mariadb (1:10.11.13-0ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: New upstream version 10.11.13 includes fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/ and
also the previous upstream version 10.11.13 includes fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ and
also fixes the following security vulnerabilities (LP: #2110070):
- CVE-2023-52969
- CVE-2023-52970
- CVE-2023-52971
- CVE-2025-30693
- CVE-2025-30722
* Fix indentation for changelog entry in 1:10.11.11-0ubuntu0.24.04.1
* Drop all RocksDB patches now upstream due to update to version 6.29fb
* Drop all three patches previously backported to 1:10.11.11-0ubuntu0.24.04.2
now included in upstream release
* Update configuration traces to have --ssl-verify-server-cert from MDEV-28908
* Update configuration traces to include new upstream system variables:
- innodb-buffer-pool-size-auto-min (default: 0)
- innodb-buffer-pool-size-max (default: 0)
- innodb-log-checkpoint-now (default: FALSE)
* Also update configuration traces to match that in 10.11.12 the variables
innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised
as deprecated.
-- Otto Kekäläinen <otto@debian.org> Fri, 23 May 2025 16:20:51 -0700
mariadb (1:10.11.11-0ubuntu0.24.04.2) noble-security; urgency=medium
* Fix building with Clang on RISC-V to unblock the promotion of the
10.11.11 upstate to Ubuntu 24.04 "Noble"
* Backport upstream fix for INSERT SELECT on NOT NULL (Closes: #1099515)
to fix severe regression in 10.11.11
* Add patch to remove unnecessary capabilities from AmbientCapabilities
and revert "Set CAP_IPC_LOCK capability if possible" to mitigate potential
security issue in a change in 10.11.11
-- Otto Kekäläinen <otto@debian.org> Fri, 21 Mar 2025 12:28:06 -0700
mariadb (1:10.11.11-0ubuntu0.24.04.1) noble-security; urgency=medium
[ Otto Kekäläinen ]
* SECURITY UPDATE: New upstream version 10.11.11. Includes fixes for several
defects as noted at https://mariadb.com/kb/en/mariadb-10-11-11-release-notes/
as well the following security issues (LP: #2099785):
- CVE-2025-21490
* This release includes upstream version 10.11.10, with fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-10-release-notes/
* This release includes upstream version 10.11.9, with fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-9-release-notes/
* Update server trace to include new parameters and values
* Add main.having_cond_pushdown to MTR skiplist on s390x
* Skip test main.mysqld--help-aria due to MDEV-34733
* Update configuration traces to match changes done in MDEV-35785
* Update configuration traces with new query allocator values from MDEV-35750
* Update server trace to include new parameters and values. This includes now
MariaDB client parameter 'quick-max-column-width' and new MariaDB Server
parameters 'innodb-log-file-mmap' and 'optimizer-join-limit-pref-ratio'.
Also the parameters 'innodb-lru-flush-size' and
'innodb-purge-rseg-truncate-frequency' seems to have been removed, and
'innodb-purge-batch-size' got a new default value '1000'.
* Include Debian packaging bugfixes done upstream:
- MDEV-35907: debian-start script fails when using non-standard socket path
- Set CAP_IPC_LOCK capability if possible
* Include several restart/shutdown related fixes that have been in Debian
unstable in MariaDB 11.4 for a long time, and which are likely needed to
avoid occasional shutdown issues, in particular on upgrades (LP: #2034125)
in both Debian and Ubuntu
- Make SysV init more verbose in case of MariaDB start failures
(Related: #1033234)
- Limit check of running mysqld/mariadbd to system users (Related: #1032047)
- When shutting down 'mariadbd', fallback to 'mysqld'
* Make d/watch more specific to circumvent bug in .10 vs .11 detection
* Add Lintian overrides for new upstream documentation JavaScript files
* Apply `wrap-and-sort -va` with latest devscripts 2.24.8
* Add NEWS item to explain new `mariadb-dump` option `--sandbox`
[ Phil Dibowitz ]
* Add some info on getting back to passwordless root (Related: #1088133)
[ Joe Bliss ]
* Revert backticks change in commit 0300a915 to be compatible with databases
containing hyphenated table names (LP: #2085554)
-- Otto Kekäläinen <otto@debian.org> Sat, 22 Feb 2025 19:33:49 -0800
mariadb (1:10.11.8-0ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: New upstream version 10.11.8 includes fixes for regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-8-release-notes/ and
also fixes the following security vulnerabilities (LP: #2067125):
- CVE-2024-21096
* Drop multiple patches dropped upstream, and re-import PR#2541 which had been
rebased in the original (and still open) PR.
* Remove libmariadb file no longer present in MariaDB Connector C v3.3
* Update client program 'mariadb' trace to match new libmariadb v3.3
* Update server trace to include new parameters and values
* Note that upstream dropped support for pmem as Red Hat does not support it,
but we continue to use it in Ubuntu
* Also note upstream updated the MariaDB Connector C library (libmariadb)
from v3.2 to 3.3 in this stable maintenance release, but it does not cause
any issues as the soname and list of public symbols continues to be exactly
same as before
-- Otto Kekäläinen <otto@debian.org> Fri, 24 May 2024 19:26:56 -0700
mariadb (1:10.11.7-2ubuntu2) noble; urgency=medium
* No-change rebuild for CVE-2024-3094
-- Steve Langasek <steve.langasek@ubuntu.com> Sun, 31 Mar 2024 20:03:40 +0000
mariadb (1:10.11.7-2ubuntu1) noble; urgency=medium
* Actually remove manual dependencies on libcurl4
-- Julian Andres Klode <juliank@ubuntu.com> Sat, 23 Mar 2024 14:29:00 +0100
mariadb (1:10.11.7-2build2) noble; urgency=medium
* No-change rebuild against libcurl4t64
-- Steve Langasek <steve.langasek@ubuntu.com> Sat, 16 Mar 2024 06:44:55 +0000
mariadb (1:10.11.7-2build1) noble; urgency=medium
* No-change rebuild against libssl3t64
-- Steve Langasek <steve.langasek@ubuntu.com> Mon, 04 Mar 2024 19:58:43 +0000
mariadb (1:10.11.7-2) unstable; urgency=medium
[ Graham Inggs ]
* Rename libraries for 64-bit time_t transition (Closes: #1062841)
[ Otto Kekäläinen ]
* Salsa-CI: Adopt new libmariadbd19t64 library name in CI
* Remove obsolete Lintian override:
package-supports-alternative-init-but-no-init.d-script
* Disable more tests not passing for sparc64 on Debian
* Add patch to fix hurd-i386 build failure (Closes: #1063739)
* Add patch to partially revert upstream c432c9ef (Closes: #1063738)
* Disable table_value_constr failing on armhf on Launchpad
* Backport patch for MDEV-32975 (collation fix for PHP connector)
-- Otto Kekäläinen <otto@debian.org> Fri, 01 Mar 2024 17:43:11 -0800
mariadb (1:10.11.7-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.11.7. Includes fixes for several regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-7-release-notes/
* Add missing ${misc:Depends} to Depends for mariadb-server-10.5
* Re-export upstream signing key without extra signatures
* Remove field Priority on binary package mariadb-server-10.5 that duplicates
source
* Update debian/copyright for 2024
* Delete test plugin pam_mariadb_mtr.so to keep mariadb-test-data clean
* Clean away unused Lintian overrides
* Remove unneeded CMAKE_SYSTEM_PROCESSOR from debian/rules
* Add patch to skip building AUTH_SOCKET on Hurd (Related: #1006531)
* Use Pre-Depends to ensure init-system-helpers is present
[ Michael Biebl ]
* Install PAM module and systemd files into /usr (Closes: #1061348)
* Install .service files via .install and let dh_installinit/dh_systemd
generate the maintscript code
* Switch to dh_installsystemd and debhelper compat 13
-- Otto Kekäläinen <otto@debian.org> Tue, 06 Feb 2024 20:14:49 -0800
mariadb (1:10.11.6-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Make the transitional dummy package description explicit
* Ensure 'clean' target works
* Use upstream patch to fix subselect test regressions (Closes: #1059904)
* Disable innodb_ext_key crashing on ppc64el (Related: #1059904)
* Apply upstream patch to use RDTIME in RISC-V (Closes: #1060007)
-- Otto Kekäläinen <otto@debian.org> Fri, 05 Jan 2024 16:32:12 +0800
mariadb (1:10.11.6-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.11.6. Includes fixes for several severe regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-6-release-notes/ as well
as security issues:
- CVE-2023-22084
* Upstream MariaDB Server 10.11.6 included fix for fmtlib 10 compatibility
(Closes: #1056387)
* Drop STACK_DIRECTION customization as upstream CMake code now handles it
* Update traces to match these changes in MariaDB 10.11.6:
- New option 'ALL' to multiple parameters as a way to define that all
possible values/options are selected
- New variables log-slow-max-warnings, note-verbosity and
optimizer-max-sel-args
- Default value for innodb-purge-batch-size increased to 1000
- Support for TLSv1.1 has been dropped
[ Guillem Jover ]
* Remove tilegx support removed from dpkg 1.22.0 (Closes: #1056748)
-- Otto Kekäläinen <otto@debian.org> Sun, 26 Nov 2023 18:54:33 -0800
mariadb (1:10.11.5-3) unstable; urgency=medium
* Bugfix: Rewrite 0300a91 again to retain original autopkgtest behavior
* Disable more tests not passing on Debian post-build test or Launchpad
* Fix misc spelling
-- Otto Kekäläinen <otto@debian.org> Fri, 13 Oct 2023 21:48:03 -0700
mariadb (1:10.11.5-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Make SysV init more verbose in case of MariaDB start failures
* Test & QA related changes:
* Bugfix: Rewrite 0300a9157cc to retain original autopkgtest behavior
* Switch autopkgtest upstream job to use '--skip-rpl --suite=main' again
* Include type_test.so and others in mariadb-test package
* Revert "Skip upstream MTR run on armel/armhf where lxcfs upgrade broke CPU check"
* Partially revert fc1358087b3 about MDEV-30728 to see if it still occurs
* Remove overrides for test failures that should be fixed now
* Add patch to fix disk.disk{_notembedded} tests and re-enable them
* Disable tests not passing on Debian CI, Salsa CI or Launchpad builds
-- Otto Kekäläinen <otto@debian.org> Sat, 07 Oct 2023 16:00:43 -0700
mariadb (1:10.11.5-1) unstable; urgency=medium
[ Helmut Grohne ]
* Fix FTCBFS: Do not pass host CFLAGS to the native build. (Closes: #1051222)
[ Otto Kekäläinen ]
* New upstream version 10.11.5. Includes fixes for several severe regressions
as noted at https://mariadb.com/kb/en/mariadb-10-11-5-release-notes/ such as
- MDEV-31642: Upgrade may crash if innodb_log_file_buffering=OFF
(Closes: #1040784)
* Update configuration tracing to match what is expected for 10.11.5
* Include trailing slash in watch file to be compatible with latest uscan
* Re-apply "Limit check of running mysqld/mariadbd to system users (Closes: #1032047)"
* Re-apply "Add patches to fix spelling in MariaDB and components (Closes: #1032860)"
* Sync downstream (where applicable) with upstream 10.11 debian/* contents
* Complement upstream commits with more complete mysql->mariadb conversion
* Misc fixes to Debian scripts to satisfy Shellcheck
* Fix blocksize check to use $mysql_datadir/$datadir correctly
* Make sure that datadir always has some value and exists
[ Tuukka Pasanen ]
* MDEV-30951: Fix small perlcritic and enable modern Perl
* Remove usage of AWK from Debian init and postinst scripts
[ Anel Husakovic ]
* MDEV-31358: Update description for MariaDB deb packages
-- Otto Kekäläinen <otto@debian.org> Tue, 03 Oct 2023 20:59:30 -0700
mariadb (1:10.11.4-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.11.4. Includes fixes for several severe regressions,
see details at https://mariadb.com/kb/en/mariadb-10-11-4-release-notes/
[ Andreas Beckmann ]
* Introduce transitional mariadb-server-10.5 (Closes: #1035949)
-- Otto Kekäläinen <otto@debian.org> Sun, 04 Jun 2023 11:22:27 -0700
mariadb (1:10.11.3-1) unstable; urgency=medium
* New upstream version 10.11.3. Includes security fixes for
- CVE-2022-47015 (Closes: #1034889)
* This is the first bug fixing maintenance release from upstream in the 10.11
series as the 10.11.2 release was the first one announced GA (general
availability). For a full list of all bug fixes see release notes at
https://mariadb.com/kb/en/mariadb-10-11-3-release-notes/.
* Update libmariadb3.symbols to include new ABI changes in 3.3.5
and fix DPKG_GENSYMBOLS_CHECK_LEVEL so it actually takes effect and in
build will properly fail if there are unaccounted symbol changes in
future upstream maintenance releases
* Update Lintian overrides after 10.11.3 import
* Use new log_slow_* configuration variable names in configuration examples
to be aligned with upstream and have least amount of surprises for users
of MariaDB 10.11 where these variables changed names
* Clean away unnecessary mariadb-test.links, no functional effect
* Delete all embedded zlib copies to fix crossbuilds and improve security
* Use native zlib to make crossbuilds work again after recent zlib 1.2.13
update regressed crossbuilds
* Revert fixes from February/March 2023 that the Debian release team
deemed unfit/too late for Bookworm (Bug#1033811):
- Revert "Add patch to fix upgrades from MySQL 5.7 to MariaDB 10.11..."
- Revert "Limit check of running mysqld/mariadbd to system users..."
- Revert "MDEV-21303: Fix man page packaging for new mariadb-* named..."
- Revert "Add patches to fix spelling in MariaDB and components..."
- Revert "Add patch to better diagnose failures in main.order_by_innodb..."
- Revert "Add patch to fix misc compiler warnings in upstream build"
- Revert "Add patch to emit warnings if mariadb-upgrade was not run..."
[ Mathias Gibbens ]
* Silence superfluous warnings in mariadb-server preinst (Closes: #1034684)
-- Otto Kekäläinen <otto@debian.org> Sat, 27 May 2023 23:16:42 -0700
mariadb (1:10.11.2-3) unstable; urgency=medium
* Fix typo in autopkgtests configuration-tracing affecting armhf and armel
* Revert: Sync downstream (where applicable) with upstream 10.11 debian/*
contents so that using diff/meld to compare changes are easier
- Revert on suggestion by Debian release managers the changes done by
upstreams devs in https://github.com/MariaDB/server/commit/952af4a1
for MariaDB 10.5.19, 10.6.12, 10.11.2 etc. It was deemed too invasive
for the Debian 12 "Bookworm" release this late in the release cycle.
-- Otto Kekäläinen <otto@debian.org> Thu, 20 Apr 2023 21:48:51 -0700
mariadb (1:10.11.2-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* SUMMARY: This version has a lot of bug fixes, quality fixes, documentation
and translation updates and it is tailored for the Debian 12 "Bookworm"
release and all potentially functional changes have been left out and
are pending review and merge post-Bookworm release at
https://salsa.debian.org/mariadb-team/mariadb-server/-/merge_requests,
where contributions both as reviews and new submissions are welcome!
* Update NEWS to summarize what is new in MariaDB 10.11 (compared to 10.6)
* Update and activate configuration tracing in autopkgtests to ensure that
for the Debian 12 "Bookworm" release cycle no upstream server config change
would slip in unnoticed
* Enable mariadb-plugin-rocksdb for riscv64 (fixes autopkgtests for riscv64)
* Sync downstream (where applicable) with upstream 10.11 debian/* contents
so that using diff/meld to compare changes are easier
* Add important upstream 10.11.2+ fixes as packes:
* Stack overflow in pinbox allocator (PR#2541)
* Upgrades from MySQL 5.7 to MariaDB 10.11 (MDEV-30483) (Closes: #866751)
* Misc compiler warnings in upstream build
* Incomplete stack traces if MariaDB crashes
* Make mariadbd emit warnings if mariadb-upgrade was not run
* Binlog failures due to 'character_set_client' (MDEV-30824)
* Prevent mariadb-test-run from using native I/O on ppc64el and s390x due to
Linux kernel bug (Related: #1031656)
* Add patch to better diagnose potential failures in main.order_by_innodb
* Add patch to fix cross-compilation failure on uca-dump (Closes: #1029165)
* Update mariadb-test-run skip test lists to not run tests that are known
to be broken or unstable, and that have been reported upstream
* Limit check of running mysqld/mariadbd to system users (Closes: #1032047)
* Make error more helpful in case server restart fails (Related: #1033234)
* Update Lintian overrides after rigorous review of all Lintian issues
* Remove incorrect Multi-Arch definitions
* Fix man pages syntax issues (Closes: #1032861)
* Fix spelling in MariaDB and components (Closes: #1032860)
* Refresh patches metadata
* Update upstream signing key
* Fix dependency of obsolete libncurses5-dev
[ Ekaterine Papava ]
* Add Georgian translation (error messages)
[ Tuukka Pasanen ]
* Update README files to correct versions
-- Otto Kekäläinen <otto@debian.org> Sat, 25 Mar 2023 23:26:42 -0700
mariadb (1:10.11.2-1) unstable; urgency=medium
* New upstream release MariaDB 10.11.2 has been announced GA
(general availability) with long-term support and security updates
until spring 2028
* Autopkgetest improvements
- Fix incomplete variable rename in a3b6f3d7f4b
- Extend tracing to include MariaDB client and move traces to subdirectory
-- Otto Kekäläinen <otto@debian.org> Thu, 16 Feb 2023 23:53:02 -0800
mariadb (1:10.11.1-5) unstable; urgency=medium
[ Otto Kekäläinen ]
* Packages mariadb-plugin-provider-* must depend at least on MariaDB 10.11
* Make postinstall check work with more than one result (Closes: #1031244)
* Revert "Compression plugins as Depends for mariadb-server" (Closes: #1031116)
to not break the Cacti autopkgtests and allow the mariadb-10.6 autopkgtest
to fail instead (re-introducing Bug#1031116)
[ Bubu ]
* Update French translation of debconf messages (Closes: #1030581)
[ Adriano Rafael Gomes ]
* Update Brazilian translation of debconf messages (Closes: #1030908)
-- Otto Kekäläinen <otto@debian.org> Wed, 15 Feb 2023 22:57:46 -0800
mariadb (1:10.11.1-4) unstable; urgency=medium
[ Otto Kekäläinen ]
* Have all compression plugins as Depends for mariadb-server (Closes: #1030604)
* Update existing patch with latest upstream PR#2448 version 0284207
* Temporarily disable MTR on s390x as Debian buildd seems unstable
(Related: #1030510)
* Add upstream patch to fix build failure on HPPA (Closes: #1006529)
* Refresh patches and include references to Debian bugs they should fix
[ Gianfranco Costamagna ]
* Drop riscv64 rules latomic hack, use upstream PR#2477 instead
(Related: #1024041)
-- Otto Kekäläinen <otto@debian.org> Thu, 09 Feb 2023 08:40:34 -0800
mariadb (1:10.11.1-3) unstable; urgency=medium
[ Otto Kekäläinen ]
* Customize dh_installinit to keep service enabled (Closes: #1029136)
* Fix alpha compilation error in GPREL16/wsrep_* (Closes: #1024040)
* Skip tests that have bug reports and known to fail on 1:10.11.1-2
* Review and polish autopkgtests
[ Tianyu Chen ]
* Add simplified Chinese translation of debconf messages
-- Otto Kekäläinen <otto@debian.org> Sun, 05 Feb 2023 15:21:04 -0800
mariadb (1:10.11.1-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Add upstream patch for main.explain_json_format_partitions (MDEV-30411)
(Closes: 1029163)
* Fix riscv64 compilation error in RocksDB atomic functions (Closes: #1024041)
* Stop skipping tests that are marked fixed upstream
* Don't ship any mysql-tests/unstable-tests as neither does upstream
* Skip test main.func_json_notembedded on s390x due to MDEV-30518
* Implement configuration tracing as an autopkgtest test
* Drop obsolete dependency on package lsb-release
* Clean away outdated mentions of mariadb-10.6 and even mysql-dfsg-5.1
* Update more Lintian overrides syntax to follow latest Lintian 2.115
* Update standards version to 4.6.2, no changes needed
* Update watch file format version to 4
[ MichaIng ]
* Do not create /var/log/mysql in postinst
[ Salman Mohammadi ]
* mariadb-plugin-connect: introduce curl as recommends
[ Remus-Gabriel Chelu ]
* Update Romanian translation of debconf messages
[ Faustin Lammler ]
* Cover the full-upgrade scenario in CI
[ Pablo ]
* Update Galician translation of debconf messages
-- Otto Kekäläinen <otto@debian.org> Tue, 31 Jan 2023 00:19:17 -0800
mariadb (1:10.11.1-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New major upstream release: 10.11
- Introduce new packages called 'providers', each one providing
a particular features, though so far only various compression
methods.
- New plugin package for Hashicorp Vault
- Upstream 10.11 series is intended to be a long-term supported
version with 5 years of security releases
- The other major versions 10.7/8/9/10 releases after 10.6
are all short-term releases, and thus not suitable for inclusion
in Debian but still worth noting as a guide on how to read
upstream relases notes, as all apply for what is now new in
Debian with the introduction of this 10.11
* Remove version suffix from Debian packages and rename source
package to just 'mariadb', dropping the 10.6 suffix.
* Emit warning from SysV init script if mysqld_safe is missing
* Ignore some EXPLAIN JSON test failures on armel/armhf (MDEV-30411)
* Add custom dh_installinit to keep /etc/init.d/mariadb enabled
when upgrading from mariadb-server-10.6 to mariadb-server (10.11)
[ Sunil Mohan Adapa ]
* Workaround failure to create DB with libpam-tmpdir (Closes: #1022994)
-- Otto Kekäläinen <otto@debian.org> Sun, 15 Jan 2023 14:45:21 -0800
mariadb-10.6 (1:10.6.11-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Standardize on using capitalized 'ON' in CMake build options
* Fix Breaks/Replaces for smoother upgrades from MySQL 5.5
and update maintainer documentation on how to do comprehensive
upgrade testing
* Enable automatic datadir move also on upgrades from MySQL.com packages
and make upgrades from MySQL Community (Cluster) 8.0 not get
stuck on dpkg and server restart
[ Eric Lindblad ]
* Fix typos
-- Otto Kekäläinen <otto@debian.org> Mon, 02 Jan 2023 22:42:46 -0800
mariadb-10.6 (1:10.6.11-1) unstable; urgency=medium
* New upstream version 10.6.11.
* Align with upstream 10.6 debian/ contents
-- Otto Kekäläinen <otto@debian.org> Sun, 13 Nov 2022 22:27:08 -0800
mariadb-10.6 (1:10.6.10-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.6.10. Includes several important fixes for
issues that regressed in previous release. See details in:
https://mariadb.org/regressions-in-recent-mariadb-server-releases/
* Update Lintian overrides syntax to follow latest Lintian 2.115
- Biggest change in Lintian 2.115 is a new syntax to use brackets in file
paths.
-- Otto Kekäläinen <otto@debian.org> Sun, 25 Sep 2022 15:43:39 -0700
mariadb-10.6 (1:10.6.9-1) unstable; urgency=medium
* New upstream version 10.6.8. Includes security fixes for
- CVE-2018-25032
- CVE-2022-32081
- CVE-2022-32082
- CVE-2022-32084
- CVE-2022-32089
- CVE-2022-32091
-- Otto Kekäläinen <otto@debian.org> Wed, 17 Aug 2022 07:28:05 -0700
mariadb-10.6 (1:10.6.8-1) unstable; urgency=medium
* New upstream version 10.6.8. Includes security fixes for
- CVE-2021-46669
- CVE-2022-27376
- CVE-2022-27377
- CVE-2022-27378
- CVE-2022-27379
- CVE-2022-27380
- CVE-2022-27381
- CVE-2022-27382
- CVE-2022-27383
- CVE-2022-27384
- CVE-2022-27386
- CVE-2022-27387
- CVE-2022-27444
- CVE-2022-27445
- CVE-2022-27446
- CVE-2022-27447
- CVE-2022-27448
- CVE-2022-27449
- CVE-2022-27451
- CVE-2022-27452
- CVE-2022-27455
- CVE-2022-27456
- CVE-2022-27457
- CVE-2022-27458
- CVE-2022-32085
- CVE-2022-32086
- CVE-2022-32087
- CVE-2022-32088
[ Daniel Black ]
* Move client programs to client package from MariaDB server package
[ Tuukka Pasanen ]
* MDEV-12275: Add switch '--silent' to SySV init upgrade
* Allow to use Perl DBD::mysl with mariadb-report (MDEV-28376)
[ Andreas Hasenack ]
* Disable LTO on Ubuntu
[ Faustin Lammler ]
* Use archive.mariadb.org as official watch source
[ Laurent Bigonville ]
* Fix pmem availability check (Closes: #1006530)
[ Otto Kekäläinen ]
* Update breaks/replaces to accommodate the moved mariadb-binlog et al
* Use pmem also on riscv64
* Add Bulgarian and Chinese translations for error messages
* Use proper pid namespace
* Add upstream PR#2129 to fix wsrep_sst_backup packaging
* Deb: Move my_print_defaults to MariaDB client core package
* Deb: Ensure the not-installed list is up-to-date
* Install all available man pages in appropriate packages
-- Otto Kekäläinen <otto@debian.org> Sun, 22 May 2022 16:44:02 -0700
mariadb-10.6 (1:10.6.7-3) unstable; urgency=medium
* Fix syntax error in unstable tests lists
* Forward patches upstream and update metadata for them
* Bugfix: Include missing sql_parse.cc in ER_KILL_DENIED_ERROR patch
* Fix mysql_install_db by reverting recent addition (MDEV-27980)
* Fix htm use on PowerPC to fix build failure (might close #1006527)
* Revert "Strip path from Mroonga to make the build reproducible"
-- Otto Kekäläinen <otto@debian.org> Wed, 09 Mar 2022 22:26:32 -0800
mariadb-10.6 (1:10.6.7-2) unstable; urgency=medium
* Backport OpenSSL 3.0 support for MariaDB 10.6 series (Closes: #1005950)
* Clean away most Lintian overrides and unstable-tests to see full
QA results in Debian experimental
* Add upstream PR#2028 to fix main.grant_kill test failure
* Update unstable-tests skip lists after review of 1:10.6.7-2~exp1 builds
* Fix more spelling errors
* Fix misc Lintian issues and add overrides
-- Otto Kekäläinen <otto@debian.org> Tue, 01 Mar 2022 20:40:07 -0800
mariadb-10.6 (1:10.6.7-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.6.7. Includes security fixes for
- CVE-2021-46661
- CVE-2021-46663
- CVE-2021-46664
- CVE-2021-46665
- CVE-2021-46668
* New upstream version 10.6.6. Includes security fixes for
- CVE-2021-46659
- CVE-2022-24048
- CVE-2022-24050
- CVE-2022-24051
- CVE-2022-24052
* Previous release 10.6.5 included security fixes for:
- CVE-2021-46662
- CVE-2021-46667
* Notable upstream functional changes in 10.6.6 and 10.6.7:
- New default value for innodb_change_buffering is 'none' instead of old
value 'all' (MDEV-27734). This change should improve crash safety but
might cause performance regressions on systems that use old spinning disks
(HDD) where seek latency is higher.
- New default value for innodb_read_only_compressed is 'OFF' instead of
'ON'. Upstream originally intended to deprecate ROW_FORMAT=COMPRESSED but
abandoned the plan.
- New default minimum value for innodb_buffer_pool_size is 20 MB (from 2 MB)
* Drop MIPS and CTE patches applied now upstream
* Add upstream patch to make Mroonga builds reproducible (Closes: #976984)
* Add patch for potential kfreebsd-amd64 build failure (Closes: #994665)
* Remove useless libaio-dev dependency from d/control (Closes: #1001649)
[ Faustin Lammler ]
* Salsa-CI: use a mirror redirector for the CI
[ Bas Couwenberg ]
* Don't require debian.cnf to be executable in logrotate (Closes: #1005186)
[ Tuukka Pasanen ]
* Remove unneeded path from MariaDB server postinst script
-- Otto Kekäläinen <otto@debian.org> Sat, 19 Feb 2022 16:00:00 -0800
mariadb-10.6 (1:10.6.5-2) unstable; urgency=medium
* Fix misc failures in 10.6 detected by Debian QA systems
- Revert systemd extra and socket files to fix build=all
- Backport fix for test cte_nonrecursive failure
- Disable test main.func_math on more platforms
-- Otto Kekäläinen <otto@debian.org> Tue, 14 Dec 2021 20:05:25 -0800
mariadb-10.6 (1:10.6.5-1) unstable; urgency=medium
* New upstream version 10.6.5.
* Drop MIPS and libatomic patches applied now upstream
* Enable Numa support (Closes: #861553)
-- Otto Kekäläinen <otto@debian.org> Sat, 27 Nov 2021 13:48:25 -0800
mariadb-10.6 (1:10.6.4-1) unstable; urgency=medium
[ Bas Couwenberg ]
* Don't require debian.cnf to be executable in logrotate (Closes: #994284)
[ Otto Kekäläinen ]
* Add new overrides to be clean on Lintian v2.105.0
* Salsa-CI: Add workarounds for Stretch->Bookworm upgrade bugs
* Salsa-CI: Add testing for Bullseye upgrades and backports
* Extend README.Contributor to include more QA and debugging tips
* Make RocksDB plugin depend on python3:any to be Lintian clean
* Adopt DEP-14 for the git repository layout
* Import new upstream major release MariaDB 10.6.4
* Update Debian packaging for MariaDB 10.6 series
* Clean up d/copyright and remove obsolete licence-reconcile config
* Extend Breaks/Replaces to cover all known MySQL variants
* Skip upstream tests that are permanently broken
-- Otto Kekäläinen <otto@debian.org> Thu, 21 Oct 2021 11:02:17 +0300
mariadb-10.5 (1:10.5.12-1) unstable; urgency=medium
* New upstream version 10.5.12. Includes security fixes for:
- CVE-2021-2389
- CVE-2021-2372
* Drop patches applied upstream in MariaDB S3 plugin
-- Otto Kekäläinen <otto@debian.org> Sun, 08 Aug 2021 20:33:47 -0700
mariadb-10.5 (1:10.5.11-1) unstable; urgency=medium
* New upstream version 10.5.11. Includes several important bug fixes,
including a replication hang (Closes: #991399, Closes: #989400)
* Cleanup, documentation and testing:
* Drop backported patch for armfh build now in 10.5.11 from upstream.
* Drop patch no longer needed with latest gcc-10 (Closes: #972564)
* Save autopkgtests results as JUnit-compatible XML-report
* Salsa-CI: Verify wrap-and-sort usage and correctness of patches/series
* Remove rocksdb_build_git_date from RocksDB binaries to make them
build in a reproducible way, thus making the entire MariaDB finally
reproducible (Closes: #976985)
[ Andreas Beckmann ]
* Ease switching from galera-3 to galera-4 on upgrades from buster
(Closes: #990708, Closes: #976147, Closes: #977137)
-- Otto Kekäläinen <otto@debian.org> Sun, 25 Jul 2021 15:38:34 -0700
mariadb-10.5 (1:10.5.10-2) unstable; urgency=medium
* Bugfix: Revert upstream code change to fix armhf build (Closes: #988629)
-- Otto Kekäläinen <otto@debian.org> Sun, 23 May 2021 21:04:38 -0700
mariadb-10.5 (1:10.5.10-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.5.10. Includes security fixes for (Closes: #988428):
- CVE-2021-2154
- CVE-2021-2166
* Previous release 10.5.9 included security fixes additionally for:
- CVE-2021-27928
* Previous release 10.5.7 included security fixes additionally for:
- CVE-2021-2194
* Previous release 10.5.5 included security fixes additionally for:
- CVE-2021-2022
* Update symbols to include new one from MariaDB Client 3.1.13
* Misc Salsa-CI fixes for better QA
* Innotop: Add support for MariaDB 10.5+ (Closes: #941986)
* Bugfix: Ensure upstream 1556 patch is included fully (Closes: 987231)
* Bugfix: Don't create /usr/share/mysql/*.flag files (Closes: #985870)
* Misc spelling fixes
[ Glenn Strauss ]
* Mark systemd files [linux-any] in debian/*.install
[ Arnaud Rebillout ]
* Fix postinst trigger when systemd is not running (Closes: #983563)
[ Faustin Lammler ]
* GitLab CI now supports timeout for specific jobs
-- Otto Kekäläinen <otto@debian.org> Sun, 16 May 2021 11:36:38 -0700
mariadb-10.5 (1:10.5.9-1) unstable; urgency=medium
* New upstream version 10.5.9
* Remove transitional libmariadbclient-dev empty metapackage
-- Otto Kekäläinen <otto@debian.org> Mon, 22 Feb 2021 21:32:47 +0200
mariadb-10.5 (1:10.5.8-3) unstable; urgency=medium
* Re-introduce deprecated transitional libmariadbclient-dev package
so that the libmariadbclient-dev from 10.5 can replace the existing
libmariadbclient-dev form 10.3 and thus allow MariaDB 10.5 to
migrate from Debian unstable to testing.
-- Otto Kekäläinen <otto@debian.org> Mon, 23 Nov 2020 22:14:57 +0200
mariadb-10.5 (1:10.5.8-2) unstable; urgency=medium
* Fix FTBFS on mipsel/mips64el due to test main.drop failure
-- Otto Kekäläinen <otto@debian.org> Tue, 17 Nov 2020 17:07:55 +0200
mariadb-10.5 (1:10.5.8-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* Revert back to 1fc0f45a as the armhf build failure was due to GCC bug
* Salsa-CI: salsa-ci-team/pipeline#173 seems fixed, stop allowing failure
* Filter out extra 3rd party sources directly when importing new upstream
* New upstream version 10.5.7. Includes security fixes for:
- CVE-2020-28912
- CVE-2020-14812
- CVE-2020-14789
- CVE-2020-14776
- CVE-2020-14765
* Clean away from d/copyright files that are no longer in the sources
* Sync debian/* changes from upstream 10.5.7 release
* Clean away columnstore sources during build and ignore all CS issues
* New upstream version 10.5.8
- Includes criticat fix for arbitrary InnoDB buffer pool and data file
corruption issue (MDEV-24096)
* Add patch to workaround armhf build failure due to gcc segfault
[ Helmut Grohne ]
* Fix FTCBFS: Add native libssl-dev to Build-Depends (Closes: #973388)
-- Otto Kekäläinen <otto@debian.org> Fri, 13 Nov 2020 09:20:28 +0200
mariadb-10.5 (1:10.5.6-2) unstable; urgency=medium
[ Miroslav Kure ]
* Update Czech translation of debconf messages (Closes: #972441)
[ Otto Kekäläinen ]
* Salsa-CI: Circumvent Bug#972552 so upgrade tests work again
* Salsa-CI: Install more packages to cover more in upgrade tests
* Automatically remove /etc/logrotate.d/mysql-server (Closes: #971399)
* Fix debci: Skip main.failed_auth_unixsocket on armhf and i386
* Revert "Allow libnuma-dev on armhf as well"
* Switch to using system OpenSSL (Closes: #787118)
-- Otto Kekäläinen <otto@debian.org> Mon, 26 Oct 2020 14:13:56 +0200
mariadb-10.5 (1:10.5.6-1) unstable; urgency=medium
* New upstream version 10.5.6. Includes security fixes for:
- CVE-2020-15180
* Include debian/ when importing new upstream releases
- This will help to follow upstream packaging changes and prevent
divergence in packaging code upstream vs. downstream.
* Unify config file syntax style
* Allow libnuma-dev on armhf as well
-- Otto Kekäläinen <otto@debian.org> Thu, 15 Oct 2020 11:55:14 +0300
mariadb-10.5 (1:10.5.5-3) unstable; urgency=medium
[ Helmut Grohne ]
* Fix cross-compilation, amend commit f0ba31e1
[ Aurelien Jarno ]
* Correctly link pthread so riscv64 builds pass (Closes: #933151)
[ Otto Kekäläinen ]
* Revert "Automatically use libatomics on 64-bit archs (Closes: #933151)"
* Update MTR test skip lists after full test runs in Debian experimental
* Clean up d/rules and patches for issues that to best knowledge were
temporary and not needed anymore in MariaDB 10.5.5
-- Otto Kekäläinen <otto@debian.org> Fri, 09 Oct 2020 10:06:04 +0300
mariadb-10.5 (1:10.5.5-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Salsa-CI: Extend feature tests to ensure TLS connections work at v1.2
* Fix x32 compilation issue (Closes: #970662)
* Implement unified logrotate from upstream PR#1556 (Closes: #971399)
* Fix upgrade from Percona.com by ensuring server uses mariadb.cnf
* Revert emptying /etc/mysql/debian.cnf (Closes: #971256)
* Use build flag to enforce default charset as utf8mb4 (Closes: #933063)
* Remove "Multi-Arch: same" from libmariadbd-dev
* Disable flaky MTR tests to get builds pass
* Automatically use libatomics on 64-bit archs (Closes: #933151)
[ Daniel Black ]
* Fix upgrade from MySQL.com with a new 'auth_socket' rename
[ Helmut Grohne ]
* Fix FTCBFS so cross-compiling works (Closes: #971579)
- Add native dependencies on gnutls, libedit and ncurses.
- Use a native perl interpreter during build.
- Let dh_auto_configure pass -DCMAKE_SYSTEM_NAME to cmake.
- Keep default CMAKE_BUILD_TYPE=RelWithDebInfo instead of debhelper's None.
- Cache the per-architecture stack direction.
-- Otto Kekäläinen <otto@debian.org> Tue, 06 Oct 2020 14:44:39 +0300
mariadb-10.5 (1:10.5.5-1) unstable; urgency=medium
* New upstream version 10.5.5 (Closes: #968895)
- Drop patches that are obsolete or applied upstream in 10.5
- Rename most occurrences of 10.4 to 10.5 after importing 10.5 series
- Add Breaks/Replaces for 10.5 on previous 10.4 versions
- Stop suggesting tinyca, upstream project does not exist anymore
- Sync some changes from upstream MariaDB 10.5 debian/ directory
- Update d/copyright for MariaDB 10.5
- Disable ColumnStore, not mature enough for Debian yet
- Remove mariadb-plugin-tokudb as upstream TokuDB is not maintained anymore
- Introduce new package mariadb-plugin-s3 new in MariaDB 10.5
- Include caching_sha2_password.so plugin for libmariadb3 (Closes: #962597)
- Remove unnecessary charset stanza from client config (Closes: #879099)
* Remove deprecated transitional libmariadbclient-dev package
* Correct documentation about systemd using debian-start (Closes: #866782)
* Add NEWS item about MySQL 8.0 in-place binary incompatibility
* Add Provides: libmysqld-dev now as the mysql-8.0 stopped providing it
* Install Spider with a simple spider.cnf (Closes: #917818)
* Remove faulty encryption.preset file installed in subdirectory
* Salsa-CI: Refactor common parts into reusable sections
-- Otto Kekäläinen <otto@debian.org> Fri, 25 Sep 2020 19:56:59 +0300
mariadb-10.4 (1:10.4.14-1~exp1) experimental; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.4.14
- Includes fix for RocksDB build failure on arch riscv64
* Add Breaks/Replaces for mysql-client-core-8.0 that ships myisam_ftdump
[ Christian Göttsche ]
* Prevent executable stack due to objects compiled from assembly
-- Otto Kekäläinen <otto@debian.org> Sun, 23 Aug 2020 13:20:04 +0300
mariadb-10.4 (1:10.4.13-1~exp1) experimental; urgency=medium
* New upstream version 10.4.13. Includes security fixes for:
- CVE-2020-2752
- CVE-2020-2760
- CVE-2020-2812
- CVE-2020-2814
- CVE-2020-13249
- Includes fix for MDEV-21586: Server does not start if lc_messages setting
was not English (Closes: #951059)
* Restructure and extend d/copyright to cover libmariadb (Closes: #962541)
* Simplify autopkgtest 'smoke' to be easier to debug
* Add patch to fix RocksDB detection of ZSTD
* Update libmariadb symbols for upstream release 3.1.8
-- Otto Kekäläinen <otto@debian.org> Mon, 29 Jun 2020 09:47:07 +0300
mariadb-10.4 (1:10.4.12-1~exp3) experimental; urgency=medium
[ Otto Kekäläinen ]
* Make mariadb-client-10.4 Recommends libdbd-mariadb-perl as primary option
* Detect MySQL 8.0 based on undo_001 file as *.flag is buggy in mysql-8.0
[ Faustin Lammler ]
* Fix systemd aliases (Closes: #932289)
-- Otto Kekäläinen <otto@debian.org> Fri, 10 Apr 2020 11:03:02 +0300
mariadb-10.4 (1:10.4.12-1~exp2) experimental; urgency=medium
[ Christian Göttsche ]
* Prevent executable stack due to objects compiled from assembly
[ Bastian Germann ]
* Link with libedit instead of readline5 (Closes: #940879)
[ Otto Kekäläinen ]
* Fix mysqld crash on s390x that stemmed from WolfSSL
* Extend contributor README with debugging tips
* Clean up -dev packages from excess private files
* Make full contents, also header files, explicit in -dev packages
* Remove entire sql-bench in debian/rules to simplify not-installed listings
* Remove obsolete AUTH_SOCKET build flag
* Add missing mariadb-ldb to mariadb-plugin-rocksdb
* Install files that belong to mariadb-test instead of not-installed
* Ignore mariadb-config.1 since there is no mariadb-config binary
* Enforce --fail-missing in debian/rules to not miss any uninstalled files
* Unify server preinst and postrm server stopping function
* Move mariadb-upgrade to same package as mysql-upgrade and manpage
* Update package to use debhelper level 10
* Install arch dependent mariadb.pc in lib/ with patch from upstream
* Move binary mariadb-tzinfo-to-sql to server package like upstream has
* Don't install useless extra logrotate script or test config helper
* Add patch for man page fixes from upstream 10.5 pull request
* Add patch to backport spelling fixes from upstream 10.5 pull request
* Include new man pages for mytop and myrocks_hotbackup in packaging
* Use https protected nluug.nl server for upstream repo to watch
-- Otto Kekäläinen <otto@debian.org> Tue, 17 Mar 2020 15:05:39 +0200
mariadb-10.4 (1:10.4.12-1~exp1) experimental; urgency=medium
* New upstream version 10.4.12
- Drop patches applied upstream in 10.4
- Sync debian/* improvements done in upstream MariaDB 10.4 release
- Update Galera to version 4
- Update debian/copyright for MariaDB 10.4
- Sync non-functional delta from upstream 10.4
- Sync AppArmor profile handling from MariaDB 10.4
- Sync server stopping logic from MariaDB 10.4 preinst/postinst/postrm
- Package PAM tool and user map introduced in upstream MariaDB 10.4
- Clean away versioned breaks/replaces on older generation packages
- Update maintainer and contributor docs for MariaDB 10.4
- Add patch from MDEV-21691 so mysql-test-run works out-of-source tree
- Upstream release 10.4.12 included security fixes for:
- CVE-2020-2574
- CVE-2020-7221
- Previous version 10.4.9 included security fixes for:
- CVE-2020-2780
- Previous version 10.4.7 included security fixes for:
- CVE-2020-2922
-- Otto Kekäläinen <otto@debian.org> Tue, 18 Feb 2020 20:24:40 +0200
mariadb-10.3 (1:10.3.22-1) unstable; urgency=medium
[ Otto Kekäläinen ]
* New upstream version 10.3.22. Includes security fixes for:
- CVE-2020-2574
* Update conflicts/breaks/replaces for MySQL 8.0
* Add Rules-Requires-Root definition to control file
* Activate NO_UPDATE_BUILD_VERSION to make RocksDB build reproducible
* Strip path from Mroonga to make the build reproducible
* Update Debian Policy version
* Simplify and extend Gitlab-CI testing by using more of Salsa-CI features
* Prefer salsa-ci.yml naming over gitlab-ci.yml since we inherit Salsa-CI
* Add Breaks/Replaces for mysql-client-5.7 that ships myisam_ftdump
[ Christian Göttsche ]
* Set correct SELinux contexts on package installation (Closes: #948424)
-- Otto Kekäläinen <otto@debian.org> Tue, 28 Jan 2020 22:12:28 +0200
mariadb-10.3 (1:10.3.21-2) unstable; urgency=medium
[ Otto Kekäläinen ]
* Update Python dependencies and recommends to Python 3 (Closes: #945697)
* Remove deprecated basedir config from debian.cnf (Closes: #947553)
[ James Clarke ]
* Fix RocksDB on GNU/kFreeBSD (Closes: #920994)
* Use versioned symbols on GNU/kFreeBSD
-- Otto Kekäläinen <otto@debian.org> Tue, 07 Jan 2020 09:01:10 +0200
mariadb-10.3 (1:10.3.21-1) unstable; urgency=low
[ Faustin Lammler ]
* Remove no more needed lintian overrides
[ Otto Kekäläinen ]
* New upstream version 10.3.21
-- Otto Kekäläinen <otto@debian.org> Wed, 11 Dec 2019 18:01:43 +0200
mariadb-10.3 (1:10.3.20-1) unstable; urgency=high
* New upstream version 10.3.20. Includes fix for regression:
- MDEV-20987: InnoDB fails to start when FTS table has FK relation
* Remove obsolete fields Name, Contact from debian/upstream/metadata
* Gitlab-CI: Print artifact sizes to ensure it stays under 100 MB
* Gitlab-CI: Adapt CI jobs for Debian Sid work
* Update README.Maintainer with current Debian and Ubuntu release statuses
-- Otto Kekäläinen <otto@debian.org> Mon, 11 Nov 2019 23:55:37 +0200
mariadb-10.3 (1:10.3.19-1) unstable; urgency=high
[ Otto Kekäläinen ]
* New upstream version 10.3.17. Includes security fixes for:
- CVE-2019-2938
- CVE-2019-2974
* Update symbols to match latest libmariadb_3
* Drop systemd service patch applied upstream
[ Faustin Lammler ]
* Fix typo in Readme
-- Otto Kekäläinen <otto@debian.org> Thu, 07 Nov 2019 21:26:49 +0200
mariadb-10.3 (1:10.3.18-1) unstable; urgency=medium
* New upstream version 10.3.18. Fixes regression introduced in 10.3.17
(MDEV-20247: Replication hangs with "preparing" and never starts)
(Closes: #939819)
* Minort Gitlab-CI improvements
-- Otto Kekäläinen <otto@debian.org> Thu, 12 Sep 2019 15:51:04 +0300
mariadb-10.3 (1:10.3.17-1) unstable; urgency=high
* New upstream version 10.3.17. Includes security fixes for:
- CVE-2019-2737
- CVE-2019-2739
- CVE-2019-2740
- CVE-2019-2758
- CVE-2019-2805
* Multiple Gitlab-CI/Salsa-CI improvements
* Dependency in resolveip is still included (Closes: #910902)
* Update libmariadb3 symbols to match MariaDB Connector C 3.1 API
* Add Lintian override for new test binary wsrep_check_version
* Gitlab-CI: Clean away one excess comment left from b9d633b38
-- Otto Kekäläinen <otto@debian.org> Fri, 02 Aug 2019 17:53:22 +0100
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog libmariadb3`.
Generated by dwww version 1.16 on Sat Dec 13 16:16:05 CET 2025.