MariaDB 5.5.29 has been released: https://kb.askmonty.org/en/mariadb-5529-release-notes/ In the announcement it lists some security fixes that we haven't yet released: - CVE-2012-5627/MDEV-3915 - CVE-2012-5615/MDEV-3909 - a variant of CVE-2012-5611. We fixed 5611 itself, but this may be different. - fixes for DoS attacks - other security fixes from MySQL 5.5.29 (not including 5612 which we fixed)
CC: (none) => alienWhiteboard: (none) => MGA2TOO
CC: (none) => fundawang
no. we're in version freeze, and there's symbol versioning changes, which makes our versioning hacks fail, and since this could have effects for php-mysql, perl-DBD-mysql etc... i'm not planning on updating (for now). as always, i'm patching security and major bugfixes (in the process of doing it)
Status: NEW => RESOLVEDResolution: (none) => WONTFIX
That's not to say we have to upgrade to 5.5.29, but there are some additional security fixes we should backport then that we haven't yet.
Status: RESOLVED => REOPENEDResolution: WONTFIX => (none)
i've been working on it since day before yesterday... it's coming tonight
OK, I hope you don't feel like anyone's rushing you. We'd need the bug filed at some point anyway, that's why I filed it.
np, it's just that i had already been preparing bugreports and fixes. i wanted it fixed yesterday, but RL intervened... *** This bug has been marked as a duplicate of bug 8921 ***
Status: REOPENED => RESOLVEDResolution: (none) => DUPLICATE