Testing needed for Firebird 2.0.4 and Firebird 2.1.0 packages for debian
As you may have noticed, debian experimental got firebird2.0 (2.0.4) and
firebird2.1 (2.1.0).
I would really appreciate if you give these some testing.
Tag: debian
Firebird ports for Intanium and hppa to be released soon
If you watch the debian building logs for different architectures then there are a few ones left to be done , Itanium , Hppa and Alpha (dead one)
http://buildd.debian.org/build.cgi?pkg=firebird2.0
and seem that this will be solved very soon
firebird2.1 security bug is now fixed in debian experimental
The security bug is now fixed in debian experimental
and here is the changelog
firebird2.0 security bug is now fixed in debian/gentoo
There is an grave security bug in firebird package 2.0 from debian and ubuntu
where an user can connect to the server with SYSDBA and NO password
The bug is now fixed in debian sid (unstable)
http://packages.debian.org/sid/firebird2.0-super
and here is the changelog
firebird2.0-super.init: stop exporting ISC_USER and ISC_PASSWORD.
Fixes a hole causing remote connections as user SYSDBA to succeed
without giving a password.
Closes: #481389 and CVE-2008-1880
Firebird 2.1 package for debian experimental is online
You can test and install it on debian experimental
firebird 2.1 uploaded to debian and ubuntu hardy ppa
Ubuntu 8.04 released with Firebird+Flamerobin included
Ubuntu Hardy Heron 8.04 is released with firebird2.0 and flamerobin included in their repository
Here is an easy guide for installing firebird2.0 and then follow the flamerobin 0.8.6 guide
ps: soon there will be an firebird2.1 package for ubuntu created (it wasn’t possible to include it in this short period of time after release)
Flamerobin 0.8.6 officially accepted in ubuntu hardy
Flamerobin 0.8.6 is now accepted in the official ubuntu 8.04 hardy repository
http://packages.ubuntu.com/hardy/utils/flamerobin
here is the distro list where flamerobin 0.8.6 is included
Debian http://packages.debian.org/lenny/flamerobin
Gentoo http://gentoo-portage.com/dev-db/flamerobin
New Firebird packages fix several vulnerabilities in debian
This Debian security advisory is a bit unusual. While it’s normally
our strict policy to backport security bugfixes to older releases, this
turned out to be infeasible for Firebird 1.5 due to large infrastructural
changes necessary to fix these issues. As a consequence security support
for Firebird 1.5 is hereby discontinued, leaving two options to
administrators running a Firebird database:
flamerobin 0.8.6-1 accepted in debian unstable
flamerobin 0.8.6 is available in unstable and can be installed /compiled in any debian version
here is the message from the debian package page
[2008-03-18] Accepted 0.8.6-1 in unstable (low) (by Damyan Ivanov)