Thanks for the security review and the conclusion: > Security team ACK for promoting mariadb to main, given that the apparmor > profile change is reassessed or proper reasoning is provided.
Reviewing AppArmor is tracked in https://bugs.debian.org/cgi- bin/bugreport.cgi?bug=875890. Additionally, I've filed the systemd analyzer score improvement idea as a wishlist item in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1123021. For the RocksDB findings note that they are all inherited from https://github.com/facebook/rocksdb. As none of them are severe, I suggest we file them as a feature request for "security hardening" at https://github.com/facebook/rocksdb/issues. Additionally note that I am also the maintainer of https://salsa.debian.org/debian/rocksdb in Debian. For MariaDB 'main' inclusion, note that the RocksDB storage engine in MariaDB is optional, and in comment #1 above the binary package 'mariadb-plugin-rocksdb' is in the list of what would be excluded from Ubuntu 'main'. ** Bug watch added: Debian Bug tracker #1123021 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1123021 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2122095 Title: [MIR] mariadb To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mariadb/+bug/2122095/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
