← Back to team overview

group.of.nepali.translators team mailing list archive

[Bug 1668934] Re: percona-xtradb-cluster-5.6 5.6.34-26.19, percona-galera-3 3.19, percona-xtrabackup 2.3.7

 

This bug was fixed in the package percona-xtrabackup -
2.3.7-0ubuntu0.16.10.1

---------------
percona-xtrabackup (2.3.7-0ubuntu0.16.10.1) yakkety-security; urgency=medium

  * SECURITY UPDATE: Update to 2.3.7 to fix security issue and to
    support update of percona-xtradb-cluster-5.6 to 5.6.34-26.19
    (LP: #1668934):
    - CVE-2016-6225
  * Updates for new release:
    - d/control: Add new BD's on libcurl4-openssl-dev, libev-dev,
      python-docutils, python-sphinx and vim-common.

 -- James Page <james.page@xxxxxxxxxx>  Mon, 06 Mar 2017 10:42:42 +0000

** Changed in: percona-xtradb-cluster-5.6 (Ubuntu Xenial)
       Status: Triaged => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1668934

Title:
  percona-xtradb-cluster-5.6 5.6.34-26.19, percona-galera-3 3.19,
  percona-xtrabackup 2.3.7

Status in percona-galera-3 package in Ubuntu:
  Fix Released
Status in percona-xtrabackup package in Ubuntu:
  Fix Released
Status in percona-xtradb-cluster-5.6 package in Ubuntu:
  Fix Released
Status in percona-galera-3 source package in Xenial:
  Fix Released
Status in percona-xtrabackup source package in Xenial:
  Fix Released
Status in percona-xtradb-cluster-5.6 source package in Xenial:
  Fix Released
Status in percona-galera-3 source package in Yakkety:
  Fix Released
Status in percona-xtrabackup source package in Yakkety:
  Fix Released
Status in percona-xtradb-cluster-5.6 source package in Yakkety:
  Fix Released
Status in percona-galera-3 source package in Zesty:
  Fix Released
Status in percona-xtrabackup source package in Zesty:
  Fix Released
Status in percona-xtradb-cluster-5.6 source package in Zesty:
  Fix Released

Bug description:
  [Impact]
  The version of percona-xtradb-cluster-5.6 in xenial and later is out of date with know security vulnerabilities; users of this package are a risk of compromise.

  [Test Case]
  To verify the upgrade to the newer versions is OK, deployment of a three unit pxc cluster with sample date, upgrade to new version and re-verification of data will be undertaken.

  [Regression Potential]
  Medium; we're re-aligning across all three packages with Percona's upstream repositories however this will require a version dependency bump in percona-xtrabackup (2.2.x -> 2.3.x); this should be fine, but this tool has potential use outside of percona-xtradb-server-5.6 (its great for online backups of MySQL generally).

  The test plan covers its use in PXC; however I would propose an
  extended bake period in -proposed with a call for testing on the
  ubuntu-server list prior to release to -updates.

  [Original Bug Report]
  The version of pxc in Ubuntu is really quite old with a number of security vulnerabilities; we should rebase onto the latest 5.6 release from PXC upstream.

  https://www.percona.com/doc/percona-xtradb-cluster/5.6/release-notes
  /release-notes_index.html

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/percona-galera-3/+bug/1668934/+subscriptions