New Debian mariadb 1:10.11.14-0+deb12u2 fixes: This update addresses the following issues: * mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) (CVE-2024-21096) * mysql: High Privilege Denial of Service Vulnerability in MySQL Server (CVE-2025-21490) 1:10.11.14-0+deb12u2 (Sat, 30 Aug 2025 10:17:22 -0700) * Fix "MARIADB: unbound variable" warning which was a regression from the preivous version that that the illegal mix of collations fix applied with wrong variable name 1:10.11.14-0+deb12u1 (Tue, 26 Aug 2025 23:27:40 -0700) * New upstream version 10.11.14. Includes fixes for several regressions as noted at https://mariadb.com/kb/en/mariadb-10-11-14-release-notes/ * Update configuration traces to include new upstream system variables: - analyze-max-length (default: 4294967295) - innodb-linux-aio (default: auto) * Suppress new native AIO warning introduced in upstream a87bb96 to avoid mariadb-test-run failing on something that isn't a real issue * New upstream release includes fix for MDEV-36815 that yielded "ERROR 1267 (HY000): Illegal mix of collations" on some systems when restarting the MariaDB service in Debian * Update Lintian overrides for new files in latest upstream version * Salsa CI: Remove Buster, Bullseye-backports and ignore key errors 1:10.11.13-0+deb12u1 (Fri, 23 May 2025 14:26:02 -0700) * New upstream version 10.11.13. Includes fixes for several severe regressions as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/, which were discovered soon after the 10.11.12 release, which was skipped in Debian intentionally. * This release includes upstream version 10.11.12, with fixes for regressions as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ well as security issues, #1105976): - CVE-2023-52969 - CVE-2023-52970 - CVE-2023-52971 - CVE-2025-30693 - CVE-2025-30722 * Drop all RocksDB patches now upstream due to update to version 6.29fb * New upstream version has now CEST as allowed in main.timezone test * New upstream includes systemd service fix for restarts on crashes * New upstream also fixes regression in INSERT SELECT on NOT NULL columns while having BEFORE UPDATE trigger * Revert "Set CAP_IPC_LOCK capability if possible" because of MDEV-36229 * Update configuration traces to have --ssl-verify-server-cert from MDEV-28908 * Update configuration traces to include new upstream system variables: - innodb-buffer-pool-size-auto-min (default: 0) - innodb-buffer-pool-size-max (default: 0) - innodb-log-checkpoint-now (default: FALSE) * Also update configuration traces to match that in 10.11.12 the variables innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised as deprecated. * Fix changelog entry formatting in 1:10.11.11-0+deb12u1 * Salsa CI: Adapt piuparts helper script to new source format in Bookworm
--- mirror/ftp/pool/main/m/mariadb/mariadb_10.11.11-0+deb12u1.dsc +++ apt/ucs_5.2-0-errata5.2-3/source/mariadb_10.11.14-0+deb12u2.dsc @@ -1,3 +1,58 @@ +1:10.11.14-0+deb12u2 [Sat, 30 Aug 2025 10:17:22 -0700] Otto Kekäläinen <otto@debian.org>: + + * Fix "MARIADB: unbound variable" warning which was a regression from the + preivous version that that the illegal mix of collations fix applied with + wrong variable name (Closes: #1112499) + +1:10.11.14-0+deb12u1 [Tue, 26 Aug 2025 23:27:40 -0700] Otto Kekäläinen <otto@debian.org>: + + * New upstream version 10.11.14. Includes fixes for several regressions + as noted at https://mariadb.com/kb/en/mariadb-10-11-14-release-notes/ + * Update configuration traces to include new upstream system variables: + - analyze-max-length (default: 4294967295) + - innodb-linux-aio (default: auto) + * Suppress new native AIO warning introduced in upstream a87bb96 to avoid + mariadb-test-run failing on something that isn't a real issue + * New upstream release includes fix for MDEV-36815 that yielded "ERROR 1267 + (HY000): Illegal mix of collations" on some systems when restarting the + MariaDB service in Debian (Closes: #1104533) + * Update Lintian overrides for new files in latest upstream version + * Salsa CI: Remove Buster, Bullseye-backports and ignore key errors + +1:10.11.13-0+deb12u1 [Fri, 23 May 2025 14:26:02 -0700] Otto Kekäläinen <otto@debian.org>: + + * New upstream version 10.11.13. Includes fixes for several severe regressions + as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/, which + were discovered soon after the 10.11.12 release, which was skipped in Debian + intentionally. + * This release includes upstream version 10.11.12, with fixes for regressions + as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ + well as security issues (Closes: #1100437, #1105976): + - CVE-2023-52969 + - CVE-2023-52970 + - CVE-2023-52971 + - CVE-2025-30693 + - CVE-2025-30722 + * Drop all RocksDB patches now upstream due to update to version 6.29fb + * New upstream version has now CEST as allowed in main.timezone test + (Closes: #1084293) + * New upstream includes systemd service fix for restarts on crashes + (Closes: #1073847) + * New upstream also fixes regression in INSERT SELECT on NOT NULL columns + while having BEFORE UPDATE trigger (Closes: #1099515) + * Revert "Set CAP_IPC_LOCK capability if possible" because of MDEV-36229 + (Closes: #1100575) + * Update configuration traces to have --ssl-verify-server-cert from MDEV-28908 + * Update configuration traces to include new upstream system variables: + - innodb-buffer-pool-size-auto-min (default: 0) + - innodb-buffer-pool-size-max (default: 0) + - innodb-log-checkpoint-now (default: FALSE) + * Also update configuration traces to match that in 10.11.12 the variables + innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised + as deprecated. + * Fix changelog entry formatting in 1:10.11.11-0+deb12u1 + * Salsa CI: Adapt piuparts helper script to new source format in Bookworm + 1:10.11.11-0+deb12u1 [Tue, 18 Feb 2025 16:56:41 -0800] Otto Kekäläinen <otto@debian.org>: [ Otto Kekäläinen ] @@ -27,7 +82,8 @@ unstable in MariaDB 11.4 for a long time, and which are likely needed to avoid occasional shutdown issues, in particular on upgrades (LP: #2034125) in both Debian and Ubuntu - - Make SysV init more verbose in case of MariaDB start failures (Related: #1033234) + - Make SysV init more verbose in case of MariaDB start failures + (Related: #1033234) - Limit check of running mysqld/mariadbd to system users (Closes: #1032047) - When shutting down 'mariadbd', fallback to 'mysqld' * Add Lintian overrides for new upstream documentation JavaScript files <http://piuparts.knut.univention.de/5.2-3/#6801478297053917949>
OK: bug OK: yaml OK: announce_errata OK: patch ~OK: piuparts manual test OK [5.2-3] cb44027399 chore(postgresql-15): update advisory doc/errata/staging/mariadb.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [5.2-3] 82b2421059 Bug #58617: mariadb 1:10.11.14-0+deb12u2 doc/errata/staging/mariadb.yaml | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.2x203>