head	1.6;
access;
symbols
	pkgsrc-2013Q2:1.6.0.8
	pkgsrc-2013Q2-base:1.6
	pkgsrc-2012Q4:1.6.0.6
	pkgsrc-2012Q4-base:1.6
	pkgsrc-2011Q4:1.6.0.4
	pkgsrc-2011Q4-base:1.6
	pkgsrc-2011Q2:1.6.0.2
	pkgsrc-2011Q2-base:1.6
	pkgsrc-2010Q2:1.5.0.24
	pkgsrc-2010Q2-base:1.5
	pkgsrc-2010Q1:1.5.0.22
	pkgsrc-2010Q1-base:1.5
	pkgsrc-2009Q4:1.5.0.20
	pkgsrc-2009Q4-base:1.5
	pkgsrc-2009Q3:1.5.0.18
	pkgsrc-2009Q3-base:1.5
	pkgsrc-2009Q2:1.5.0.16
	pkgsrc-2009Q2-base:1.5
	pkgsrc-2009Q1:1.5.0.14
	pkgsrc-2009Q1-base:1.5
	pkgsrc-2008Q4:1.5.0.12
	pkgsrc-2008Q4-base:1.5
	pkgsrc-2008Q3:1.5.0.10
	pkgsrc-2008Q3-base:1.5
	cube-native-xorg:1.5.0.8
	cube-native-xorg-base:1.5
	pkgsrc-2008Q2:1.5.0.6
	pkgsrc-2008Q2-base:1.5
	cwrapper:1.5.0.4
	pkgsrc-2008Q1:1.5.0.2
	pkgsrc-2008Q1-base:1.5
	pkgsrc-2007Q4:1.3.0.6
	pkgsrc-2007Q4-base:1.3
	pkgsrc-2007Q3:1.3.0.4
	pkgsrc-2007Q3-base:1.3
	pkgsrc-2007Q2:1.3.0.2
	pkgsrc-2007Q2-base:1.3
	pkgsrc-2007Q1:1.2.0.6
	pkgsrc-2007Q1-base:1.2
	pkgsrc-2006Q4:1.2.0.4
	pkgsrc-2006Q4-base:1.2
	pkgsrc-2006Q3:1.2.0.2
	pkgsrc-2006Q3-base:1.2
	pkgsrc-2006Q2:1.1.0.2
	pkgsrc-2006Q2-base:1.1;
locks; strict;
comment	@# @;


1.6
date	2010.09.23.14.34.54;	author taca;	state dead;
branches;
next	1.5;

1.5
date	2008.03.26.13.22.00;	author wiz;	state Exp;
branches;
next	1.4;

1.4
date	2008.03.25.13.42.53;	author wiz;	state dead;
branches;
next	1.3;

1.3
date	2007.05.23.08.11.51;	author martti;	state Exp;
branches;
next	1.2;

1.2
date	2006.08.31.12.42.42;	author seb;	state Exp;
branches;
next	1.1;

1.1
date	2006.06.19.07.53.00;	author seb;	state Exp;
branches
	1.1.2.1;
next	;

1.1.2.1
date	2006.09.13.13.35.59;	author salo;	state Exp;
branches;
next	;


desc
@@


1.6
log
@Good-by mysql4-server now.  It isn't supported any more and no package
need it now.
@
text
@$NetBSD: patch-bd,v 1.5 2008/03/26 13:22:00 wiz Exp $

--- tests/mysql_client_test.c.orig	2006-11-03 04:15:21.000000000 +0200
+++ tests/mysql_client_test.c	2007-05-23 08:57:25.000000000 +0300
@@@@ -22,6 +22,7 @@@@
 ***************************************************************************/
 
 #include <my_global.h>
+#include <mysqld_error.h>
 #include <my_sys.h>
 #include <mysql.h>
 #include <errmsg.h>
@@@@ -11856,6 +11857,48 @@@@
   mysql_stmt_close(stmt);
 }
 
+/*
+  Bug #17667: An attacker has the opportunity to bypass query logging.
+ */
+
+static void test_bug17667()
+{
+  NET *net= &mysql->net;
+  int rc;
+  myheader("test_bug17667");
+
+  /* I. Prepare the table */
+  mysql_real_query(mysql,     "drop table if exists t1", 23);
+
+  rc= mysql_real_query(mysql, "create table t1 (i int)", 23);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == 0);
+
+  mysql_real_query(mysql,     "insert into t1 (i) values (1)", 29);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == 0);
+
+  mysql_real_query(mysql,     "insert into /* NUL=\0 */ t1 (i) values (2)", 41);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == ER_PARSE_ERROR);
+
+  mysql_real_query(mysql,     "/* NUL=\0 */ insert into t1 (i) values (3)", 41);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == ER_PARSE_ERROR);
+
+  mysql_real_query(mysql,     "insert into /* TAB=\t */ t1 (i) values (4)", 41);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == 0);
+
+  mysql_real_query(mysql,     "/* TAB=\t */ insert into t1 (i) values (5)", 41);
+  myquery(rc);
+  DIE_UNLESS(net->last_errno == 0);
+
+  /* II. Cleanup */
+  rc= mysql_real_query(mysql, "drop table t1", 13);
+  myquery(rc);
+}
+
 
 /*
  Bug#20152: mysql_stmt_execute() writes to MYSQL_TYPE_DATE buffer
@@@@ -12170,6 +12213,7 @@@@
   { "test_bug11718", test_bug11718 },
   { "test_bug12925", test_bug12925 },
   { "test_bug15613", test_bug15613 },
+  { "test_bug17667", test_bug17667 },
   { "test_bug20152", test_bug20152 },
   { "test_bug21726", test_bug21726 },
   { 0, 0 }
@


1.5
log
@Re-add mysql4 packages.
Andreas Hallmann graciously agreed to maintain them.
@
text
@d1 1
a1 1
$NetBSD: patch-bd,v 1.3 2007/05/23 08:11:51 martti Exp $
@


1.4
log
@Remove mysql4 (4.1 branch) packages.
They have security problems and are not maintained.

Removal was announced on pkgsrc-users on March 13.
@
text
@@


1.3
log
@Updated MySQL to 4.1.22

Lots of bug fixes, see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-22.html
@
text
@d1 1
a1 1
$NetBSD: patch-bd,v 1.2 2006/08/31 12:42:42 seb Exp $
@


1.2
log
@Update mysql4-client and mysql4-server to version 4.1.21.

Most notably this version includes fixes for:
http://secunia.com/advisories/21259/
http://secunia.com/advisories/21506/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469

* Packages changes:
the script mysqldumpslow had been moved from the mysql4-client to the
mysql4-server.

* Changes since last packaged version (4.1.20)
(see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html for more details):

This is a bugfix release for the recent production release family.

Functionality added or changed:
- For spatial data types, the server formerly returned these as
VARSTRING values with a binary collation. Now the server returns
spatial values as BLOB values. (Bug#10166)
- Added the --set-charset option to mysqlbinlog to allow the
character set to be specified for processing binary log files.
(Bug#18351)
- For a table with an AUTO_INCREMENT column, SHOW CREATE TABLE now
shows the next AUTO_INCREMENT value to be generated. (Bug#19025)
- A warning now is issued if the client attempts to set the
SQL_LOG_OFF variable without the SUPER privilege. (Bug#16180)
- The mysqldumpslow script has been moved from client RPM packages
to server RPM packages. This corrects a problem where mysqldumpslow
could not be used with a client-only RPM install, because it depends
on my_print_defaults which is in the server RPM. (Bug#20216)

Bugs fixed:
- Security fix: On Linux, and possibly other platforms using
case-sensitive filesystems, it was possible for a user granted
rights on a database to create or access a database whose name
differed only from that of the first by the case of one or more
letters. (Bug#17647)
- Security fix: If a user has access to MyISAM table t, that user
can create a MERGE table m that accesses t. However, if the user's
privileges on t are subsequently revoked, the user can continue to
access t by doing so through m. If this behavior is undesirable,
you can start the server with the new --skip-merge option to disable
the MERGE storage engine. (Bug#15195)
- Security fix: Invalid arguments to DATE_FORMAT() caused a server
crash. (CVE-2006-3469, Bug#20729) Thanks to Jean-David Maillefer
for discovering and reporting this problem to the Debian project
and to Christian Hammers from the Debian Team for notifying us of
it.
...
(see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html for
the complete
bug fix list)
@
text
@d1 1
a1 1
$NetBSD: patch-bd,v 1.1 2006/06/19 07:53:00 seb Exp $
d3 2
a4 2
--- tests/mysql_client_test.c.orig	2006-07-19 15:10:41.000000000 +0000
+++ tests/mysql_client_test.c
d13 1
a13 1
@@@@ -11855,6 +11856,48 @@@@ static void test_bug15613()
d62 1
a62 1
@@@@ -12130,6 +12173,7 @@@@ static struct my_tests_st my_tests[]= {
d68 1
a69 1
 };
@


1.1
log
@Update mysql4-client and mysql4-server to version 4.1.20.

Most notably this version includes fixes for
http://secunia.com/advisories/20365/
and
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2006-0903

The fix for the latter was provided in PR pkg/33616 by Cedric
Devillers, cedric dot devillers at script dottt univ-paris7 dot fr,
and is not part of the upstream version 4.1.20.

* Changes since last packaged version (4.1.19)
(see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-20.html for me details):

This is a security fix release for the previous production release
family.  This release includes the security fix described later in
this section and a few other changes to resolve build problems,
relative to the last official MySQL release (4.1.19).

Bugs fixed:
- Security fix: An SQL-injection security hole has been found in
multi-byte encoding processing. The bug was in the server, incorrectly
parsing the string escaped with the mysql_real_escape_string() C
API function. (CVE-2006-2753, Bug#8378)
 This vulnerability was discovered and reported by Josh Berkus
 <josh@@postgresql.org> and Tom Lane <tgl@@sss.pgh.pa.us> as part of
 the inter-project security collaboration of the OSDB consortium.
- The patch for Bug#8303 broke the fix for Bug#8378 and was undone.
(In string literals with an escape character (\) followed by a
multi-byte character that has a second byte of (\), the literal
was not interpreted correctly. The next byte now is escaped, not
the entire multi-byte character. This means it a strict reverse of
the mysql_real_escape_string() function.)
- The client libraries had not been compiled for position-indpendent
code on Solaris-SPARC and AMD x86_64 platforms. (Bug#13159, Bug#14202,
Bug#18091)
- Running myisampack followed by myisamchk with the --unpack option
would corrupt the auto_increment key. (Bug#12633)
@
text
@d1 1
a1 1
$NetBSD$
d3 1
a3 1
--- tests/mysql_client_test.c.orig	2006-05-24 18:00:37.000000000 +0000
d13 2
a14 1
@@@@ -11745,6 +11746,49 @@@@ static void test_bug12744()
d17 1
a17 1
 /*
d19 1
a19 1
+*/
a58 4
+
+/*
   Bug#11718: query with function, join and order by returns wrong type
 */
d60 3
a62 1
@@@@ -12078,6 +12122,7 @@@@ static struct my_tests_st my_tests[]= {
d67 1
a69 1
 
@


1.1.2.1
log
@Pullup ticket 1823 - requested by seb
security update for mysql4

Revisions pulled up:
- pkgsrc/databases/mysql4-client/Makefile.common	1.54
- pkgsrc/databases/mysql4-client/PLIST			1.14
- pkgsrc/databases/mysql4-client/distinfo		1.27
- pkgsrc/databases/mysql4-client/patches/patch-ax	1.5
- pkgsrc/databases/mysql4-client/patches/patch-bd	1.2
- pkgsrc/databases/mysql4-server/Makefile		1.31
- pkgsrc/databases/mysql4-server/PLIST			1.18
- pkgsrc/databases/mysql4-server/distinfo		1.25
- pkgsrc/databases/mysql4-server/patches/patch-bd	1.2

   Module Name:		pkgsrc
   Committed By:	seb
   Date:		Thu Aug 31 12:42:42 UTC 2006

   Modified Files:
   	pkgsrc/databases/mysql4-client: Makefile.common PLIST distinfo
   	pkgsrc/databases/mysql4-client/patches: patch-ax patch-bd
   	pkgsrc/databases/mysql4-server: Makefile PLIST distinfo
   	pkgsrc/databases/mysql4-server/patches: patch-bd

   Log Message:
   Update mysql4-client and mysql4-server to version 4.1.21.

   Most notably this version includes fixes for:
   http://secunia.com/advisories/21259/
   http://secunia.com/advisories/21506/
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469

   * Packages changes:
   the script mysqldumpslow had been moved from the mysql4-client to the
   mysql4-server.

   * Changes since last packaged version (4.1.20)
   (see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html for more details):

   This is a bugfix release for the recent production release family.

   Functionality added or changed:
   - For spatial data types, the server formerly returned these as
   VARSTRING values with a binary collation. Now the server returns
   spatial values as BLOB values. (Bug#10166)
   - Added the --set-charset option to mysqlbinlog to allow the
   character set to be specified for processing binary log files.
   (Bug#18351)
   - For a table with an AUTO_INCREMENT column, SHOW CREATE TABLE now
   shows the next AUTO_INCREMENT value to be generated. (Bug#19025)
   - A warning now is issued if the client attempts to set the
   SQL_LOG_OFF variable without the SUPER privilege. (Bug#16180)
   - The mysqldumpslow script has been moved from client RPM packages
   to server RPM packages. This corrects a problem where mysqldumpslow
   could not be used with a client-only RPM install, because it depends
   on my_print_defaults which is in the server RPM. (Bug#20216)

   Bugs fixed:
   - Security fix: On Linux, and possibly other platforms using
   case-sensitive filesystems, it was possible for a user granted
   rights on a database to create or access a database whose name
   differed only from that of the first by the case of one or more
   letters. (Bug#17647)
   - Security fix: If a user has access to MyISAM table t, that user
   can create a MERGE table m that accesses t. However, if the user's
   privileges on t are subsequently revoked, the user can continue to
   access t by doing so through m. If this behavior is undesirable,
   you can start the server with the new --skip-merge option to disable
   the MERGE storage engine. (Bug#15195)
   - Security fix: Invalid arguments to DATE_FORMAT() caused a server
   crash. (CVE-2006-3469, Bug#20729) Thanks to Jean-David Maillefer
   for discovering and reporting this problem to the Debian project
   and to Christian Hammers from the Debian Team for notifying us of
   it.
   ...
   (see http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html for
   the complete
   bug fix list)
@
text
@d1 1
a1 1
$NetBSD: patch-bd,v 1.2 2006/08/31 12:42:42 seb Exp $
d3 1
a3 1
--- tests/mysql_client_test.c.orig	2006-07-19 15:10:41.000000000 +0000
d13 1
a13 2
@@@@ -11855,6 +11856,48 @@@@ static void test_bug15613()
   mysql_stmt_close(stmt);
d16 1
a16 1
+/*
d18 1
a18 1
+ */
d58 4
d63 1
a63 3
 /*
  Bug#20152: mysql_stmt_execute() writes to MYSQL_TYPE_DATE buffer
@@@@ -12130,6 +12173,7 @@@@ static struct my_tests_st my_tests[]= {
a67 1
   { "test_bug20152", test_bug20152 },
d70 1
@