Bug#860544: marked as done (Security fixes from the April 2017 CPU)

[Debian Bug Tracking System]

Your message dated Fri, 28 Apr 2017 10:32:27 +0000
with message-id <e1d43cn-000ai6...@fasolo.debian.org>
and subject line Bug#860544: fixed in mysql-5.5 5.5.55-0+deb8u1
has caused the Debian Bug report #860544,
regarding Security fixes from the April 2017 CPU
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
860544: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860544
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: mysql-5.5
Version: 5.5.54-0+deb8u1
Severity: grave
Tags: security upstream fixed-upstream

The Oracle Critical Patch Update for April 2017 will be released on  
Tuesday, April 18. According to the pre-release announcement [1], it  
will contain information about CVEs fixed in MySQL 5.5.55.

The CVE numbers will be available when the CPU is released.

Please note that the MySQL release cycle has changed from every two
months to every three months. The releases are now synchronized with
the CPU announcements.

Best regards,

Norvald H. Ryeng

[1] http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html

--- End Message ---

--- Begin Message ---

Source: mysql-5.5
Source-Version: 5.5.55-0+deb8u1

We believe that the bug you reported is fixed in the latest version of
mysql-5.5, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 860...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Lars Tangvald <lars.tangv...@oracle.com> (supplier of updated mysql-5.5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 18 Apr 2017 09:24:12 +0200
Source: mysql-5.5
Binary: libmysqlclient18 libmysqld-pic libmysqld-dev libmysqlclient-dev 
mysql-common mysql-client-5.5 mysql-server-core-5.5 mysql-server-5.5 
mysql-server mysql-client mysql-testsuite mysql-testsuite-5.5 mysql-source-5.5
Architecture: all source
Version: 5.5.55-0+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Debian MySQL Maintainers <pkg-mysql-ma...@lists.alioth.debian.org>
Changed-By: Lars Tangvald <lars.tangv...@oracle.com>
Closes: 854713 860544
Description: 
 libmysqlclient-dev - MySQL database development files
 libmysqlclient18 - MySQL database client library
 libmysqld-dev - MySQL embedded database development files
 libmysqld-pic - PIC version of MySQL embedded server development files
 mysql-client - MySQL database client (metapackage depending on the latest 
versio
 mysql-client-5.5 - MySQL database client binaries
 mysql-common - MySQL database common files, e.g. /etc/mysql/my.cnf
 mysql-server - MySQL database server (metapackage depending on the latest 
versio
 mysql-server-5.5 - MySQL database server binaries and system database setup
 mysql-server-core-5.5 - MySQL database server binaries
 mysql-source-5.5 - MySQL source
 mysql-testsuite - MySQL testsuite
 mysql-testsuite-5.5 - MySQL testsuite
Changes:
 mysql-5.5 (5.5.55-0+deb8u1) jessie-security; urgency=high
 .
   * Imported upstream version 5.5.55 to fix security issues:
     - 
http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
     - CVE-2017-3302 CVE-2017-3305 CVE-2017-3308 CVE-2017-3309
     - CVE-2017-3329 CVE-2017-3453 CVE-2017-3456 CVE-2017-3461
     - CVE-2017-3462 CVE-2017-3463 CVE-2017-3464 CVE-2017-3600
     (Closes: #860544, #854713)
   * d/patches: refreshed 62_disable_tests.patch
   * d/patches: dropped fix_test_events_2.patch. Issue fixed upstream
Checksums-Sha1: 
 0e87be3d9901201d8686248c01138eb2b3ed8de3 3262 mysql-5.5_5.5.55-0+deb8u1.dsc
 8ab934610e09e5325e143680a201d86ba7f2f70d 21040959 mysql-5.5_5.5.55.orig.tar.gz
 8c56d62fda9a53c4cad146e8668998ef5073c13a 232772 
mysql-5.5_5.5.55-0+deb8u1.debian.tar.xz
 0c9814f51aea9d5562c917e33e227a0ac305b388 85990 
mysql-common_5.5.55-0+deb8u1_all.deb
 109bc8468b6c4801064a680117a3740eef247800 84232 
mysql-server_5.5.55-0+deb8u1_all.deb
 266d43a5ea80782f7879184f69ac559aabd7a7cd 84106 
mysql-client_5.5.55-0+deb8u1_all.deb
 88770fe124e15a608169ae3d7713b9d30a0a709a 84084 
mysql-testsuite_5.5.55-0+deb8u1_all.deb
Checksums-Sha256: 
 52cabbff6950dd73e89db86092c84cd658c49f59120af6eab8b35d4a67e92850 3262 
mysql-5.5_5.5.55-0+deb8u1.dsc
 9af0a504e2603b0bc0c7c3a4a747df064fb51670a0022b1ad6114f9058b64171 21040959 
mysql-5.5_5.5.55.orig.tar.gz
 7072d8bf9ffbf40ef82d95c0ff8f87a5ef9f84753946a7e3c1a343bb99750401 232772 
mysql-5.5_5.5.55-0+deb8u1.debian.tar.xz
 aa45126c71ab1978d3e2d7b2e498ecc55778627a40361c75011a2a631151dcba 85990 
mysql-common_5.5.55-0+deb8u1_all.deb
 d9ba8a84584cdff8fd56310da2fd80f18ab9e1543a94b1083f72dd307c8e23ef 84232 
mysql-server_5.5.55-0+deb8u1_all.deb
 033c8e0f6b04dfc30a4a443acac568304be5733fd8da8aceeb19004cbb96bc8c 84106 
mysql-client_5.5.55-0+deb8u1_all.deb
 0f03018e78290f74e56f56b516d96d36fcb7fc3b8778956184bfa9faa837c375 84084 
mysql-testsuite_5.5.55-0+deb8u1_all.deb
Files: 
 82be8dbc29494e30bfaa924f9982b43e 3262 database optional 
mysql-5.5_5.5.55-0+deb8u1.dsc
 6414b0dc724c1297139991164c4038cc 21040959 database optional 
mysql-5.5_5.5.55.orig.tar.gz
 72c59e13b8877090dd2924e9bf0c2f5e 232772 database optional 
mysql-5.5_5.5.55-0+deb8u1.debian.tar.xz
 eac582cf88a7eac7b5c5af97cc1a354a 85990 database optional 
mysql-common_5.5.55-0+deb8u1_all.deb
 b334505357186fb58ba8ba7d2a587821 84232 database optional 
mysql-server_5.5.55-0+deb8u1_all.deb
 df9b7e1e68599d6c5ddb6a5102aa6f4f 84106 database optional 
mysql-client_5.5.55-0+deb8u1_all.deb
 5e509c668d4c5161e3acb06ee05bf86b 84084 database optional 
mysql-testsuite_5.5.55-0+deb8u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=SFAU
-----END PGP SIGNATURE-----

--- End Message ---