[debian-mysql] Bug#687485: mysql-5.5: CVE-2012-4414
Moritz Muehlenhoff
jmm at inutil.org
Thu Sep 20 21:33:33 UTC 2012
On Wed, Sep 19, 2012 at 07:07:23PM +0100, Nicholas Bamber wrote:
> I am looking at this bug. However the patch involves 45 files. 17 of
> these are test files. From what I have seen so far they do not apply
> cleanly. Presumably they are meant for 5.5.27 rather than 5.5.24. I have
> yet to form a judgement on quite how intractable adapting the patch is
> going to be.
Due to the intransparent nature of mysql security updates we will need to
follow the 5.5.x releases for stable-security anyway. As such I don't see
a reason not to upload 5.5.27 during the freeze as well.
Cheers,
Moritz
More information about the pkg-mysql-maint
mailing list