UbuntuUpdates.org

Package "libmariadbd-dev"

Name: libmariadbd-dev

Description:

MariaDB embedded database, development files
Latest version: 1:10.11.13-0ubuntu0.24.04.1
Release: noble (24.04)
Level: updates
Repository: universe
Head package: mariadb
Homepage: https://mariadb.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libmariadbd-dev"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libmariadbd-dev" in Noble

Repository Area Version
base universe 1:10.11.7-2ubuntu2
security universe 1:10.11.13-0ubuntu0.24.04.1

Changelog

Version: 1:10.11.13-0ubuntu0.24.04.1 2025-06-02 20:09:19 UTC

  mariadb (1:10.11.13-0ubuntu0.24.04.1) noble-security; urgency=medium

  * SECURITY UPDATE: New upstream version 10.11.13 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-13-release-notes/ and
    also the previous upstream version 10.11.13 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-12-release-notes/ and
    also fixes the following security vulnerabilities (LP: #2110070):
    - CVE-2023-52969
    - CVE-2023-52970
    - CVE-2023-52971
    - CVE-2025-30693
    - CVE-2025-30722
  * Fix indentation for changelog entry in 1:10.11.11-0ubuntu0.24.04.1
  * Drop all RocksDB patches now upstream due to update to version 6.29fb
  * Drop all three patches previously backported to 1:10.11.11-0ubuntu0.24.04.2
    now included in upstream release
  * Update configuration traces to have --ssl-verify-server-cert from MDEV-28908
  * Update configuration traces to include new upstream system variables:
    - innodb-buffer-pool-size-auto-min (default: 0)
    - innodb-buffer-pool-size-max (default: 0)
    - innodb-log-checkpoint-now (default: FALSE)
  * Also update configuration traces to match that in 10.11.12 the variables
    innodb-buffer-pool-chunk-size and innodb-log-spin-wait-delay are advertised
    as deprecated.

 -- Otto Kekäläinen <email address hidden> Fri, 23 May 2025 16:20:51 -0700
Source diff to previous version
2110070 CVE-2025-30722 et al affects MariaDB in Ubuntu
CVE-2023-52969 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through 11.0.* can sometimes crash with an empty backtrace lo
CVE-2023-52970 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through 11.4.* crashes in Item_direct_vi
CVE-2023-52971 MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan.
CVE-2025-30693 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 an
CVE-2025-30722 Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4

Version: 1:10.11.11-0ubuntu0.24.04.2 2025-03-31 16:07:44 UTC

  mariadb (1:10.11.11-0ubuntu0.24.04.2) noble-security; urgency=medium

  * Fix building with Clang on RISC-V to unblock the promotion of the
    10.11.11 upstate to Ubuntu 24.04 "Noble"
  * Backport upstream fix for INSERT SELECT on NOT NULL (Closes: #1099515)
    to fix severe regression in 10.11.11
  * Add patch to remove unnecessary capabilities from AmbientCapabilities
    and revert "Set CAP_IPC_LOCK capability if possible" to mitigate potential
    security issue in a change in 10.11.11

 -- Otto Kekäläinen <email address hidden> Fri, 21 Mar 2025 12:28:06 -0700
Source diff to previous version
1099515 mariadb-server: Error with INSERT SELECT on NOT NULL columns while having BEFORE UPDATE trigger

Version: 1:10.11.8-0ubuntu0.24.04.1 2024-06-19 10:07:15 UTC

  mariadb (1:10.11.8-0ubuntu0.24.04.1) noble-security; urgency=medium

  * SECURITY UPDATE: New upstream version 10.11.8 includes fixes for regressions
    as noted at https://mariadb.com/kb/en/mariadb-10-11-8-release-notes/ and
    also fixes the following security vulnerabilities (LP: #2067125):
    - CVE-2024-21096
  * Drop multiple patches dropped upstream, and re-import PR#2541 which had been
    rebased in the original (and still open) PR.
  * Remove libmariadb file no longer present in MariaDB Connector C v3.3
  * Update client program 'mariadb' trace to match new libmariadb v3.3
  * Update server trace to include new parameters and values
  * Note that upstream dropped support for pmem as Red Hat does not support it,
    but we continue to use it in Ubuntu
  * Also note upstream updated the MariaDB Connector C library (libmariadb)
    from v3.2 to 3.3 in this stable maintenance release, but it does not cause
    any issues as the soname and list of public symbols continues to be exactly
    same as before

 -- Otto Kekäläinen <email address hidden> Fri, 24 May 2024 19:26:56 -0700
2067125 CVE-2024-21096 et al affects MariaDB in Ubuntu
CVE-2024-21096 Vulnerability in the MySQL Server product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.36 and prior


About   -   Send Feedback to @ubuntu_updates