Ubuntu
mariadb-10.0 package

  1. Bug #1464895
  2. Comment #2

Comment 2 for bug 1464895

Revision history for this message
Otto Kekäläinen (otto) wrote : Re: CVE-2015-3152: MySQL SSL/TLS downgrade downgrade vulnerability

For complete pristine-tar/git-buildpackage history see https://github.com/ottok/mariadb-5.5/tree/ubuntu-14.10

The attached debdiff is produced by running
 mariadb-5.5$ git diff ubuntu/5.5.43-1ubuntu0.14.10.1 ubuntu-14.10 debian/ > 5.5.44-1ubuntu0.14.10.1.diff

Apply this debdiff on top of the current 5.5.43 package in Ubuntu 14.10 and for the non debian/* stuff, get the upstream mariadb-5.5.44.tar.gz package from MariaDB.org (use uscan with pgp signature checking, the package supports it).