/mysql exists before running 'find' on it
  * Skip mysqld stopping if no mysqld process is running at all
  * Update French debconf translation by Baptiste Jammet (Closes: #850066)
  * Remove unnecessary XS-Testsuite field (as instructed by Lintian)
  * Add a modified version of upstream autobake-deb script to utilize CI tools
  * Fix server config example on how to enable SSL with YaSSL (Closes: #851132)
  * Make commands mariadb and mariadbcheck available with symlinks

  [ Jean Weisbuch ]
  * Update Innotop to latest version

  [ Ian Gilfillan ]
  * Add wsrep_* man pages
Otto Kekäläinen's avatar
Otto Kekäläinen committed
341

342
 -- Otto Kekäläinen <otto@debian.org>  Wed, 25 Jan 2017 10:42:45 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
343

344
mariadb-10.1 (10.1.21-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
345

346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities (Closes: #851759, Closes: ##849435):
    - CVE-2017-3318
    - CVE-2017-3317
    - CVE-2017-3312
    - CVE-2017-3291
    - CVE-2017-3265
    - CVE-2017-3258
    - CVE-2017-3257
    - CVE-2017-3244
    - CVE-2017-3243
    - CVE-2017-3238
    - CVE-2016-6664
  * Add new program introduced in upstream 10.1.21: mysqld_safe_helper
  * Deb-CI: remove parameter --skip-ndbcluster not available in 10.1 any more
  * Make libmariadbclient18 depend on mysql-common only (Closes: #850216)
  * Fix misleading config file comment (Closes: #677223)
  * Update preinst variable $this_version from 10.0 to 10.1 (Closes: #851257)

  [ Kristian Nielsen ]
  * Re-implement passwordless root login (Closes: #851131)

 -- Otto Kekäläinen <otto@debian.org>  Thu, 19 Jan 2017 11:33:01 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
370

371
372
373
374
375
376
377
mariadb-10.1 (10.1.20-3) unstable; urgency=low

  [ Vicențiu Ciorbaru ]
  * Update debian rules to also account for mipsel

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 20:23:23 +0200

378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
mariadb-10.1 (10.1.20-2) unstable; urgency=low

  [ Otto Kekäläinen ]
  * Upload to unstable
  * Previous version string should had been ~exp1, thus this
    first upload to unstable is -2 and not -1 as normal
  * Disable test suite temporairly due to false regressions

  [ Dieter Adriaenssens ]
  * fix Vcs-git link format and repo name
  * update 10.0 to 10.1 in README files

  [ Vicențiu Ciorbaru ]
  * Fix mips missing atomics primitives

 -- Otto Kekäläinen <otto@debian.org>  Sat, 24 Dec 2016 09:54:59 +0200

395
mariadb-10.1 (10.1.20-1) experimental; urgency=low
396

397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
  * Upgrade package to new MariaDB 10.1.x series:
    - New upstream release  10.1.20
    - Refresh patches after 10.1.20 import
    - Update strings 10.0 -> 10.1 after importing 10.1.20
    - Refresh patches after 10.1.20 import
    - Update d/control after 10.1 import
    - Use https protected git url in d/control
    - Backwards compatible XS-Testsuite syntax in d/control
    - Import debian/* changes done in upstream 10.1
    - Replace deprecated iproute with iproute2
    - Remove unnecessary dependencies as packages are Essential anyway
    - Remove unnecessary and big file mysql_embedded
    - Switch to 10.1 style build flag for unix socket auth module in d/rules
    - Update d/copyright after 10.1 import
    - Add missing aria_add_gis_sp.sql to mariadb-server-10.1
    - Ship SELinux and AppArmor files with the server, but as inactive
    - New package from upstream 10.1: GSS API (Kerberos) client and server
    - Extend GSSAPI plugin descriptions to satisfy Lintian
    - New plugin from upstream 10.1: Cracklib password validation
416

417
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 22:46:59 +0200
418

419
mariadb-10.0 (10.0.28-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
420

421
422
423
424
425
426
427
428
429
430
431
  [ Otto Kekäläinen ]
  * Move libmariadbd and -dev next to each other for a more logical flow in d/control
  * Move mariadb-test to last in file for a more logical flow in d/control
  * Clean away unused Lintian overrides
  * Add Lintian override for impossible mysql_config multi-arch requirement
  * Update Debian copyright based on the 2016 git log author list
  * Remove unnecessary /var/lib/mysql-upgrade (Closes: #848620)

  [ Vicențiu Ciorbaru ]
  * Fix connect.upd test in armhf
  * Fix mroonga/storage.index_read_multiple_double test in armhf
Otto Kekäläinen's avatar
Otto Kekäläinen committed
432

433
 -- Otto Kekäläinen <otto@debian.org>  Tue, 20 Dec 2016 21:59:47 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
434

435
mariadb-10.0 (10.0.28-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
436

437
438
439
  [ Samuel Thibault ]
  * patches/hurd_socket.patch: Also avoid non-working socket path length check
    on hurd-i386.
440
  * rules: Drop symbols on hurd-i386 too (Closes: #842696).
441

442
443
444
445
446
447
448
449
450
  [ Daniel Black ]
  * Don't install private mysql header files in libmariadbclient-dev

  [ Otto Kekäläinen ]
  * Update libmariadbd18 description and contents to match latest upstream
  * Mark missing Multi-Arch as suggested by Multiarch hinter
  * Move plugins to $ARCH/*/mariadb18 to meet multiarch needs (Closes: #739452)

 -- Otto Kekäläinen <otto@debian.org>  Fri, 11 Nov 2016 22:03:33 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
451

452
mariadb-10.0 (10.0.28-1) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
453

454
455
  [ Vicențiu Ciorbaru ]
  * Fix tokudb jemalloc linking
Otto Kekäläinen's avatar
Otto Kekäläinen committed
456

457
458
459
460
461
462
463
464
465
466
467
468
469
  [ Otto Kekäläinen ]
  * New upstream release 10.0.28. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-8283
    - CVE-2016-7440
    - CVE-2016-6663
    - CVE-2016-5629
    - CVE-2016-5626
    - CVE-2016-5624
    - CVE-2016-5616
    - CVE-2016-5584
    - CVE-2016-3492
  * Drop 4 patches that have been applied upstream.
470
471
  * Delete runnable files from mariadb-test-data as they were only
    needed at build time to generate tests.
472
473

 -- Otto Kekäläinen <otto@debian.org>  Fri, 28 Oct 2016 22:51:14 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
474

475
mariadb-10.0 (10.0.27-2) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
476
477
478
479
480

  [ Dieter Adriaenssens ]
  * Fix typo in README.Contributor
  * Improve documentation on how to clean the build env

481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
  [ James Cowgill ]
  * Mips build and testsuite fixes (Closes: #838557, Closes: #838914)
    - Permit 93 as a valid value of the ENOTEMPTY error in the testsuite
    - Correctly fix mips64 multiplication in taocrypt
    - Ensure groonga is built with libatomic
    - Handle unaligned buffers in connect's TYPBLK class
    - Fix DEFAULT_MACHINE on mips
    - Remove various tests from unstable-tests which now pass on MIPS
    - Update debian/unstable-tests.mips*

  [ Kristian Nielsen ]
  * Fix missing path for perl in autopkgtest (Closes: #809022)
  * Fix test failures on hppa due to wrong enoempty (Closes: #837369)

 -- Otto Kekäläinen <otto@debian.org>  Sun, 02 Oct 2016 09:22:59 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
496

497
498
499
500
501
502
503
504
mariadb-10.0 (10.0.27-1) unstable; urgency=low

  * New upstream release 10.0.27
  * Remove 3 patches after 10.0.27 import as they have been applied
    upstream.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 07 Sep 2016 23:05:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
505
mariadb-10.0 (10.0.26-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
506

Otto Kekäläinen's avatar
Otto Kekäläinen committed
507
508
  [ Dieter Adriaenssens ]
  * Add DEP-12 formatted upstream metadata file (Closes: #808421)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
509

Otto Kekäläinen's avatar
Otto Kekäläinen committed
510
511
512
513
514
515
516
517
518
519
520
521
  [ Vicențiu Ciorbaru ]
  * Update innodb_xtradb patch to introduce memory barrier after lock
  * Fix failing shutdown with gcc v6

  [ Otto Kekäläinen ]
  * Extend commit d5af196 with old name of package libmariadb-dev-compat
  * Extend commit 8d2a7c9 and actually install the tokuftdump man page
  * Update mariadb-test dependencies to include also libmariadbclient18
  * Add path to fix for sporadically failing test main.information_schema_stats
  * d/rules: NUMJOBS must have a default value

 -- Otto Kekäläinen <otto@debian.org>  Wed, 17 Aug 2016 00:31:02 +0300
Otto Kekäläinen's avatar
Otto Kekäläinen committed
522

523
mariadb-10.0 (10.0.26-2) unstable; urgency=low
524
525

  [ Vicențiu Ciorbaru ]
526
  * Add patch to correctly revert changes from 10.0.26 that caused
527
    build failure regression on PPC64el
528

529
530
531
  [ Paul Gevers ]
  * Add autopkg tests for MariaDB 10.0 (Closes: #809022)

532
  [ Axel Beckert ]
533
  * Extend mariadb-server to purge gracefully if datadir is a mountpoint
534
    (Closes: #829491)
535
536
537
538

  [ Ian Gilfillan ]
  * Add a patch to provide a man page for tokuftdump

539
540
541
542
  [ Robie Basak ]
  * Re-add libmariadbclient18 and libmariadbclient-dev
  * Add libmariadbclient-dev-compat package

543
  [ Otto Kekäläinen ]
544
545
546
547
548
549
550
551
  * d/control: libmariadbclient18 must be 'Multi-Arch: same'
  * Make libmariadbclient-dev-compat conflict with libmariadb-dev-compat
    (Closes: #831229)
  * Add libmariadbclient-dev as dependency for libmariadbd-dev
  * Replace hacky sed of libmysqlclient->libmariadbclient with proper patch
  * Update symbols file to match newest libmariadbclient18
  * Updated Danish translation by Joe Hansen (Closes: #830592)
  * Remove mariadb-plugin-cassandra until libthrif-dev lands in unstable
552
  * Make libdbd-mysql-perl and friends Recommends instead of strict Depends
553
    (Closes: #793787)
554
555
556
557
  * Documentation and spelling fixes
  * Remove mysqlbug binary as it is not used for MariaDB
  * Update default config files with more secure TLS examples

558
 -- Otto Kekäläinen <otto@debian.org>  Fri, 29 Jul 2016 21:42:50 +0300
559

Otto Kekäläinen's avatar
Otto Kekäläinen committed
560
561
562
mariadb-10.0 (10.0.26-1) unstable; urgency=low

  * Updated French translation by Baptiste Jammet (Closes: #826879)
563
564
565
566
567
568
569
  * New upstream release 10.0.26. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-5440
    - CVE-2016-3615
    - CVE-2016-3521
    - CVE-2016-3477
  * Updated old changelog entries to include new CVE identifiers.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
570
571
572
573
  * Refresh patches after 10.0.26 import

 -- Otto Kekäläinen <otto@debian.org>  Fri, 24 Jun 2016 17:05:44 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
574
mariadb-10.0 (10.0.25-1) unstable; urgency=low
575

576
  [ Otto Kekäläinen ]
577
  * Revert previous changes tailored for Ubuntu 16.04 compatibility.
578
  * New upstream release 10.0.25. Includes fixes for the following
579
    security vulnerabilities (Closes: #823325):
580
581
582
583
584
    - CVE-2016-0666
    - CVE-2016-0655
    - CVE-2016-0648
    - CVE-2016-0647
    - CVE-2016-0643
585
586
587
    - CVE-2016-5444
    - CVE-2016-3459
    - CVE-2016-3452
588
589
590
  * Updated old changelog entries to include new CVE identifiers.
  * Upstream included changes to logrotate script that supports systems that
    has multiple mysqld processes running (Closes: #810968).
591
  * Updated Dutch translation by Frans Spiesschaert (Closes: #822894).
592
593
  * Updated Spanish translation by Javier Fernández-Sanguino Peña
    (Closes: #823099).
594
  * Updated Russian translation by Yuri Kozlov (Closes: #823422).
595
  * Updated German translation by Chris Leick (Closes: #824487).
596
  * Updated Brazilian Portuguese translation (Closes: #824644).
597
  * Updated Turkish translation by Atila KOÇ (Closes: #825802).
598
  * Add patch to provide passwordless root accounts for test suite.
599
  * Updated Japanese translation by Takuma Yamada (Closes: #825813).
600

601
602
603
  [ Vicențiu Ciorbaru ]
  * Backport upstream MDEV-9479 fix: oqgraph fails to build with boost 1.60

Otto Kekäläinen's avatar
Otto Kekäläinen committed
604
 -- Otto Kekäläinen <otto@debian.org>  Mon, 30 May 2016 22:43:30 +0300
605

606
607
608
609
610
611
612
mariadb-10.0 (10.0.24-7) unstable; urgency=low

  * Temporarily remove mariadb-plugin-cassandra as Debian FTP bot thinks
    it wasn't there before 10.0.24-6 and put the package in the NEW queue.

 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 13:24:28 +0300

Otto Kekäläinen's avatar
Otto Kekäläinen committed
613
mariadb-10.0 (10.0.24-6) unstable; urgency=low
614
615
616

  * Move mysql_embedded from client package to client-core package,
    equally as is in mysql-client-core-5.6 and -5.7 (LP: #1568077).
617
  * Add breaks/replaces for mariadb-client to accommodate the above.
618
619
  * Add conflicts/breaks/replaces for MySQL 5.7 series packages now
    when mysql-5.7 entered the Ubuntu repositories (LP: #1568285).
620
621
622
623
  * Detect properly if there is an incompatible data directory from 5.7,
    save it to another location and initialize a new data directory so that the
    installation can complete properly without leaving dpkg in an inconsistent
    state.
624
625
  * Remove all old passwordless root account lines to close a potential
    security vulnerability (LP: #1561062).
626

Otto Kekäläinen's avatar
Otto Kekäläinen committed
627
 -- Otto Kekäläinen <otto@debian.org>  Wed, 13 Apr 2016 10:56:10 +0300
628

Otto Kekäläinen's avatar
Otto Kekäläinen committed
629
mariadb-10.0 (10.0.24-5) unstable; urgency=low
630
631

  * Disable sporadically failing rpl_binlog_index test on PowerPC.
632
  * Disable another sporadic on amd64 and update all Jira links.
633
  * Fix typo in Mroonga prerm script.
634

Otto Kekäläinen's avatar
Otto Kekäläinen committed
635
 -- Otto Kekäläinen <otto@debian.org>  Sat, 12 Mar 2016 10:08:23 +0200
636

637
mariadb-10.0 (10.0.24-4) unstable; urgency=low
638

639
640
641
642
643
  * Update contributor documentation to match git-buildpackage version in sid.
  * Add libxml and unixOBDC as build-depends for ConnectSE as done by in
    upstream (Closes: #814944).
  * Upload to via NEW as mariadb-10.0 was accidentally removed from Debian
    unstable archives.
644

645
 -- Otto Kekäläinen <otto@debian.org>  Thu, 10 Mar 2016 18:40:51 +0200
646

Otto Kekäläinen's avatar
Otto Kekäläinen committed
647
mariadb-10.0 (10.0.24-3) unstable; urgency=low
648
649

  * Fix typo in rules file about Mroonga control section
650
  * Add main.delayed test exception to more platforms
651
  * Install mysql_embedded man page correctly
652

Otto Kekäläinen's avatar
Otto Kekäläinen committed
653
 -- Otto Kekäläinen <otto@debian.org>  Sun, 06 Mar 2016 22:20:52 +0200
654

Otto Kekäläinen's avatar
Otto Kekäläinen committed
655
mariadb-10.0 (10.0.24-2) unstable; urgency=low
656
657
658

  * Make new plugin packages breaks+replaces mariadb-server-10.0 as
    the files used to reside there (Closes: #815377).
659
660
  * Disable main.delayed that has been confirmed to be a false positive
    caused by built platform resource limits.
661
662
  * Disable multiple s390x tests that only fail on Ubuntu/Launchpad and
    cannot be reproduced anywhere else.
663

Otto Kekäläinen's avatar
Otto Kekäläinen committed
664
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 04 Mar 2016 08:38:25 +0200
665

Otto Kekäläinen's avatar
Otto Kekäläinen committed
666
mariadb-10.0 (10.0.24-1) unstable; urgency=low
667

668
  [ Otto Kekäläinen ]
669
670
671
  * New upstream release 10.0.24
    - Drop auth_socket patches as MDEV-8375 was partially fixed upstream
    - Refresh other patches
672
673
674
675
676
677
678
679
680
  * New upstream release includes fixes for the following security
    vulnerabilities:
    - CVE-2016-0668
    - CVE-2016-0650
    - CVE-2016-0649
    - CVE-2016-0646
    - CVE-2016-0644
    - CVE-2016-0641
    - CVE-2016-0640
681
  * Update filenames in d/copyright
682

683
  [ Ian Gilfillan ]
684
685
  * Add missing mysql_embedded man page

686
687
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 20 Feb 2016 14:23:50 +0200

Arnaud Fontaine's avatar
Arnaud Fontaine committed
688
mariadb-10.0 (10.0.23-3) unstable; urgency=low
689
690

  * Add Lintian overrides for TokuDB sources that indeed need autotools files
691
692
693
694
695
696
  * Split TokuDB, Mroonga, Spider and Cassandra into their own packages and
    start using new naming scheme 'mariadb-plugin-xzy' and rename existing
    Connect and OQGraph packages accordingly (Closes: #773727)
  * There is no need for mariadb-test packages to contain the version in the
    package name, so remove it. It only makes sense to keep the version number
    in the client and server packages, which users actually want to pin to.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
697
  * Update standards version
698
699
700

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 26 Jan 2016 11:34:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
701
mariadb-10.0 (10.0.23-2) unstable; urgency=low
702
703

  * Skip unstable Spider tests on Launchpad s390x builds
704
705
  * Extend install lists with missing files after reviewing the list
    of files produced by the build process
706
  * Update server README.Debian to match current unix socekt authentication
707
  * Lintian fixes and more updates to TokuDB plugin copyright paths
708
709
710
  * Move mysql_upgrade to server core package so that Akonadi and similar
    core package consumers can upgrade the database. Also update control file
    with breaks/replaces to allow smooth upgrades (Closes: #793977).
711
712
  * Update slow_query_log_file configuration syntax to match upstream's. Also
    fixes #677222 in MariaDB packages.
713
  * Rename and install Apport hook correctly
714
  * Remove Taocrypt workaround fixed upstream long since #627208
715
716
  * Removed CFLAGS and CXXFLAGS as suggested by Lars Tangvald and also done
    in mysql-5.6 packaging commit id 16a64e810e28f1d0b66ede274cd4c2b1a425fecb
717
718
  * Unmask the systemd mysql.service if left behind by a mysql-server-5.6
    installation, otherwise the MariaDB service would remain masked too.
719
  * Add gdb to build-deps as suggested in #627208 to get automatic stack traces
720
  * Updated Turkish translation by Atila KOÇ (Closes: #811414)
721

Otto Kekäläinen's avatar
Otto Kekäläinen committed
722
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 23 Jan 2016 23:07:15 +0200
723

724
725
mariadb-10.0 (10.0.23-1) unstable; urgency=low

726
727
728
  * New upstream release 10.0.23. Includes fixes for the following
    security vulnerabilities:
    - CVE-2016-2047
729
730
    - CVE-2016-0651
    - CVE-2016-0642
731
732
733
734
735
736
737
738
739
740
    - CVE-2016-0616
    - CVE-2016-0609
    - CVE-2016-0608
    - CVE-2016-0606
    - CVE-2016-0600
    - CVE-2016-0598
    - CVE-2016-0597
    - CVE-2016-0596
    - CVE-2016-0546
    - CVE-2016-0505
741
  * Ignore test suite exit code on unstable platforms (mips, mipsel)
742
743
  * Update TokuDB plugin install and copyright paths to match latest
    release done under Percona ownership
744
745
746

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 20 Dec 2015 14:18:33 +0200

747
mariadb-10.0 (10.0.22-6) unstable; urgency=low
748

749
  * Add patches to make passwordless root login default on all new
750
751
752
    installs in all situations. Make auth_socket a built-in plugin.
  * Clean up previous passwordless root implementation so that it
    applies only to new installs and existing databases continue
753
    to operate with the passwords defined in their user tables
754
755
  * As disabled.def intrepreted test names in a special way, switch
    back to using --skip-test-list option
756
757
  * Make the watch file to make it better suited for the
    git-buildpackage workflow and remove call to uupdate
758

759
 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 19 Dec 2015 22:28:23 +0200
760

761
762
763
764
765
766
767
mariadb-10.0 (10.0.22-5) unstable; urgency=low

  * Fix non-working path of unstable-test in d/rules
  * Add unstable test for amd64 to fix reproducible builds

 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 17 Dec 2015 13:31:56 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
768
769
770
771
772
773
mariadb-10.0 (10.0.22-4) unstable; urgency=low

  * Upload to unstable

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 14 Dec 2015 00:49:14 +0200

774
775
776
777
778
779
mariadb-10.0 (10.0.22-4~exp1) experimental; urgency=low

  * Rewrite unstable tests section in d/rules that was not working

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 13 Dec 2015 21:36:48 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
780
mariadb-10.0 (10.0.22-3) unstable; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
781
782

  * Fix typo in d/rules
783
  * Extend list of unstable tests for arch mips, mipsel64 and alpha
Otto Kekäläinen's avatar
Otto Kekäläinen committed
784

Otto Kekäläinen's avatar
Otto Kekäläinen committed
785
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 11 Dec 2015 21:57:23 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
786

787
mariadb-10.0 (10.0.22-2) unstable; urgency=low
788
789

  * Escape d/rules file correctly to avoid parse error.
790
  * Remove patches/os_sync_Free patch that is not intended for production use.
791
792
793

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 20 Nov 2015 23:11:09 +0200

Otto Kekäläinen's avatar
Otto Kekäläinen committed
794
mariadb-10.0 (10.0.22-2~exp2) experimental; urgency=low
795

796
  [ Alexander Barkov ]
Otto Kekäläinen's avatar
Otto Kekäläinen committed
797
798
  * Backport patch from upstream to fix MDEV-9091: mysqld crashes on shutdown
    after running TokuDB tests on Ubuntu
Otto Kekäläinen's avatar
Otto Kekäläinen committed
799
800
  * Backport patch from upstream to fix MDEV-8692: prefschema test failures

801
  [ Otto Kekäläinen ]
802
803
  * Replace old 'make test' structure with direct call on mysql-test-run and
    parallelize the test suite run in the Debian build.
804
  * Print in build log env info to help debug builds on different platforms.
805
  * Keep a list of unstable tests that are to be skipped on official builds.
806
807
808

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 22:08:49 +0200

809
mariadb-10.0 (10.0.22-2~exp1) experimental; urgency=low
810
811

  * Add diagnostics to find out the problem in os_sync_free()
812
813
  * Backport fix for TokuDB crashes in build tests on Launchpad
    and enable TokuDB builds
814

815
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 13 Nov 2015 08:54:05 +0200
816

817
mariadb-10.0 (10.0.22-1) unstable; urgency=low
818

819
  [ Otto Kekäläinen ]
820
821
  * New upstream release. Includes fixes for the following security
    vulnerabilities (Closes: #802874):
822
    - CVE-2016-0610
823
    - CVE-2016-3471
824
    - CVE-2015-7744
825
826
827
828
829
830
831
832
833
834
835
836
    - CVE-2015-4802
    - CVE-2015-4807
    - CVE-2015-4815
    - CVE-2015-4826
    - CVE-2015-4830
    - CVE-2015-4836
    - CVE-2015-4858
    - CVE-2015-4861
    - CVE-2015-4870
    - CVE-2015-4913
    - CVE-2015-4792
  * New release includes updated man pages (Closes: #779992)
837
  * Update the most recent patches with proper DEP-3 compliant headers
838
  * Add CVE IDs to previous changelog entries
839

840
841
842
  [ Jean Weisbuch ]
  * Update mysqlreport to version 4.0

843
844
845
  [ Otto Kekäläinen ]

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 30 Oct 2015 11:42:30 +0200
846

Otto Kekäläinen's avatar
Otto Kekäläinen committed
847
mariadb-10.0 (10.0.21-3) unstable; urgency=low
848
849

  * Updated Brazilian Portuguese translation (Closes: #798048)
Otto Kekäläinen's avatar
Otto Kekäläinen committed
850
851
  * Upload 10.0.21 and all changes tested initially in experimental
    to unstable. Now sensible as mysql-5.6 has entered testing.
852

Otto Kekäläinen's avatar
Otto Kekäläinen committed
853
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 18 Sep 2015 23:04:53 +0300
854

Otto Kekäläinen's avatar
Otto Kekäläinen committed
855
mariadb-10.0 (10.0.21-2) experimental; urgency=low
856
857

  * Update gdb.conf to have tags signed by default
858
  * Add CVE IDs to previous changelog entries
859
  * Pass DEB_BUILD_ARCH to CMake options to enhance buils on some platforms
860
  * Test suite failures are now fatal on all platforms and not ignored anywhere
861
  * Revert most of commit 579282f and re-enable Mroonga
862
863
864

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 26 Aug 2015 18:20:54 +0300

Tobias Frost's avatar
Tobias Frost committed
865
mariadb-10.0 (10.0.21-1) experimental; urgency=low
Otto Kekäläinen's avatar
Otto Kekäläinen committed
866

867
  [ Otto Kekäläinen ]
868
  * Created libmariadbd18 and moved .so file from libmariadbd-dev there
869
  * Reproducible build improvement: Add LC_ALL=C to mysql.sym sort command
870
  * New upstream release.
871
872
    - Upstream added skip_log_error to mysqld_safe config (Closes: #781945)
    - Diffie-Helman modulus increased to 2048-bits (Closes: #788905)
873
874
875
876
877
  * New upstream release fixes the following security vulnerabilities:
    - CVE-2015-4816
    - CVE-2015-4819
    - CVE-2015-4879
    - CVE-2015-4895
878
879
880
881
  * Split mariadb-test-data-10.0 out of the main test package. This will save
    disk space in Debian archives as the arch independent data files are
    in one single package that can be used on all platforms and the package
    that is built on multiple platform shrinks significantly.
Otto Kekäläinen's avatar
Otto Kekäläinen committed
882

883
884
885
886
887
888
889
  [ Jean Weisbuch ]
  * The MYCHECK_RCPT variable can now be set from the default file.
  * The check_for_crashed_tables() function on the debian-start script has been
    fixed to be able to log (and email) the errors it encountered : Errors are
    sent to stderr by the CLI while only stdout was captured by the function.
  * The same function now also checks Aria tables along with MyISAM ones.

Tobias Frost's avatar
Tobias Frost committed
890
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 13 Aug 2015 10:08:38 +0200
Otto Kekäläinen's avatar
Otto Kekäläinen committed
891

892
mariadb-10.0 (10.0.20-3) unstable; urgency=medium
893
894
895
896

  [ Andreas Beckmann ]
  * mariadb-common: Depend on a version of mysql-common that ships
    /usr/share/mysql-common/configure-symlinks.  (Closes: #787533)
897
  * mariadb-common.postinst: Drop fallback my.cnf symlink management.
898
  * mariadb-common.preinst: Clean up my.cnf/my.cnf.old from the fallback.
899

Otto Kekäläinen's avatar
Otto Kekäläinen committed
900
  [ Otto Kekäläinen ]
901
902
903
904
  * Clean up old cruft from rules file after review by Sergei Golubchik
  * Unified config file layout with upstream .cnf layout
  * Recover mysql-upgrade dir/link handlig wrongly removed in f7caa041db
  * Minor Lintian and documentation fixes
905
  * Switch 'nm -n' to 'nm --defined-only' to improve reproducible builds
Otto Kekäläinen's avatar
Otto Kekäläinen committed
906
907
908
909
910
911
912
913
914
915

  [ Olaf van der Spek ]
  * Minor spell checking (Closes: #792123)

  [ Israel Tsadok ]
  * Fix mariadb-server-10.0.preinst script that failed to save a new
    /var/lib/mysql-upgrade/DATADIR.link if a previous DATADIR.link existed and
    the /var/lib/mysql directory was a symbolic link with an absolute path
    as target (Closes: #792918)

916
  [ Jean Weisbuch ]
917
918
  * Added a Debian default file for the mariadb-server-10.0 package which allows
    one to set the MYSQLD_STARTUP_TIMEOUT variable used in the init script
919

920
 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 24 Jul 2015 23:00:00 +0300
921

Otto Kekäläinen's avatar
Otto Kekäläinen committed
922
923
924
mariadb-10.0 (10.0.20-2) unstable; urgency=low

  * Fix bash test logic in postinstall (Closes: #789589)
925
926
  * Add extra sort in d/rules mysqld.sym.gz command to satisfy Debian
    reproducible build requirements
927
  * Switch to utf8mb4 as default character set
Otto Kekäläinen's avatar
Otto Kekäläinen committed
928
929
930

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 03 Jul 2015 17:11:01 +0300

931
932
mariadb-10.0 (10.0.20-1) unstable; urgency=low

933
934
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
935
936
937
938
    - CVE-2015-2582
    - CVE-2015-2620
    - CVE-2015-2643
    - CVE-2015-2648
939
940
941
942
    - CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
      MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
      together with --ssl will ensure that the established connection is
      SSL-encrypted and the MariaDB server has a valid certificate.
943
    - CVE-2015-4752
944
    - CVE-2015-4864
Otto Kekäläinen's avatar
Otto Kekäläinen committed
945
  * New release includes fix for memory corruption on arm64 (Closes: #787221)
946
  * Added patch to enhance build reproducibility regarding the file INFO_BIN
947
948
949

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 19 Jun 2015 13:01:56 +0300

950
951
mariadb-10.0 (10.0.19-1) unstable; urgency=low

952
  * New upstream release. Fixed the server crash caused by mysql_upgrade
953
954
955
956
957
    (MDEV-8115).
  * Upload to unstable from master branch as Jessie is not released.

 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 09 May 2015 22:24:03 +0300

958
mariadb-10.0 (10.0.18-1~exp1) experimental; urgency=low
959

960
961
  * New upstream release. Includes fixes for the following security
    vulnerabilities:
962
    - CVE-2015-4866
963
964
965
966
967
968
969
970
    - CVE-2014-8964 bundled PCRE contained heap-based buffer overflow
      vulnerability that allowed the server to crash or have other unspecified
      impact via a crafted regular expression made possible with the
      REGEXP_SUBSTR function (MDEV-8006).
    - CVE-2015-0501
    - CVE-2015-2571
    - CVE-2015-0505
    - CVE-2015-0499
971
    - CVE-2015-4757
972
    - CVE-2015-4866
973
  * Cleanup in d/copyright
974
975
  * Make the mariadb-common depends versioned to guarantee that latest
    config files are installed
976

977
 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 07 May 2015 23:21:20 +0300
978

979
mariadb-10.0 (10.0.17-1~exp2) experimental; urgency=low
980
981
982

  * d/control: Related to innochecksum manpage move, also break/replace
    the mysql-client-5.5/6 packages (Closes: #779873)
983
984
985
  * Add automatic fallback to the new /etc/mysql/my.cnf management scheme
    for cases where mysql-common/configure-symlinks is not yet available
    and users complain the installation ends up broken.
986
  * New release confirmed to build with GCC-5 (Closes: #777996)
987
988
989

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 06 Mar 2015 16:42:21 +0200

990
mariadb-10.0 (10.0.17-1~exp1) experimental; urgency=low
991

992
993
994
995
996
997
  [ Jan Wagner ]
  * Adding mysqld_multi.server_lsb-header.patch, provides LSB headers for
    example initscript (Closes: #778762)
  * Adding mysqld_multi_confd.patch, makes mysqld_multi reading conf.d
    (Closes: #778761)

998
  [ Robie Basak ]
999
1000
  * Move innochecksum back to mariadb-server-core-10.0 to align with other
    variants (LP: #1421520).