Re: Security upgrade for potato by new major version and distro change?

[Martin Schulze <joey@finlandia.infodrom.north.de>]

Christian Hammers wrote:
> Hi
> 
> As MySQL has a bad security problem and is accordingly to a @mysql.com person
> no longer supported in potato's version my only chance is to build the latest

What do you want to express?  The security problem is no longer supported
in the potato version?  Fine. :)

> (and not at least officially announced as stable) version 3.23.31 for potato.

You should always be able to backport a patch.  If not, I'm sorry, but that
this should be one quality of a Debian maintainer, you lack something...

> As this would be too simple MySQL is now even GPL and could go from
> non-free to main replacing the mysql-gpl-client package and the mysql-client
> package.

Too many changes for stable, "stable" is stable and not "changing".

> Are these changes ok for a severity=high fix? Or is there a C/C++ coder out
> there who would backport the patch? 

Negative.

Guillome has made a backport fix for MySQL, he sent it to the mysql
maintainer.  It may be in the bts, I'm not sure, talk to him if you're
interested.

Regards,

	Joey

-- 
The good thing about standards is that there are so many to choose from.
	-- Andrew S. Tanenbaum