-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 29 May 2025 22:11:53 +0200 Source: mydumper Binary: mydumper mydumper-dbgsym Architecture: mips64el Version: 0.10.1-1+deb12u2 Distribution: bookworm Urgency: medium Maintainer: mipsel Build Daemon (mipsel-osuosl-05) Changed-By: Lee Garrett Description: mydumper - High-performance MySQL backup tool Changes: mydumper (0.10.1-1+deb12u2) bookworm; urgency=medium . * Non-maintainer upload by the Debian LTS team. * Fix CVE-2025-30224: - The MySQL C client library (libmysqlclient) allows authenticated remote actors to read arbitrary files from client systems via a crafted server response to LOAD LOCAL INFILE query, leading to sensitive information disclosure when clients connect to untrusted MySQL servers without explicitly disabling the local infile capability. Mydumper had the local infile option enabled by default and does not have an option to disable it. This can lead to an unexpected arbitrary file read if the Mydumper tool connects to an untrusted server. * Add autopkgtest integration tests * Add debian/gbp.conf Checksums-Sha1: 7dc3859d1b8f3caa4b6012cfd382c12a619eb78a 123216 mydumper-dbgsym_0.10.1-1+deb12u2_mips64el.deb ee6bf43658a0c64aa0809246823e9ab46ea62a2b 9472 mydumper_0.10.1-1+deb12u2_mips64el-buildd.buildinfo 2709b5839c9ee9b82dc1e8c1aa9b24a85a7ed963 40248 mydumper_0.10.1-1+deb12u2_mips64el.deb Checksums-Sha256: aea91a087939737138932d7dce021818cdb1d1347c66d9bf362dc7d309916c4b 123216 mydumper-dbgsym_0.10.1-1+deb12u2_mips64el.deb d15a66abd04d7690c9073545474b1bd3532d69e1db1a77ec2209407230a1e3ae 9472 mydumper_0.10.1-1+deb12u2_mips64el-buildd.buildinfo f905e76c766c3a4bcd5d39b75c25fb3a399f30c7c8013b9f741201b27709d79e 40248 mydumper_0.10.1-1+deb12u2_mips64el.deb Files: 3a075ff02339218ebe858018ae1756ff 123216 debug optional mydumper-dbgsym_0.10.1-1+deb12u2_mips64el.deb b7aea01191504ea6c40e1cde89cbb965 9472 database extra mydumper_0.10.1-1+deb12u2_mips64el-buildd.buildinfo 58c154511954ac7fa53a2b7b480c7aa6 40248 database extra mydumper_0.10.1-1+deb12u2_mips64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEYLhEzFkGpb3yYRVHmlVdU6AM9BUFAmjB6l8ACgkQmlVdU6AM 9BUUeA//ZQ015UW8UttzQlbvIdb5zL9bXsS7fliWTvLGIjDhm7rtgh7ol/MymH+R PlSsPifNm79k8sM6+xGNikrkwT2VwhI03j91sqgZDblk9lkD3kD88+4gXtQLTE4q xS4Ytrf2nBrS/aeIWAvhGG0BqSMLQ5iz8sj5OQSaj7fZploPkEGyliMNqSRXk6fX Cr2l9ssiad6/7vDpL39DpfAE8CiKu5hm9MxoGLwv/zzufSCbuYQ6T4Pi4A6zpCbH XW5iQK4lJkRqcv8W7Qi/7ZDbdiz4gA85UNlUhoLOlKFQeXrscdlzeglVdzRizp5J CY28VmmgQvGwT/v5vPWtrDJV1iPF/aFXmUhyeTHO/VQZeCWYaXb8NhQ6wnChfTa1 XuUUYd1ldlIxkrHMNe01in3h3zj5QQO87GFJx1bz4GQhx3mDG0W2Ods6nilrp5DP x39DlCDEtU/E8alyEFSes8nzvfuDtFXfXLlase+sBvBgcScRaNCL/rWFSDxypIzl 4TzCBNaPE/XNtfAJ17CLgWFejugfsM6/xGYmK3n8viBItG4eicRNV8nXQiY0z62C lpTANLXt6X0VlEWBkgMROzikxmBOpUrFY5DW9ri/Bts/WAVpah9y433XEZ34H8cR ZmRC2DO6yPKESxpj8W9TOwg674aO3J1ciMAuGkqKt4PNwB5ecAo= =3h1+ -----END PGP SIGNATURE-----