2015-04-21 9:25 GMT+03:00 Salvatore Bonaccorso <car...@debian.org>: > Yes, I can confirm that we most likely will need to use the same > strategy as for the mysql-5.5 packages for mariadb-10.0 once updated > through jessie-security.
It seems nobody will upload 10.0.17-1 to the release. Can the security team then please upload this as a security update? The Oracle CPU from April is missing most of the details of the vulnerabilities and I am starting to think that maybe nobody outside Oracle knows what code has the vulnerabilities, and thus it would be best for Debian deliver 10.0.17-1 as a security upgrade with the latest code, which includes many fixes (both normal and security) that MariaDB devs have merged from latest MySQL release. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAHj_TLAVVnmVzJceDjC=3r32httopfjf-abadianzxxq1h-...@mail.gmail.com
