mariadb-10.0 (10.0.25-0ubuntu0.15.10.1) wily-security; urgency=low

  * SECURITY UPDATE: New upstream release 10.0.25. Includes fixes for the
    following security vulnerabilities (LP: #1589302):
    - CVE-2016-0666
    - CVE-2016-0655
    - CVE-2016-0648
    - CVE-2016-0647
    - CVE-2016-0643
  * Includes fixes done in 10.0.24 for the following security vulnerabilities:
    - CVE-2016-0668
    - CVE-2016-0650
    - CVE-2016-0649
    - CVE-2016-0646
    - CVE-2016-0644
    - CVE-2016-0641
    - CVE-2016-0640
  * Updated old changelog entries to include new CVE identifiers.
  * Upstream included changes to logrotate script that supports systems that
    has multiple mysqld processes running.
  * Upstream included bugfix to mariadb-server-10.0 postinstall.

 -- Otto Kekäläinen <otto@debian.org>  Tue, 07 Jun 2016 23:30:35 +0300

mariadb-10.0 (10.0.23-0ubuntu0.15.10.1) wily-security; urgency=low

  * SECURITY UPDATE: Update to 10.0.23 fixes security issues (LP: #1538315):
    - CVE-2016-2047
    - CVE-2016-0651
    - CVE-2016-0642
    - CVE-2016-0616
    - CVE-2016-0609
    - CVE-2016-0608
    - CVE-2016-0606
    - CVE-2016-0600
    - CVE-2016-0598
    - CVE-2016-0597
    - CVE-2016-0596
    - CVE-2016-0546
    - CVE-2016-0505
  * Update TokuDB plugin install and copyright paths to match latest
    release done under Percona ownership

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 26 Jan 2016 23:59:51 +0200

mariadb-10.0 (10.0.22-0ubuntu0.15.10.1) wily-security; urgency=low

  * SECURITY UPDATE: Update to 10.0.22 fixes security issues:
    (LP: #1512241)
    - CVE-2016-0610
    - CVE-2015-7744
    - CVE-2015-4802
    - CVE-2015-4807
    - CVE-2015-4815
    - CVE-2015-4826
    - CVE-2015-4830
    - CVE-2015-4836
    - CVE-2015-4858
    - CVE-2015-4861
    - CVE-2015-4870
    - CVE-2015-4913
    - CVE-2015-4792
  * Includes security issues fixed in 10.0.21:
    - CVE-2015-4816
    - CVE-2015-4819
    - CVE-2015-4879
    - CVE-2015-4895
    (LP: #1512241)
  * Upstream changed mysqld_safe_syslog.cnf to fix logging error

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 02 Nov 2015 09:25:30 +0200

mariadb-10.0 (10.0.20-0ubuntu0.15.04.1) vivid-security; urgency=low

  * SECURITY UPDATE: Update to 10.0.20 (via .18 and .19) fixes security issues:
    - CVE-2015-3152: Client command line option --ssl-verify-server-cert (and
      MYSQL_OPT_SSL_VERIFY_SERVER_CERT option of the client API) when used
      together with --ssl will ensure that the established connection is
      SSL-encrypted and the MariaDB server has a valid certificate.
      (LP: #1464895)
    - CVE-2014-8964: bundled PCRE contained heap-based buffer overflow
      vulnerability that allowed the server to crash or have other unspecified
      impact via a crafted regular expression made possible with the
      REGEXP_SUBSTR function (MDEV-8006).
    - CVE-2015-0501
    - CVE-2015-2571
    - CVE-2015-0505
    - CVE-2015-0499
    (LP: #1451677)
  * Oracle CVE IDs added after release:
    - CVE-2015-4866
    - CVE-2015-2648
    - CVE-2015-2582
    - CVE-2015-4752
    - CVE-2015-2643
    - CVE-2015-0501
    - CVE-2015-4757
  * New release includes fix for memory corruption on arm64 (LP: #1427406)
  * Upstream also includes lots of line ending changes (from CRLF -> LF)

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 03 Jul 2015 17:39:42 +0300

mariadb-10.0 (10.0.17-0ubuntu1) vivid; urgency=medium

  * New upstream microrelease.
  * Drop patches no longer required:
    - d/p/reproducible-builds-fix-connect.patch: upstream no longer uses
      __DATE__ and __TIME__ in build.
    - new_valid_certs.patch, new_valid_certs_test_fix.patch: tests fixed
      upstream with new certificate.
  * Refresh remove_rename_mariadb-server_files_in.patch to remove fuzz.
  * Cherry-picks from Debian VCS in range e73d494..c0b5f94 as the others
    are not suitable for feature freeze:
    - [221008e] Adding mysqld_multi_confd.patch, makes mysqld_multi
      reading conf.d (Closes: #778761)
    - [361e420] Adding mysqld_multi.server_lsb-header.patch, provides
      LSB headers for example initscript (Closes: #778762)
    - [5038203] d/rules: added same hardening line as in mysql-5.6
      packaging after validation with hardening-check tool
    - [c0b5f94] Updated Swedish debconf translations
    - Fixes to d/mariadb-server-10.0.postinst:
      + [72b30b2] Remove script output, such invasive debugging is no
        longer needed.
      + [ffefd9a] Set mysql_rundir
      + [14fd487] Fix postinst script failure: don't use unsupported
        DELIMITER in mysqld command (LP: #1429725).
  * Includes fixes for the following security vulnerabilities:
    - CVE-2015-2568
    - CVE-2015-2573
    - CVE-2015-0433
    - CVE-2015-0441
 -- Robie Basak <robie.basak@ubuntu.com>  Thu, 16 Apr 2015 14:16:45 +0000

mariadb-10.0 (10.0.16-2~exp1~ubuntu1) vivid; urgency=medium

  * Merge from Debian VCS commit e73d494. Remaining changes:
    - Build without TokuDB since it fails tests.
    - Depend on mysql-common (>= 5.6.22-1~) to ensure that the new
      my.cnf symlink wrapper is available during upgrade.
    - Add versioned mariadb-common dependency to mariadb-server-10.0 so
      it doesn't fulfil the dependency using an older mariadb-common
      that doesn't require the newer mysql-common with the my.cnf
      symlink support.
  * Drop changes (applied in Debian):
    - Fix typo in mariadb-server-10.0.postinst.
    - Include change by Otto found in ppa:mysql-ubuntu/mariadb-10.0 but
      not yet in VCS: include "/etc/mysql/conf.d/*.cnf" for global options.

 -- Robie Basak <robie.basak@ubuntu.com>  Tue, 17 Feb 2015 19:19:05 +0000

mariadb-10.0 (10.0.16-2~exp1) UNRELEASED; urgency=medium

  * Move innochecksum back to mariadb-server-core-10.0 to align with other
    variants (LP: #1421520).
  * Fix typo in mariadb-server-10.0.postinst.
  * Fix typo in postinst mktemp call (LP: #1420831).

 -- Robie Basak <robie.basak@ubuntu.com>  Tue, 17 Feb 2015 17:52:26 +0000

mariadb-10.0 (10.0.16-1ubuntu4) vivid; urgency=medium

  * Fix typo in mariadb-server-10.0.postinst.
  * Add versioned mariadb-common dependency to mariadb-server-10.0 so it
    doesn't fulfil the dependency using an older mariadb-common that doesn't
    require the newer mysql-common with the my.cnf symlink support.

 -- Robie Basak <robie.basak@ubuntu.com>  Tue, 10 Feb 2015 10:59:34 +0000

mariadb-10.0 (10.0.16-1ubuntu3) vivid; urgency=medium

  * Fix typo in TokuDB build disablement.

 -- Robie Basak <robie.basak@ubuntu.com>  Tue, 10 Feb 2015 07:21:32 +0000

mariadb-10.0 (10.0.16-1ubuntu2) vivid; urgency=medium

  * Disable TokuDB build by setting CMAKEFLAGS, not with the old variable that
    no longer does anything in the master branch.

 -- Robie Basak <robie.basak@ubuntu.com>  Mon, 09 Feb 2015 23:08:00 +0000

mariadb-10.0 (10.0.16-1ubuntu1) vivid; urgency=low

  * Switch to being based from the Debian VCS master branch, instead of the
    frozen jessie branch.
  * Include change by Otto found in ppa:mysql-ubuntu/mariadb-10.0 but not yet
    in VCS: include "/etc/mysql/conf.d/*.cnf" for global options.
  * Depend on mysql-common (>= 5.6.22-1~) to ensure that the new my.cnf symlink
    wrapper is available during upgrade.
  * Build without TokuDB since it fails tests.

 -- Robie Basak <robie.basak@ubuntu.com>  Mon, 09 Feb 2015 17:37:35 +0000

mariadb-10.0 (10.0.16-1~exp4) experimental; urgency=low

  * Follow to new /etc/mysql/my.cnf management scheme
  * Remove the my.cnf move command as it increases complexity too much and might
    emit an error code if mariadb-common is upgraded before mysql-common is.
  * Add patch to enhance build reproducibility

  [ Arnaud Fontaine ]
  * d/control: innochecksum manpage has been moved to mariadb-client-10.0 in
    10.0.13-1 (ba97056), thus add Breaks/Replaces in mariadb-client-10.0
    against mariadb-server-10.0 << 10.0.13-1~.

 -- Otto Kekäläinen <otto@seravo.fi>  Sun, 08 Feb 2015 10:03:39 +0200

mariadb-10.0 (10.0.16-1~exp3) experimental; urgency=low

  * Update the mail.ssl test to match new cacert.pem
  * Stop asking and setting a database root user password. Instead enable
    the auth_socket plugin and let unix user root access MariaDB without
    a separate password. Admins using sudo or cron scripts can use the
    same access too, and there is no debian-sys-maint password either anymore.

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 30 Jan 2015 18:52:55 +0200

mariadb-10.0 (10.0.16-1~exp2) experimental; urgency=low

  * Fix typo in preinstall script (Closes: #776494).
  * Backported new cacert.pem etc from 5.5 the replace the expired ones.

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 28 Jan 2015 20:57:23 +0200

mariadb-10.0 (10.0.16-1~exp1) experimental; urgency=low

  * New upstream release. Inludes fixes for the following security
    vulnerabilities:
    - CVE-2015-0411
    - CVE-2015-0382
    - CVE-2015-0381
    - CVE-2015-0432
    - CVE-2014-6568
    - CVE-2015-0374

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 27 Jan 2015 17:04:21 +0200

mariadb-10.0 (10.0.15-2~exp1) experimental; urgency=low

  * Fix mariadb-server-10.0.postinst so that the flag removal will not emit
    an error code if there are no previous debian-*.flag files. This will
    fix a dpkg issue cought by piuparts testing.
  * Increase the debconf downgrade warning dialog priority to critical to make
    sure all users see it and understand why their system broke after downgrade.
  * Attempt to fix FTBFS on mips, mipsel, powerpc introduced by upstream
    release 10.0.15 (Closes: #772964).

 -- Otto Kekäläinen <otto@seravo.fi>  Fri, 12 Dec 2014 14:07:50 +0200

mariadb-10.0 (10.0.15-1) unstable; urgency=low

  [ Arnaud Fontaine ]
  * Bump libpcre3-dev Build-Depends to >= 2:8.35-3.2~ (Closes: #767903).

  [ Otto Kekäläinen }
  * New upstream release, includes fixes for the following security issues:
    - CVE-2014-6507
    - CVE-2014-6491
    - CVE-2014-6500
    - CVE-2014-6469
    - CVE-2014-6555
    - CVE-2014-6559
    - CVE-2014-6494
    - CVE-2014-6496
    - CVE-2014-6464
  * Disable on non-amd64 platforms the new Mroonga storage engine which
    was introduced in the new upstream release.
  * Allow mariadb-server-10.0 to overwrite file man1/mysql_plugin.1.gz in
    mysql-client-5.5 with breaks and replaces (Closes: #771213).
  * Clean up old debian-*.flag files from datadir to avoid unexpected
    behavior at later upgrades (Closes: #770177).

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 25 Nov 2014 21:45:43 +0200

mariadb-10.0 (10.0.14-4) unstable; urgency=low

  * Updated patch d/username-in-tests-replace.patch to fix the
    obfuscation done by anti-spam measures in the MariaDB
    commit message view (Closes: #769865).
  * Unified indentantion to two spaces in init file for easier
    debugging of #609537

 -- Otto Kekäläinen <otto@seravo.fi>  Mon, 17 Nov 2014 11:45:11 +0200

mariadb-10.0 (10.0.14-3) unstable; urgency=low

  * Added patch d/username-in-tests-replace.patch to fix
    test failure (Closes: #769212).
  * Added versioned dependency on libpcre3 (Closes: #767903).

 -- Otto Kekäläinen <otto@seravo.fi>  Wed, 12 Nov 2014 15:00:11 +0300

mariadb-10.0 (10.0.14-2) unstable; urgency=low

  [ Tobias Frost ]
  * Fix two lintian warnings in d/copyright (missing "-" between GPL and 2)
  * Always be verbose when building the package and show compiler args

  [ Otto Kekäläinen ]
  * Upload to unstable
  * Updated German translation by Chris Leick and Holger Wansing
    (Closes: #763952)
  * Updated Dutch translation by Frans Spiesschaert (Closes: #764013)
  * Removed libssl-dev from build dependencies in favour of using
    bundled YaSSL instead (Closes: #761911)
  * Fixed debconf value saving (Closes: #761452)
  * Re-enabled TokuDB after backporting upstream fix in MDEV-6815
  * Removed libmariadbclient packages that provided the Debian-only
    libmariadbclient.so library that nobody used. Instead developers are
    encouraged to use the libraries from the package libmariadb-client-lgpl
    instead (Closes: #739452) (Closes: #742172).

 -- Otto Kekäläinen <otto@seravo.fi>  Sat, 18 Oct 2014 19:00:11 +0300

mariadb-10.0 (10.0.14-1) experimental; urgency=low

  * New upstream release. (Closes: #757026)
  * d/control: Removed Provides: libmysqlclient-dev (Closes: #759309)
  * d/control: Removed Provides: libmysqld-dev with same motivation
  * Updated Swedish translation by Martin Bagge
    and Anders Jonsson (Closes: #762795)
  * Updated Spanish translation by Javier Fernandez-Sanguino (Closes: #762751)
  * Updated Portugese translation by Miguel Figueiredo (Closes: #763194)
  * Updated Czech translation by Miroslav Kure (Closes: #763309)

 -- Otto Kekäläinen <otto@seravo.fi>  Thu, 28 Aug 2014 00:39:02 +0300

mariadb-10.0 (10.0.10-1) experimental; urgency=low

  * Initial Upload (Closes: #740473)

 -- Otto Kekäläinen <otto@seravo.fi>  Tue, 01 Apr 2014 09:56:38 +0300
