Accepting request 223756 from server:database

Percona Toolkit 2.2.7 [bnc#864194] CVE-2014-2029 (forwarded request 223755 from AndreasStieger) OBS-URL: https://build.opensuse.org/request/show/223756 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/percona-toolkit?expand=0&rev=17
2014-02-25 06:33:45 +00:00 · 2014-02-25 06:33:45 +00:00 · b23d035df0
commit b23d035df0
parent 1b9c17cb02 df72fb23a1
5 changed files with 89 additions and 77 deletions
--- a/percona-toolkit-2.2.6.tar.gz
+++ b/percona-toolkit-2.2.6.tar.gz
@ -1,3 +0,0 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:24cd6924080ef235b770b3d6ab7f0ec4a023ceee1a9c7a50f983fdc6fc2787c8
 size 1453461
--- a/percona-toolkit-2.2.7.tar.gz
+++ b/percona-toolkit-2.2.7.tar.gz
@ -0,0 +1,3 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:49ed1fa6d46b8211ba82355ec3c9dd0614c3b29fd31993123f2041e85a38891e
 size 1451687
--- a/percona-toolkit-2.2.x-disable-default-version-check.patch
+++ b/percona-toolkit-2.2.x-disable-default-version-check.patch
@ -40,11 +40,11 @@ tools actually support the version check and would throw warnings.
 bin/pt-variable-advisor      |    2 --
 18 files changed, 36 deletions(-)
-Index: percona-toolkit-2.2.6/bin/pt-archiver
+Index: percona-toolkit-2.2.7/bin/pt-archiver
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-archiver	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-archiver	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-archiver	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-archiver	2014-02-24 19:09:48.000000000 +0000
-@@ -7482,8 +7482,6 @@ Show version and exit.
+@@ -7465,8 +7465,6 @@ Show version and exit.
 =item --[no]version-check
@ -53,11 +53,11 @@ Index: percona-toolkit-2.2.6/bin/pt-archiver
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-config-diff
+Index: percona-toolkit-2.2.7/bin/pt-config-diff
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-config-diff	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-config-diff	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-config-diff	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-config-diff	2014-02-24 19:09:48.000000000 +0000
-@@ -5580,8 +5580,6 @@ Show version and exit.
+@@ -5563,8 +5563,6 @@ Show version and exit.
 =item --[no]version-check
@ -66,11 +66,11 @@ Index: percona-toolkit-2.2.6/bin/pt-config-diff
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-deadlock-logger
+Index: percona-toolkit-2.2.7/bin/pt-deadlock-logger
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-deadlock-logger	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-deadlock-logger	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-deadlock-logger	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-deadlock-logger	2014-02-24 19:09:48.000000000 +0000
-@@ -5349,8 +5349,6 @@ Show version and exit.
+@@ -5332,8 +5332,6 @@ Show version and exit.
 =item --[no]version-check
@ -79,11 +79,11 @@ Index: percona-toolkit-2.2.6/bin/pt-deadlock-logger
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-diskstats
+Index: percona-toolkit-2.2.7/bin/pt-diskstats
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-diskstats	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-diskstats	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-diskstats	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-diskstats	2014-02-24 19:09:48.000000000 +0000
-@@ -5485,8 +5485,6 @@ Show version and exit.
+@@ -5468,8 +5468,6 @@ Show version and exit.
 =item --[no]version-check
@ -92,11 +92,11 @@ Index: percona-toolkit-2.2.6/bin/pt-diskstats
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-duplicate-key-checker
+Index: percona-toolkit-2.2.7/bin/pt-duplicate-key-checker
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-duplicate-key-checker	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-duplicate-key-checker	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-duplicate-key-checker	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-duplicate-key-checker	2014-02-24 19:09:48.000000000 +0000
-@@ -5450,8 +5450,6 @@ Show version and exit.
+@@ -5430,8 +5430,6 @@ Show version and exit.
 =item --[no]version-check
@ -105,11 +105,11 @@ Index: percona-toolkit-2.2.6/bin/pt-duplicate-key-checker
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-find
+Index: percona-toolkit-2.2.7/bin/pt-find
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-find	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-find	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-find	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-find	2014-02-24 19:09:48.000000000 +0000
-@@ -4457,8 +4457,6 @@ Show version and exit.
+@@ -4440,8 +4440,6 @@ Show version and exit.
 =item --[no]version-check
@ -118,11 +118,11 @@ Index: percona-toolkit-2.2.6/bin/pt-find
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-fk-error-logger
+Index: percona-toolkit-2.2.7/bin/pt-fk-error-logger
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-fk-error-logger	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-fk-error-logger	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-fk-error-logger	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-fk-error-logger	2014-02-24 19:09:48.000000000 +0000
-@@ -4352,8 +4352,6 @@ Show version and exit.
+@@ -4335,8 +4335,6 @@ Show version and exit.
 =item --[no]version-check
@ -131,11 +131,11 @@ Index: percona-toolkit-2.2.6/bin/pt-fk-error-logger
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-heartbeat
+Index: percona-toolkit-2.2.7/bin/pt-heartbeat
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-heartbeat	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-heartbeat	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-heartbeat	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-heartbeat	2014-02-24 19:09:48.000000000 +0000
-@@ -6036,8 +6036,6 @@ Show version and exit.
+@@ -6019,8 +6019,6 @@ Show version and exit.
 =item --[no]version-check
@ -144,11 +144,11 @@ Index: percona-toolkit-2.2.6/bin/pt-heartbeat
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-index-usage
+Index: percona-toolkit-2.2.7/bin/pt-index-usage
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-index-usage	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-index-usage	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-index-usage	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-index-usage	2014-02-24 19:09:48.000000000 +0000
-@@ -7365,8 +7365,6 @@ Show version and exit.
+@@ -7348,8 +7348,6 @@ Show version and exit.
 =item --[no]version-check
@ -157,11 +157,11 @@ Index: percona-toolkit-2.2.6/bin/pt-index-usage
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-kill
+Index: percona-toolkit-2.2.7/bin/pt-kill
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-kill	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-kill	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-kill	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-kill	2014-02-24 19:09:48.000000000 +0000
-@@ -7643,8 +7643,6 @@ Show version and exit.
+@@ -7626,8 +7626,6 @@ Show version and exit.
 =item --[no]version-check
@ -170,11 +170,11 @@ Index: percona-toolkit-2.2.6/bin/pt-kill
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-online-schema-change
+Index: percona-toolkit-2.2.7/bin/pt-online-schema-change
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-online-schema-change	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-online-schema-change	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-online-schema-change	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-online-schema-change	2014-02-24 19:09:48.000000000 +0000
-@@ -11315,8 +11315,6 @@ Show version and exit.
+@@ -11298,8 +11298,6 @@ Show version and exit.
 =item --[no]version-check
@ -183,11 +183,11 @@ Index: percona-toolkit-2.2.6/bin/pt-online-schema-change
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-query-digest
+Index: percona-toolkit-2.2.7/bin/pt-query-digest
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-query-digest	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-query-digest	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-query-digest	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-query-digest	2014-02-24 19:09:48.000000000 +0000
-@@ -16285,8 +16285,6 @@ Show version and exit.
+@@ -16265,8 +16265,6 @@ Show version and exit.
 =item --[no]version-check
@ -196,11 +196,11 @@ Index: percona-toolkit-2.2.6/bin/pt-query-digest
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-slave-delay
+Index: percona-toolkit-2.2.7/bin/pt-slave-delay
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-slave-delay	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-slave-delay	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-slave-delay	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-slave-delay	2014-02-24 19:09:48.000000000 +0000
-@@ -4715,8 +4715,6 @@ Show version and exit.
+@@ -4698,8 +4698,6 @@ Show version and exit.
 =item --[no]version-check
@ -209,11 +209,11 @@ Index: percona-toolkit-2.2.6/bin/pt-slave-delay
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-slave-restart
+Index: percona-toolkit-2.2.7/bin/pt-slave-restart
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-slave-restart	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-slave-restart	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-slave-restart	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-slave-restart	2014-02-24 19:09:48.000000000 +0000
-@@ -5655,8 +5655,6 @@ Show version and exit.
+@@ -5638,8 +5638,6 @@ Show version and exit.
 =item --[no]version-check
@ -222,11 +222,11 @@ Index: percona-toolkit-2.2.6/bin/pt-slave-restart
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-table-checksum
+Index: percona-toolkit-2.2.7/bin/pt-table-checksum
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-table-checksum	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-table-checksum	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-table-checksum	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-table-checksum	2014-02-24 19:09:48.000000000 +0000
-@@ -12331,8 +12331,6 @@ Show version and exit.
+@@ -12314,8 +12314,6 @@ Show version and exit.
 =item --[no]version-check
@ -235,11 +235,11 @@ Index: percona-toolkit-2.2.6/bin/pt-table-checksum
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-table-sync
+Index: percona-toolkit-2.2.7/bin/pt-table-sync
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-table-sync	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-table-sync	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-table-sync	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-table-sync	2014-02-24 19:09:48.000000000 +0000
-@@ -12518,8 +12518,6 @@ Show version and exit.
+@@ -12501,8 +12501,6 @@ Show version and exit.
 =item --[no]version-check
@ -248,11 +248,11 @@ Index: percona-toolkit-2.2.6/bin/pt-table-sync
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-upgrade
+Index: percona-toolkit-2.2.7/bin/pt-upgrade
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-upgrade	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-upgrade	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-upgrade	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-upgrade	2014-02-24 19:09:48.000000000 +0000
-@@ -11020,8 +11020,6 @@ Show version and exit.
+@@ -11003,8 +11003,6 @@ Show version and exit.
 =item --[no]version-check
@ -261,11 +261,11 @@ Index: percona-toolkit-2.2.6/bin/pt-upgrade
 Check for the latest version of Percona Toolkit, MySQL, and other programs.
 This is a standard "check for updates automatically" feature, with two
-Index: percona-toolkit-2.2.6/bin/pt-variable-advisor
+Index: percona-toolkit-2.2.7/bin/pt-variable-advisor
 ===================================================================
--- percona-toolkit-2.2.6.orig/bin/pt-variable-advisor	2013-12-20 03:10:55.000000000 +0000
+--- percona-toolkit-2.2.7.orig/bin/pt-variable-advisor	2014-02-20 07:20:28.000000000 +0000
-+++ percona-toolkit-2.2.6/bin/pt-variable-advisor	2014-02-16 23:14:22.000000000 +0000
+++ percona-toolkit-2.2.7/bin/pt-variable-advisor	2014-02-24 19:09:48.000000000 +0000
-@@ -5985,8 +5985,6 @@ Show version and exit.
+@@ -5968,8 +5968,6 @@ Show version and exit.
 =item --[no]version-check
--- a/percona-toolkit.changes
+++ b/percona-toolkit.changes
@ -1,7 +1,19 @@
 -------------------------------------------------------------------
 Mon Feb 24 19:29:34 UTC 2014 - andreas.stieger@gmx.de
 - Percona Toolkit 2.2.7  [bnc#864194] CVE-2014-2029
  Improves sanitisation of input and output for commands run when
  performing a version check.
  As this would still transmit data to an external entity without
  prompting, the automatic version check remains disabled in this
  package unless requested via command line or global/tool specific
  or user configuratoin. (--version-check)
 -------------------------------------------------------------------
 Sun Feb 16 23:57:34 UTC 2014 - andreas.stieger@gmx.de
- disable automatic version check for all tools  [bnc#864194]
+- disable automatic version check for all tools
  [bnc#864194] CVE-2014-2029
  Prevents transmission of version information to an external host
  in the default configuration.
  Can be used by owner of a Percona Server (or an attacker who can
--- a/percona-toolkit.spec
+++ b/percona-toolkit.spec
@ -20,7 +20,7 @@ Name:           percona-toolkit
 Summary:        Advanced MySQL and system command-line tools
 License:        GPL-2.0
 Group:          Productivity/Databases/Tools
-Version:        2.2.6
+Version:        2.2.7
 Release:        0
 Url:            https://www.percona.com/software/percona-toolkit/
 Source:         https://www.percona.com/redir/downloads/%{name}/%{version}/%{name}-%{version}.tar.gz