Hello community,
here is the log from the commit of package mysql-community-server for openSUSE:Factory checked in at 2015-12-03 13:31:50
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/mysql-community-server (Old)
and /work/SRC/openSUSE:Factory/.mysql-community-server.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mysql-community-server"
Changes:
--------
--- /work/SRC/openSUSE:Factory/mysql-community-server/mysql-community-server.changes 2015-09-02 00:36:23.000000000 +0200
+++ /work/SRC/openSUSE:Factory/.mysql-community-server.new/mysql-community-server.changes 2015-12-03 13:31:53.000000000 +0100
@@ -1,0 +2,22 @@
+Mon Nov 30 11:50:34 UTC 2015 - kstreitova@suse.com
+
+- update to 5.6.27
+ * changes:
+ http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-27.html
+ * fixed CVEs:
+ CVE-2015-1793, CVE-2015-0286, CVE-2015-0288, CVE-2015-1789,
+ CVE-2015-4730, CVE-2015-4766, CVE-2015-4792, CVE-2015-4800,
+ CVE-2015-4802, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819,
+ CVE-2015-4826, CVE-2015-4830, CVE-2015-4833, CVE-2015-4836,
+ CVE-2015-4858, CVE-2015-4861, CVE-2015-4862, CVE-2015-4864,
+ CVE-2015-4866, CVE-2015-4870, CVE-2015-4879, CVE-2015-4890,
+ CVE-2015-4895, CVE-2015-4904, CVE-2015-4905, CVE-2015-4910,
+ CVE-2015-4913
+ * fix [bnc#951391]
+- add mysql-community-server-5.6.26-enforce_ssl.patch to fix MySQL lack
+ of SSL enforcement. Using --ssl-verify-server-cert and --ssl[-*]
+ implies that the ssl connection is required. The mysql client will
+ now print an error if ssl is required, but the server can not handle
+ a ssl connection [bnc#924663], [bnc#928962], [CVE-2015-3152].
+
+-------------------------------------------------------------------
Old:
----
mysql-5.6.26.tar.gz
New:
----
mysql-5.6.27.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ mysql-community-server.spec ++++++
--- /var/tmp/diff_new_pack.95lfys/_old 2015-12-03 13:31:56.000000000 +0100
+++ /var/tmp/diff_new_pack.95lfys/_new 2015-12-03 13:31:56.000000000 +0100
@@ -44,7 +44,7 @@
%define with_cassandra 0
%endif
Name: mysql-community-server
-Version: 5.6.26
+Version: 5.6.27
Release: 0
Summary: Server part of %{pretty_name}
License: SUSE-GPL-2.0-with-FLOSS-exception
@@ -127,8 +127,8 @@
Obsoletes: %{extra_provides}-debug-version < %{version}
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%{?systemd_requires}
-# On mariadb we want readline5 and on mysql we use libedit from system
-%if "%{name}" == "mariadb"
+# On mariadb we want readline5 (except for SLE12) and on mysql we use libedit from system
+%if ("%{name}" == "mariadb" ) && ! (( 0%{?suse_version} == 1315 ) && ( ! 0%{?is_opensuse} ))
BuildRequires: readline5-devel
%else
BuildRequires: libedit-devel
++++++ configuration-tweaks.tar.bz2 ++++++
++++++ mysql-5.6.26.tar.gz -> mysql-5.6.27.tar.gz ++++++
/work/SRC/openSUSE:Factory/mysql-community-server/mysql-5.6.26.tar.gz /work/SRC/openSUSE:Factory/.mysql-community-server.new/mysql-5.6.27.tar.gz differ: char 5, line 1
++++++ mysql-patches.tar.bz2 ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/mysql-patches/mysql-patches/mysql-community-server-5.6.26-enforce_ssl.patch new/mysql-patches/mysql-patches/mysql-community-server-5.6.26-enforce_ssl.patch
--- old/mysql-patches/mysql-patches/mysql-community-server-5.6.26-enforce_ssl.patch 1970-01-01 01:00:00.000000000 +0100
+++ new/mysql-patches/mysql-patches/mysql-community-server-5.6.26-enforce_ssl.patch 2015-10-05 20:41:09.000000000 +0200
@@ -0,0 +1,66 @@
+PATCH-P1-FIX: fix MySQL lack of SSL enforcement
+BUGS: bnc#924663, bnc#928962, CVE-2015-3152
+
+Maintainer: Kristyna Streitova