Format: 1.7 Date: Tue, 09 Nov 2010 11:49:24 -0500 Source: mysql-dfsg-5.0 Binary: libmysqlclient15off libmysqlclient15-dev mysql-common mysql-client-5.0 mysql-server-5.0 mysql-server mysql-client Architecture: sparc_translations sparc Version: 5.0.51a-3ubuntu5.8 Distribution: hardy Urgency: low Maintainer: Ubuntu/sparc Build Daemon Changed-By: Marc Deslauriers Description: libmysqlclient15-dev - MySQL database development files libmysqlclient15off - MySQL database client library mysql-client - MySQL database client (meta package depending on the latest versi mysql-client-5.0 - MySQL database client binaries mysql-common - MySQL database common files mysql-server - MySQL database server (meta package depending on the latest versi mysql-server-5.0 - MySQL database server binaries Changes: mysql-dfsg-5.0 (5.0.51a-3ubuntu5.8) hardy-security; urgency=low . * SECURITY UPDATE: denial of service via joins involving a table with a unique SET column - debian/patches/98_CVE-2010-3677.dpatch: improve logic in sql/item_cmpfunc.cc. Add tests to mysql-test/*. - CVE-2010-3677 * SECURITY UPDATE: denial of service via TEMPORARY InnoDB tables with nullable columns - debian/patches/98_CVE-2010-3680.dpatch: check for null datatype in sql/ha_innodb.cc. Add tests to mysql-test/*. - CVE-2010-3680 * SECURITY UPDATE: denial of service via alternate reads from two indexes on a table using the HANDLER interface - debian/patches/98_CVE-2010-3681.dpatch: check for the same index in sql/sql_handler.cc. Add tests to mysql-test/*. - CVE-2010-3681 * SECURITY UPDATE: denial of service via use of EXPLAIN with certain queries - debian/patches/98_CVE-2010-3682.dpatch: improve conditional in sql/sql_select.cc. Add tests to mysql-test/*. - CVE-2010-3682 * SECURITY UPDATE: denial of service via incorrect propagation of type errors. - debian/patches/98_CVE-2010-3833.dpatch: properly check for execution errors in sql/item_func.cc. Add tests to mysql-test/*. - CVE-2010-3833 * SECURITY UPDATE: denial of service via derived table materializing. - debian/patches/98_CVE-2010-3834.dpatch: handle temporary tables in sql/field.cc, sql/sql_select.*. Add tests to mysql-test/*. - CVE-2010-3834 * SECURITY UPDATE: denial of service via user-variable assignment expression. - debian/patches/98_CVE-2010-3835.dpatch: fix logic in sql/item_func.*, Add tests to mysql-test/*. - CVE-2010-3835 * SECURITY UPDATE: denial of service via pre-evaluation of LIKE predicates during view preparation. - debian/patches/98_CVE-2010-3836.dpatch: make sure we're not in view preparation mode in sql/item_cmpfunc.cc. Add tests to mysql-test/*. - CVE-2010-3836 * SECURITY UPDATE: denial of service via use of GROUP_CONCAT() and WITH ROLLUP together. - debian/patches/98_CVE-2010-3837.dpatch: create a copy of the order structures in sql/item_sum.cc, sql/table.h. Add tests to mysql-test/*. - CVE-2010-3837 * SECURITY UPDATE: denial of service via longblob and union or update with subquery. - debian/patches/98_CVE-2010-3838.dpatch: handle REAL_RESULT in sql/item_func.cc. Add tests to mysql-test/*. - CVE-2010-3838 * SECURITY UPDATE: denial of service via PolyFromWKB() function and improper data. - debian/patches/98_CVE-2010-3840.dpatch: improve data handling in sql/spatial.cc. Add tests to mysql-test/*. - CVE-2010-3840 Files: 1e8f9b28a144ff0dfe33bd20a0bdb31a 38846 raw-translations - mysql-dfsg-5.0_5.0.51a-3ubuntu5.8_sparc_translations.tar.gz 44344dcfec06342310da94329b5227ce 1847528 libs optional libmysqlclient15off_5.0.51a-3ubuntu5.8_sparc.deb 7b4b220badd74fd992ba8c6ff7b35ea0 7202436 libdevel optional libmysqlclient15-dev_5.0.51a-3ubuntu5.8_sparc.deb c211e18849940108270801431c3ebf33 7836440 misc optional mysql-client-5.0_5.0.51a-3ubuntu5.8_sparc.deb 2667b9132784e43f5f8ceba7c355acf5 27650038 misc optional mysql-server-5.0_5.0.51a-3ubuntu5.8_sparc.deb Original-Maintainer: Debian MySQL Maintainers