Format: 1.7
Date: Mon, 10 Nov 2008 13:42:30 -0500
Source: mysql-dfsg-5.0
Binary: libmysqlclient15-dev mysql-client mysql-client-5.0 mysql-server mysql-server-5.0 mysql-common libmysqlclient15off
Architecture: hppa_translations hppa
Version: 5.0.22-0ubuntu6.06.11
Distribution: dapper
Urgency: low
Maintainer: Ubuntu/hppa Build Daemon <buildd@primero.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libmysqlclient15-dev - mysql database development files
 libmysqlclient15off - mysql database client library
 mysql-client-5.0 - mysql database client binaries
 mysql-server-5.0 - mysql database server binaries
Changes: 
 mysql-dfsg-5.0 (5.0.22-0ubuntu6.06.11) dapper-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via an empty bit-string literal (b'')
     - debian/patches/106_SECURITY_CVE-2008-3963.dpatch: fix Item_bin_string::
       Item_bin_string() in sql/item.cc to parse an empty bit-string literal
       as an empty string.
     - CVE-2008-3963
   * SECURITY UPDATE: privilege circumvention via the creation of MyISAM
     tables using the DATA DIRECTORY and INDEX DIRECTORY options to overwrite
     existing table files in the data directory. This update is a complete
     fix for the three CVE numbers listed below. This fix alters table creation
     behaviour by disallowing the use of the MySQL data directory in DATA
     DIRECTORY and INDEX DIRECTORY options. (LP: #254129)
     - debian/patches/107_SECURITY_CVE-2008-4098.dpatch: Disallow use of MySQL
       data directory in DATA DIRECTORY and INDEX DIRECTORY options.
     - CVE-2008-2079
     - CVE-2008-4097
     - CVE-2008-4098
Files: 
 4b75deea9034fc10def76bf5bb2ae71f 1503132 libs optional libmysqlclient15off_5.0.22-0ubuntu6.06.11_hppa.deb
 f6b6a3e5d860c2d490caca7920ce7e5f 7343506 libdevel optional libmysqlclient15-dev_5.0.22-0ubuntu6.06.11_hppa.deb
 0766f101bc69b015199e06ed2befeafc 7330934 misc optional mysql-client-5.0_5.0.22-0ubuntu6.06.11_hppa.deb
 8bb4360e7955a903a6a213fb13f6c6d5 23574014 misc optional mysql-server-5.0_5.0.22-0ubuntu6.06.11_hppa.deb
 07f184255764e961f25c2f776abb44ed 21517 raw-translations - mysql-dfsg-5.0_5.0.22-0ubuntu6.06.11_hppa_translations.tar.gz