[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
This bug was fixed in the package mariadb-10.0 - 10.0.33-0ubuntu0.16.04.1 --- mariadb-10.0 (10.0.33-0ubuntu0.16.04.1) xenial-security; urgency=high [ Otto Kekäläinen ] * SECURITY UPDATE: New upstream release 10.0.33. Includes fixes for the following security vulnerabilities (LP: #1740608): - CVE-2017-10378 - CVE-2017-10268 - MDEV-13819 * Previous release 10.0.32 included included fixes for - CVE-2017-10384 - CVE-2017-10379 - CVE-2017-10286 - CVE-2017-3636 - CVE-2017-3641 - CVE-2017-3653 * Remove InnoDB build failure fix applied upstream -- Otto Kekäläinen Thu, 04 Jan 2018 11:44:00 +0200 ** Changed in: mariadb-10.0 (Ubuntu) Status: New => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10286 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10379 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10384 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3636 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3641 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3653 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
The 10.0 series update for 16.04 is now available. Please use git-buildpackage to fetch and build from the ubuntu-16.04 branch at http://anonscm.debian.org/cgit/pkg- mysql/mariadb-10.0.git/log/?h=ubuntu-16.04 The repository uses pristine-tar, so there is no need to separately download the sources. You can just check the signature/SHA1SUM directly from the git-buildpackage generated tarball. Test builds and testsuite passed on all platforms at https://launchpad.net/~mysql- ubuntu/+archive/ubuntu/mariadb-10.0/+builds?build_text=&build_state=all As a reminder, debdiffs can be browsed directly from the repo like this: https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/diff/debian/?id=ubuntu/10.0.31-0ubuntu0.16.04.1&id2=ubuntu/10.0.29-0ubuntu0.16.04.1 Or in a local clone with 'git diff .. debian/' Security sponsor note these: https://wiki.ubuntu.com/SecurityTeam/PublicationNotes#Sponsoring_MariaDB_Security_Updates -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
Sorry, outdated link. Here is the correct link: https://anonscm.debian.org/cgit/pkg- mysql/mariadb-10.0.git/diff/debian/?id=ubuntu/10.0.33-0ubuntu0.16.04.1&id2=ubuntu/10.0.31-0ubuntu0.16.04.1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
This bug was fixed in the package mariadb-5.5 - 5.5.58-1ubuntu0.14.04.1 --- mariadb-5.5 (5.5.58-1ubuntu0.14.04.1) trusty-security; urgency=high * SECURITY UPDATE: New upstream release 5.5.58. Includes fixes for the following security vulnerabilities (LP: #1740608): - CVE-2017-10378, MDEV-13819 - CVE-2017-10268 * Update previous changelog entries to contain new CVE identifiers * Includes upstream MDEV-13819 server crash fix (LP: #1735876) -- Otto Kekäläinen Sat, 30 Dec 2017 17:55:52 +0200 ** Changed in: mariadb-5.5 (Ubuntu) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
Corrected diff link: https://anonscm.debian.org/cgit/pkg- mysql/mariadb-5.5.git/diff/debian/?id=ubuntu/5.5.58-1ubuntu0.14.04.1&id2=ubuntu/5.5.57-1ubuntu0.14.04.1 The fix for 10.0 is already done, I am only waiting for builds to complete and confirm that all is OK at https://launchpad.net/~mysql- ubuntu/+archive/ubuntu/mariadb-10.0/+builds?build_text=&build_state=all -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
** Also affects: mariadb-10.0 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1740608] Re: USN-3459-1: partially applies to MariaDB too
The 5.5 series update for 14.04 is now available. Please use git-buildpackage to fetch and build from the ubuntu-14.04 branch at http://anonscm.debian.org/cgit/pkg- mysql/mariadb-5.5.git/log/?h=ubuntu-14.04 The repository uses pristine-tar, so there is no need to separately download the sources. You can just check the signature/SHA1SUM directly from the git-buildpackage generated tarball. Test builds and testsuite passed on all platforms at https://launchpad.net/~mysql- ubuntu/+archive/ubuntu/mariadb/+builds?build_text=&build_state=all As a reminder, debdiffs can be browsed directly from the repo like this: https://anonscm.debian.org/cgit/pkg-mysql/mariadb-5.5.git/diff/debian/?id=ubuntu/5.5.58-1ubuntu0.14.04.1&id2=ubuntu/5.5.58-1ubuntu0.14.04.1 Or in a local clone with 'git diff .. debian/' Security sponsor note these: https://wiki.ubuntu.com/SecurityTeam/PublicationNotes#Sponsoring_MariaDB_Security_Updates -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740608 Title: USN-3459-1: partially applies to MariaDB too To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb-5.5/+bug/1740608/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs