[ubuntu/saucy-proposed] mongodb 1:2.4.5-1ubuntu1 (Accepted)

James Page james.page at ubuntu.com
Wed Aug 7 12:27:16 UTC 2013 

mongodb (1:2.4.5-1ubuntu1) saucy; urgency=low

  * Merge from Debian unstable, remaining changes:
    - Enable SSL support:
      + d/control: Add libssl-dev to BD's.
      + d/rules: Enabled --ssl option.
      + d/mongodb.conf: Add example SSL configuration options.
    - d/mongodb-server.mongodb.upstart: Add upstart configuration.
    - d/rules: Don't strip binaries during scons build for Ubuntu.
    - d/control: Add armhf to target archs.
    - d/p/0008-ignore-unused-local-typedefs.patch: Add -Wno-unused-typedefs
      to unbreak building with g++-4.8.
    - d/p/0009-boost-1.53.patch: Fixup signed/unsigned casting issue.
    - d/p/0010-install-libs-to-usr-lib-not-usr-lib64-Closes-588557.patch:
      Install libraries to lib not lib64.
    - d/p/0011-Use-a-signed-char-to-store-BSONType-enumerations.patch: Fixup
      build failure on ARM due to missing signed'ness of char cast.
  * Dropped changes, no longer required:
    - d/p/SConscript.client.patch: fixup install of client libraries.
  * d/rules,control: Switch back to using gcc/g++ 4.8 as we have appropriate
    fixes in the Ubuntu delta.
  * d/mongodb-server.mongodb.upstart: Sync changes from upstream packaging
    upstart configuration, specifically;
    - increase nofile limits to 20000/20000.
    - wait 300s between SIGTERM and SIGKILL.

mongodb (1:2.4.5-1) unstable; urgency=critical

  * new upstream release
    https://jira.mongodb.org/browse/SERVER/fixforversion/12519
  * CVE-2013-4650 - fix allows remote authenticated users to obtain
    internal system privileges (Closes: #715007).
  * CVE-2013-2132 and CVE-2013-4142 - Remotely triggered segmentation
    fault in Javascript engine (Closes: #717173).
  * Force use of TIME_UTC_ boost macro (Closes: #710639).
  * Use gcc and g++ 4.7 to avoid #701324 which is still pending.
  * Remove build directory (Closes: #715015).
  * Currently uses embedded V8 as the one in Debian is too old.

Date: Wed, 07 Aug 2013 13:21:03 +0100
Changed-By: James Page <james.page at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/mongodb/1:2.4.5-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 07 Aug 2013 13:21:03 +0100
Source: mongodb
Binary: mongodb mongodb-server mongodb-clients mongodb-dev
Architecture: source
Version: 1:2.4.5-1ubuntu1
Distribution: saucy
Urgency: critical
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: James Page <james.page at ubuntu.com>
Description: 
 mongodb    - object/document-oriented database (metapackage)
 mongodb-clients - object/document-oriented database (client apps)
 mongodb-dev - object/document-oriented database (development)
 mongodb-server - object/document-oriented database (server package)
Closes: 710639 715007 715015 717173
Changes: 
 mongodb (1:2.4.5-1ubuntu1) saucy; urgency=low
 .
   * Merge from Debian unstable, remaining changes:
     - Enable SSL support:
       + d/control: Add libssl-dev to BD's.
       + d/rules: Enabled --ssl option.
       + d/mongodb.conf: Add example SSL configuration options.
     - d/mongodb-server.mongodb.upstart: Add upstart configuration.
     - d/rules: Don't strip binaries during scons build for Ubuntu.
     - d/control: Add armhf to target archs.
     - d/p/0008-ignore-unused-local-typedefs.patch: Add -Wno-unused-typedefs
       to unbreak building with g++-4.8.
     - d/p/0009-boost-1.53.patch: Fixup signed/unsigned casting issue.
     - d/p/0010-install-libs-to-usr-lib-not-usr-lib64-Closes-588557.patch:
       Install libraries to lib not lib64.
     - d/p/0011-Use-a-signed-char-to-store-BSONType-enumerations.patch: Fixup
       build failure on ARM due to missing signed'ness of char cast.
   * Dropped changes, no longer required:
     - d/p/SConscript.client.patch: fixup install of client libraries.
   * d/rules,control: Switch back to using gcc/g++ 4.8 as we have appropriate
     fixes in the Ubuntu delta.
   * d/mongodb-server.mongodb.upstart: Sync changes from upstream packaging
     upstart configuration, specifically;
     - increase nofile limits to 20000/20000.
     - wait 300s between SIGTERM and SIGKILL.
 .
 mongodb (1:2.4.5-1) unstable; urgency=critical
 .
   * new upstream release
     https://jira.mongodb.org/browse/SERVER/fixforversion/12519
   * CVE-2013-4650 - fix allows remote authenticated users to obtain
     internal system privileges (Closes: #715007).
   * CVE-2013-2132 and CVE-2013-4142 - Remotely triggered segmentation
     fault in Javascript engine (Closes: #717173).
   * Force use of TIME_UTC_ boost macro (Closes: #710639).
   * Use gcc and g++ 4.7 to avoid #701324 which is still pending.
   * Remove build directory (Closes: #715015).
   * Currently uses embedded V8 as the one in Debian is too old.
Checksums-Sha1: 
 f65cd27870b09c5e307a6251c187299c78a2fb83 2473 mongodb_2.4.5-1ubuntu1.dsc
 b0b38acb4a170bd4c666087f4aa0a0146e5aeb99 10951980 mongodb_2.4.5.orig.tar.gz
 02fb6a77825dd12725243623dcc0faca7df01d98 57365 mongodb_2.4.5-1ubuntu1.debian.tar.gz
Checksums-Sha256: 
 4b4e1a64c7dfd4c4c5b400f5ded1794019a4cf8e08faafaacc23386e863e828a 2473 mongodb_2.4.5-1ubuntu1.dsc
 7dcded507737ff595e4dbc04e266cf318d81122d6c24c85c159ab0cabf560913 10951980 mongodb_2.4.5.orig.tar.gz
 be49c604bb9de16deb533caf5ec9a99ae8ca8a8f7f8227f4b2270c31e2cc1c2b 57365 mongodb_2.4.5-1ubuntu1.debian.tar.gz
Files: 
 b97f213653f6c7b9bf7a06f9074e48b7 2473 database extra mongodb_2.4.5-1ubuntu1.dsc
 d98382df51af35b4e0e9b6082525ecc1 10951980 database extra mongodb_2.4.5.orig.tar.gz
 524ebeca0c61140c623970b72149b17c 57365 database extra mongodb_2.4.5-1ubuntu1.debian.tar.gz
Original-Maintainer: Antonin Kral <A.Kral at sh.cvut.cz>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iQIcBAEBCAAGBQJSAjvSAAoJEL/srsug59jD1jAQAJCN4yoV2SR1cOmIXkESQaK5
wpPOLLZxv1PL8BQiQ6w6skxKkFeT2rAcFIa5/7K6co5UPbTKBJpYzxFFTBmcMseX
vVXe6IeNkpug/6Omo3SvF8ypTa5eLIzeKof8lklVNDKEVln80Knrljs9s5umiT3M
+R7ctX5iqh3rsbHqSpeiGPeaD3ts2y+Phyv9fr8nH1zopxB7b7Ss0miIBwPtxbxJ
U5jO1apwN/gyoiiWWRiqxLeQkRr2AeB9/wpZYt0UPZ4FNyIet/0fUbIgT0I+4fNG
WEIR4SojGeR3nO0svBezuAs1pAEd/8/Afn5cXvurL8sKGbei3A5oCzBzzcy3wc2G
N0NGBGO5GoxBBJS+bMPqFrJAVMt2+Pn6Y9qPHu/wqQ6yj2STDGl4D7qjNmYpF23Y
Ftv10OHBASRB6geOKwo7VdtMNRYdID7BslUOfJiBOYfZg5+BCFcJBVaAwMSV5pfG
a7uVypCwYoCKWs/vgd4w0VtcU9wDMlZ1AJ5QCEFX1tyilmXGXuLVO0UKdYaGfYCh
oiALvr4tOb7M5ayBROsd1DYpo83sdsmrVVmCi6VFv2FAbq5ZfKmufcR9YVzgOZdI
NeNfln4LBVJYxFnV/aXksS/HmMtkqL/JUqUIEvQV06U6W4K2ctKh3pE20qUKzbCh
oBQhuHmJlSF/rh2iqI+4
=IdGo
-----END PGP SIGNATURE-----

More information about the Saucy-changes mailing list