[Pkg-mysql-commits] [mariadb-5.5] 01/01: Add in retrospect the CVE identifiers 5.5.38 included (CVEs created by Oracle after MariaDB release).

[Otto Kekäläinen]

This is an automated email from the git hooks/post-receive script.

ottok-guest pushed a commit to branch master
in repository mariadb-5.5.

commit cad66df72ca7c5578917e1d4b551e9b59814b6f1
Author: Otto Kekäläinen <otto.kekalainen at seravo.fi>
Date:   Thu Jul 24 16:08:20 2014 +0300

    Add in retrospect the CVE identifiers 5.5.38 included (CVEs created by Oracle after MariaDB release).
---
 debian/changelog | 20 +++++++++++++-------
 1 file changed, 13 insertions(+), 7 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index cf24710..2ffe256 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,12 @@
 mariadb-5.5 (5.5.38-2) unstable; urgency=low
 
   * Fixed wrongly applied fix of MDEV-5957 (Closes: #752203)
+  * Add in retrospect corresponding MariaDB CVEs for Oracle SPU July 2014 (Closes: #754940)
+    - CVE-2014-2494
+    - CVE-2014-4207
+    - CVE-2014-4243
+    - CVE-2014-4258
+    - CVE-2014-4260
 
  -- Otto Kekäläinen <otto at seravo.fi>  Sat, 19 Jul 2014 23:43:33 +0300
 
@@ -20,13 +26,13 @@ mariadb-5.5 (5.5.37-1) unstable; urgency=low
 
   * New upstream release, fixing the following security issues:
     * Corresponding MariaDB CVEs for Oracle SPU April 2014 (Closes: #745330)
-      - CVE-2014-0384 
-      - CVE-2014-2419 
-      - CVE-2014-2430 
-      - CVE-2014-2431 
-      - CVE-2014-2432 
-      - CVE-2014-2436 
-      - CVE-2014-2438 
+      - CVE-2014-0384
+      - CVE-2014-2419
+      - CVE-2014-2430
+      - CVE-2014-2431
+      - CVE-2014-2432
+      - CVE-2014-2436
+      - CVE-2014-2438
       - CVE-2014-2440
   * Re-enabled TokuDB with "if arch amd64" in d/rules
   * Applied patch to log init output better

-- 
Alioth's hooks/post-receive on /srv/git.debian.org/git/pkg-mysql/mariadb-5.5.git