From: Randy MacLeod <randy.macleod@windriver.com>
To: <openembedded-devel@lists.openembedded.org>
Subject: Re: [meta-oe][PATCH] mariadb: update to 5.5.46
Date: Sat, 31 Oct 2015 23:03:37 -0400 [thread overview]
Message-ID: <56358109.7070208@windriver.com> (raw)
In-Reply-To: <1446346332-19991-1-git-send-email-Randy.MacLeod@windriver.com>
I'd like to update both master and jethro to mariadb-5.5.46.
mariadb-5.5.46 is a bug fix only update based on my analysis
and the projects release notes (both below)
This update would fix these 11 CVEs:
CVE-2015-4802
CVE-2015-4807
CVE-2015-4815
CVE-2015-4826
CVE-2015-4830
CVE-2015-4836
CVE-2015-4858
CVE-2015-4861
CVE-2015-4870
CVE-2015-4913
CVE-2015-4792
The CVE list is from:
https://mariadb.com/kb/en/mariadb/mariadb-5546-release-notes/
Full changelog:
https://mariadb.com/kb/en/mariadb/mariadb-5546-changelog/
Using the updated recipe, I've built:
$ for i in \
qemux86 qemux86-64 qemuarm qemuarm64 qemumips qemumips64; \
do \
MACHINE=$i bitbake mariadb; \
done
As I mentioned above, mariadb-5.5.46 is claimed to be a bug fix
only update. In reviewing all commits, I've noticed:
- one config file change that appears to be backwards compatible.
- a few other commits that were not clearly marked as internal
bug fixes but appear to be sensible for a production release
and are shown below.
Using the git repo, there are 68 commits in this release:
$ git log --oneline mariadb-5.5.46 ^mariadb-5.5.45 | wc -l
68
diffstat bottom line:
112 files changed, 2263 insertions(+), 488 deletions(-)
Here are the commits that seemed to warrent a closer look:
$ git show b976852 == Updated yassl to yassl-2.3.8
+yaSSL Release notes, version 2.3.8 (9/17/2015)
+ This release of yaSSL fixes a high security vulnerability. \
All users
+ SHOULD update.
$ git show 8fe0708
commit 8fe0708808ddba0d85798d0cd9100b3173064081
Merge: 608efca 557a57f
Author: Mithun C Y <mithun.c.y@oracle.com>
Date: Mon Aug 17 15:26:01 2015 +0530
Merge branch 'mysql-5.1' into mysql-5.5
$ git show 8fe0708 | diffstat
0 files changed
$ git show 5cc149f == The compiler warnings fixed.
- if (null_value=arg->null_value)
+ if ((null_value=arg->null_value))
...
- if (null_value= arg->null_value)
+ if ((null_value= arg->null_value))
$ git show 75f43c5
== Small change to default config for Docker-speci
commit 75f43c5f6a5332894cf2d90ab2c04cc62c5ad18b
Author: Lars Tangvald <lars.tangvald@oracle.com>
Date: Wed Aug 19 14:17:50 2015 +0200
Small change to default config for Docker-specific rpm package
Syncs "official" and our own Docker images
diff --git a/packaging/rpm-docker/my.cnf b/packaging/rpm-docker/my.cnf
...
+skip-host-cache
+skip-name-resolve
--------------------
$ git log --oneline mariadb-5.5.46 ^mariadb-5.5.45 |cut -c -55
16c4b3c fixes for buildbot:
f41a41f Merge branch 'merge-xtradb-5.5' into 5.5
db79f4c 5.5.45-37.4
82e9f6d Merge remote-tracking branch 'mysql/5.5' into 5
c8d5112 MDEV-8796 Delete with sub query with informatio
504802f MDEV-7846: postreview fix
54b9981 MDEV-7846: Server crashes in Item_subselect::fi
0ab93fd MDEV-7445:Server crash with Signal 6 MDEV-7565:
2e3e818 MDEV-7445: Server crash with Signal 6
7ccde2c MDEV-7565: Server crash with Signal 6 (part 2)
006acf7 Bug #68148: drop index on a foreign key column
a95711e MDEV-8855: innodb.innodb-fk-warnings fails on W
02a38fd MDEV-8624: MariaDB hangs on query with many log
f804b74 MDEV-8154 rpl.show_status_stop_slave_race-7126
ce7d8c5 MDEV-7330 plugins.feedback_plugin_send fails sp
bdcf370 MDEV-7933 plugins.feedback_plugin_send depends
2563609 Increased the version number
86ed494 MDEV-8849 rpl.rpl_innodb_bug30888 sporadically
dca4ab9 MDEV-8841 innodb_zip.innodb-create-options fail
5cc149f The compiler warnings fixed.
b976852 Updated yassl to yassl-2.3.8
0243a2d Bug #21025377 CAN'T CONNECT TO SSL ENABLED SERV
29ac245 MDEV-8473: mysqlbinlog -v does not properly dec
102a85f MDEV-8663: IF Statement returns multiple values
b1895fb Bug#21527467 - RPM SCRIPTS FAIL WITH MULTIPLE D
e414cbf BUG#20449914: HANDLE_FATAL_SIGNAL (SIG=11) IN
f4ff086 Bug#20198490 : LOWER_CASE_TABLE_NAMES=0 ON WIND
75f43c5 Small change to default config for Docker-speci
ee02650 Bug #16171518 - LOAD XML DOES NOT HANDLE EMPTY
93ac0eb BUG#11754258: INCORRECT ERROR MESSAGE WHEN CREA
8fe0708 Merge branch 'mysql-5.1' into mysql-5.5
557a57f Bug #21350175: SUBQUERIES IN PROCEDURE CLAUSE O
608efca Bug #21025880 DUPLICATE UK VALUES IN READ-COMMI
f59d68e BUG#21102971 data corruption on arm64
552b1c8 Merge branch 'mysql-5.1' into mysql-5.5
f3dce25 Bug #20760261 mysqld crashed in materialized_cu
1d31744 Follow-up fix : Bug #18145121 - DEPRECATED PERL
67be190 Follow up Fix: Bug #18145121 - DEPRECATED PERL
c20911d Merge branch 'mysql-5.1' into mysql-5.5
c28626d Bug #21096444: MYSQL IS TRYING TO PERFORM A CON
91a427b Merge branch 'mysql-5.1' into mysql-5.5
9372c9e Bug #20909518: HANDLE_FATAL_SIGNAL (SIG=11) IN
b2df544 Merge branch 'mysql-5.1' into mysql-5.5
8006ad8 Bug #20909518: HANDLE_FATAL_SIGNAL (SIG=11) IN
18b2c77 Merge branch 'mysql-5.1' into mysql-5.5
641ab6f Bug #20796566 ERROR: INSERT BUFFER INSERT FAI
9cbd6d7 Merge branch 'mysql-5.5.45-release' into mysql-
b5380e0 BUG#19886430: VIEW CREATION WITH NAMED COLUMNS,
888fabd Bug #21143080: UPDATE ON VARCHAR AND TEXT COLUM
e57e1b2
067ae38 Bug #20168526 YASSL: CORRUPT SSL-KEY CRASHES CL
6fb2cdb Bug #20777016: DELETE CHECKS PRIVILEGES ON THE
49667f0 Bug#21374104 SETUP_TIMERS INITIALIZATION ASSUME
c773b32 Merge branch 'mysql-5.1' into mysql-5.5
33a2e5a Bug #20238729: ILLEGALLY CRAFTED UTF8 SELECT PR
7255ae6 Bug #20774956: THREAD_POOL.THREAD_POOL_CONNECT
e7ff204 Bug #21025377 CAN'T CONNECT TO SSL ENABLED SERV
c9685a7 Bug #20168526 YASSL: CORRUPT SSL-KEY CRASHES CL
bf681d6 Bug #20802751 - SEGMENTATION FAILURE WHEN RUNNI
359f102 BUG#16613004 PARTITIONING DDL, CRASH IN FIELD_V
2ac01ca Bug#18487951 - QUERY_CACHE_MIN_RES_UNIT SET TO
7ce304d Bug#18487951 - QUERY_CACHE_MIN_RES_UNIT SET TO
7c5d18e Bug #20772273 : MYSQLIMPORT --USE-THREADS DOESN
9068238 Bug# 20376760: STACK-BUFFER-OVERFLOW WITH LONG
0eadada BUG#20310212 PARTITION DDL- CRASH AFTER THD::NO
1b1161a Empty version change upmerge
8f87d6c Raise version number after tagging 5.1.76
da0089a Raise version number after cloning 5.5.45
../Randy
--
# Randy MacLeod. SMTS, Linux, Wind River
Direct: 613.963.1350 | 350 Terry Fox Drive, Suite 200, Ottawa, ON,
Canada, K2K 2W5
next prev parent reply other threads:[~2015-11-01 3:11 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-11-01 2:52 [meta-oe][PATCH] mariadb: update to 5.5.46 Randy MacLeod
2015-11-01 3:03 ` Randy MacLeod [this message]
2015-11-11 3:46 ` Randy MacLeod
-- strict thread matches above, loose matches on Subject: below --
2015-11-01 2:45 Randy MacLeod
2015-11-01 2:51 ` Randy MacLeod
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=56358109.7070208@windriver.com \
--to=randy.macleod@windriver.com \
--cc=openembedded-devel@lists.openembedded.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.