Package "mariadb-plugin-connect"

  mariadb (1:10.11.13-0ubuntu0.24.04.1) noble-security; urgency=medium

  * SECURITY UPDATE: New upstream version 10.11.13 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/ and
    also the previous upstream version 10.11.13 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ and
    also fixes the following security vulnerabilities (LP: #2110070):
    - CVE-2023-52969
    - CVE-2023-52970
    - CVE-2023-52971
    - CVE-2025-30693
    - CVE-2025-30722
  * Fix indentation for changelog entry in 1:10.11.11-0ubuntu0.24.04.1
  * Drop all RocksDB patches now upstream due to update to version 6.29fb
  * Drop all three patches previously backported to 1:10.11.11-0ubuntu0.24.04.2
    now included in upstream release
  * Update configuration traces to have --ssl-verify-server-cert from MDEV-28908
  * Update configuration traces to include new upstream system variables:
    - innodb-buffer-pool-size-auto-min (default: 0)
    - innodb-buffer-pool-size-max (default: 0)
    - innodb-log-checkpoint-now (default: FALSE)
  * Also update configuration traces to match that in 10.11.12 the variables
    innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised
    as deprecated.

 -- Otto Kekäläinen <email address hidden> Fri, 23 May 2025 16:20:51 -0700

  mariadb (1:10.11.11-0ubuntu0.24.04.2) noble-security; urgency=medium

  * Fix building with Clang on RISC-V to unblock the promotion of the
    10.11.11 upstate to Ubuntu 24.04 "Noble"
  * Backport upstream fix for INSERT SELECT on NOT NULL (Closes: #1099515)
    to fix severe regression in 10.11.11
  * Add patch to remove unnecessary capabilities from AmbientCapabilities
    and revert "Set CAP_IPC_LOCK capability if possible" to mitigate potential
    security issue in a change in 10.11.11

 -- Otto Kekäläinen <email address hidden> Fri, 21 Mar 2025 12:28:06 -0700

  mariadb (1:10.11.8-0ubuntu0.24.04.1) noble-security; urgency=medium

  * SECURITY UPDATE: New upstream version 10.11.8 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-8-release-notes/ and
    also fixes the following security vulnerabilities (LP: #2067125):
    - CVE-2024-21096
  * Drop multiple patches dropped upstream, and re-import PR#2541 which had been
    rebased in the original (and still open) PR.
  * Remove libmariadb file no longer present in MariaDB Connector C v3.3
  * Update client program 'mariadb' trace to match new libmariadb v3.3
  * Update server trace to include new parameters and values
  * Note that upstream dropped support for pmem as Red Hat does not support it,
    but we continue to use it in Ubuntu
  * Also note upstream updated the MariaDB Connector C library (libmariadb)
    from v3.2 to 3.3 in this stable maintenance release, but it does not cause
    any issues as the soname and list of public symbols continues to be exactly
    same as before

 -- Otto Kekäläinen <email address hidden> Fri, 24 May 2024 19:26:56 -0700