Accepted mariadb-10.5 1:10.5.29-0+deb11u1 (source) into oldstable-security

To: debian-lts-changes@lists.debian.org, dispatch@tracker.debian.org
Subject: Accepted mariadb-10.5 1:10.5.29-0+deb11u1 (source) into oldstable-security
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Fri, 30 May 2025 10:50:27 +0000
Message-id: <[🔎] E1uKxJj-0009Nv-M9@seger.debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 30 May 2025 09:25:37 +0300
Source: mariadb-10.5
Architecture: source
Version: 1:10.5.29-0+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>
Changed-By: Otto Kekäläinen <otto@debian.org>
Closes: 1099515 1105976
Changes:
 mariadb-10.5 (1:10.5.29-0+deb11u1) bullseye-security; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream release 10.5.29. Includes fixes for several defects
     as noted at https://mariadb.com/kb/en/mariadb-10-5-29-release-notes/
   * Fix CVE-2025-30693 (Closes: #1105976)
     Easily exploitable vulnerability allows high privileged
     attacker with network access via multiple protocols to
     compromise MariaDB Server. Successful attacks of this
     vulnerability can result in unauthorized ability to
     cause a hang or frequently repeatable crash (complete DoS)
     of MariaDB Server as well as unauthorized update, insert or
     delete access to some of MariaDB Server accessible data.
   * Fix CVE-2025-30722:
     Difficult to exploit vulnerability allows low
     privileged attacker with network access via multiple
     protocols to compromise MariaDB Client. Successful attacks
     of this vulnerability can result in unauthorized access
     to critical data or complete access to all MariaDB Client
     accessible data as well as unauthorized update, insert
     or delete access to some of MariaDB Client accessible data
   * Drop patches applies upstream in latest 10.5.29
   * New upstream also fixes regression in INSERT SELECT on NOT NULL columns
     while having BEFORE UPDATE trigger (Closes: #1099515) as well as
     some CAP_IPC_LOCK capability fixes (MDEV-36229)
   * Fix the MariaDB SysV init file to stop processes named 'mysqld' if there
     was no process with name 'mariadbd' as in some upgrade situations apt/dpkg
     may be using binaries from a new package but service files from an old
   * Note that this was likely the last upstream minor maintenance release in
     the MariaDB 10.5 series (https://mariadb.org/about/#maintenance-policy)
     and additional updates may be available only if a sponsor of the Debian LTS
     (https://wiki.debian.org/LTS/Funding) initiative requires it, or if a
     MariaDB vendor (https://mariadb.org/about/#service-providers) provides
     extended support
 .
   [ Bastien Roucariès ]
   * Add NEWS entry about CVE-2025-30693
Checksums-Sha1:
 b7ee4c93dae3715bb0fb27001b1d5e8c3f771745 4814 mariadb-10.5_10.5.29-0+deb11u1.dsc
 d7f9ac658c19896d7620d62070bd8cb6f2bdd152 117805539 mariadb-10.5_10.5.29.orig.tar.gz
 bfb2b25833d56e3bf93a5028c0d1289ab3010826 833 mariadb-10.5_10.5.29.orig.tar.gz.asc
 ef25008e3a73c430c1ec63c84da11cb896b9973e 222240 mariadb-10.5_10.5.29-0+deb11u1.debian.tar.xz
 5a9fc7dac717d70297f5ea2318050a9e39edb06b 9129 mariadb-10.5_10.5.29-0+deb11u1_source.buildinfo
Checksums-Sha256:
 349efbc8f4f60937ad128b57524517926e9b0e432bd43ecf2ef12cfa138da699 4814 mariadb-10.5_10.5.29-0+deb11u1.dsc
 de49ed417f6fa90e8fee72a41e526e0983dc47f388caff9e703803cec263b826 117805539 mariadb-10.5_10.5.29.orig.tar.gz
 af5b31b8617e51e8162b34e78167e7b8397355539fbeb48c15604aa20f041f85 833 mariadb-10.5_10.5.29.orig.tar.gz.asc
 2b83df79cefb5f2d4723c3c2b18f5a620ea62759b503a815e519b89ebefc022a 222240 mariadb-10.5_10.5.29-0+deb11u1.debian.tar.xz
 9226d0f15369adb5aac9a10bd0c4d1724ebcc3eb8d60e0863fac0427d87d572d 9129 mariadb-10.5_10.5.29-0+deb11u1_source.buildinfo
Files:
 19913e473fb059cbea2d60b28cc72ff7 4814 database optional mariadb-10.5_10.5.29-0+deb11u1.dsc
 e249135625c5eec706371401874e59e2 117805539 database optional mariadb-10.5_10.5.29.orig.tar.gz
 0d547a36725c7ba9efa8ae5bbe670c2e 833 database optional mariadb-10.5_10.5.29.orig.tar.gz.asc
 bb5b984f0dbd9ecf8dc7e7a57a016e09 222240 database optional mariadb-10.5_10.5.29-0+deb11u1.debian.tar.xz
 c57acfc5f20f3739dfe67da29e2148ba 9129 database optional mariadb-10.5_10.5.29-0+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEmbRSsR88dMO0U+RvvthEn87o2ogFAmg5ieQACgkQvthEn87o
2ogtGhAAt6LzffuYdhus279WU1Rd4AvgUnZAbxDCEnm15YMgp09T2W6UGbCFH5YB
0ZnrZrElXwi25QtBv758LKNxWZGDZidyT7+gqJPiEls+9rcSNndvyUTNMsoUP9T1
41S8GWqmRGcuGERy8QNQr25GXUDNnvnqPY0Gxa1hekJ122GwkbkRX4adgHCd8xgc
LUXORVER6VXV3cwxZoJYLbNneHdM2JucWlHH4oOHAKnUngOiVXPrwE2eXkXkF0Vf
BkWc1xdCpfjZQpiGJpQ9CXsQ9cvWPGQ2wQ1CIweAbVFcuo+1Fe4SKallLK+aIFeW
OAMJpiHi5Yo8QbjsIsD9vHKIRZblfofI4tCG112Besbeh6Aa3iidNCe1ScEZvoI5
4XfTgPf9c/94iGyV8THydgHqrXykNeDaBZIzXAgugagttDm236PrcCN7yuGuEeoq
41OGN0T8dZaK4b2qhQ5wLNTIjKx0TiZH1hCAc7I0ijqh8XDmaUYcYkDFgfmT5Q7R
xaHh4+ujeF8RM8Q4v4/va1dpHqvEazZzgaTthZe5oFyb7Us1sEap8TlxX607wmLl
5XhIQujDNkgnKSg8U6vCQZPKGoG+2M/5JiPwmvjJBW3+QPO5WYG0qYycBdRYdeH7
zccoreqkIfcBpsLNKiuzkTe6MAJ8L+GxW63EFRwFJTipFm2NOIA=
=F08R
-----END PGP SIGNATURE-----

Attachment: pgpFMR1itkOD4.pgp
Description: PGP signature

Reply to:

Prev by Date: Accepted mydumper 0.10.1-1+deb11u1 (source) into oldstable-security
Next by Date: Accepted krb5 1.18.3-6+deb11u7 (source) into oldstable-security
Previous by thread: Accepted mydumper 0.10.1-1+deb11u1 (source) into oldstable-security
Next by thread: Accepted krb5 1.18.3-6+deb11u7 (source) into oldstable-security
Index(es):
- Date
- Thread