[SECURITY] Fedora 17 Update: mysql-5.5.28-2.fc17

updates at fedoraproject.org updates at fedoraproject.org
Sat Dec 15 18:00:29 UTC 2012


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-19833
2012-12-06 06:35:49
--------------------------------------------------------------------------------

Name        : mysql
Product     : Fedora 17
Version     : 5.5.28
Release     : 2.fc17
URL         : http://www.mysql.com
Summary     : MySQL client programs and shared libraries
Description :
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MySQL client programs and generic MySQL files.

--------------------------------------------------------------------------------
Update Information:

- Add patch for CVE-2012-5611
- Widen DH key length from 512 to 1024 bits to meet minimum requirements of FIPS 140-2
--------------------------------------------------------------------------------
ChangeLog:

* Wed Dec  5 2012 Tom Lane <tgl at redhat.com> 5.5.28-2
- Add patch for CVE-2012-5611
Resolves: #883642
- Widen DH key length from 512 to 1024 bits to meet minimum requirements
  of FIPS 140-2
Related: #877124
* Sat Sep 29 2012 Tom Lane <tgl at redhat.com> 5.5.28-1
- Update to MySQL 5.5.28, for various fixes described at
  http://dev.mysql.com/doc/refman/5.5/en/news-5-5-28.html
- Clean up partially-created database files when mysql_install_db fails
Related: #835131
- Honor user and group settings from service file in mysqld-prepare-db-dir
Resolves: #840431
- Export THR_KEY_mysys as a workaround for inadequate threading support
Resolves: #846602
- Adopt new systemd macros for server package install/uninstall triggers
Resolves: #850222
- Use --no-defaults when invoking mysqladmin to wait for the server to start
Related: #855704
* Sun Aug  5 2012 Tom Lane <tgl at redhat.com> 5.5.27-1
- Update to MySQL 5.5.27, for various fixes described at
  http://dev.mysql.com/doc/refman/5.5/en/news-5-5-27.html
* Fri Jul  6 2012 Tom Lane <tgl at redhat.com> 5.5.25a-1
- Update to MySQL 5.5.25a, for various fixes described at
  http://dev.mysql.com/doc/refman/5.5/en/news-5-5-25a.html
  http://dev.mysql.com/doc/refman/5.5/en/news-5-5-25.html
- Don't use systemd's Restart feature; rely on mysqld_safe instead
Resolves: #832029
* Mon Jun 11 2012 Tom Lane <tgl at redhat.com> 5.5.24-1
- Update to MySQL 5.5.24, for various fixes described at
  http://dev.mysql.com/doc/refman/5.5/en/news-5-5-24.html
  including the fix for CVE-2012-2122
Resolves: #830680
- Tweak logrotate script to put the right permissions on mysqld.log
- Minor specfile fixes for recent packaging guidelines changes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #881064 - CVE-2012-5611 mysql: acl_get() stack-based buffer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=881064
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mysql' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list