Hi Otto, On Sat, Sep 03, 2016 at 09:51:02AM +0300, Otto Kekäläinen wrote: > The MariaDB 10.0.26 PowerPC build failure regression was identified > and fixed in commit > https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/commit/?id=de356c12d3ff73a20e65d1cd7756f3370208ccb2 > > This has been fixed also upstream and the new 10.0.27 should build OK > on PowerPC. Now we just need to wait for somebody to publish a CVE > regarding 10.0.27 so if qualitfies for security upload and this this > issue can be closed...
Thanks for investigating the issue with upstream. I think there are three options: 1/ We can afford to wait for the next DSA to fix the issue and leave powerpc users with the previous CVEs unfixed so far. With the next DSA then the fix is included and #832931 can be closed. 2/ We can release a regression update DSA, to fix the issue, since it was introduced with the last DSA, but this means users of other architectures will need to update twice, now again, and then later for a future DSA. 3/ Similar to 2/ but release an update to fix #832931 via the next Jessie point release, which will be soon (cf. [1]). [1] https://lists.debian.org/debian-release/2016/09/msg00025.html Regards, Salvatore
signature.asc
Description: PGP signature