Branches for Hoary

Author: Adam Conrad
Revision Date: 2005-04-06 01:14:24 UTC

* SECURITY UPDATE: privilege escalation fix (CAN-2004-0957)
* Add (and apply) debian/patches/CAN-2004-0957_db_grant_underscore.diff
  - Fix a security issue where a local user with privileges on a database
    whose name contains an underscore may, in some cases, be able to
    grant privileges to other databases with similar names.
* NOTE: This vulnerability was originally believed to have been fixed
  upstream in version 4.0.21, however that fix was incomplete.

Author: Martin Pitt
Revision Date: 2006-05-15 11:26:54 UTC

* Replace ignore_null_characters.patch with nul_logging_bypass.patch: Do not
  simply ignore NUL characters in comments, but modify the logging function
  instead to log everything including the NULs.
* Thanks to Sean Finney and Christian Hammers for pointing this out and for
  supplying the patch.
* Add CVE number to 4.0.21-1 changelog.