Subject: CVS commit: pkgsrc/databases/myodbc
From: John Nemeth
Date: 2021-01-11 06:49:29
Message id: 20210111054929.E5ED2FA9D@cvs.NetBSD.org

Log Message:
myodbc:  Update to 5.3.14

5.3.14

  Security Notes:
  Functionality added or changed:
  * Unit tests will allocate/deallocate STMT/DBC/ENV for each test
  * Added processing of new UTF8MB4 collations
  Bugs fixed:
  * myodbc-installer does not show all DSN options (Bug #29753227/95290)
  * MASTER: Crash noticed in SQLSetPos (Bug #29630465)

  Built using MySQL 5.7.28

5.3.13

  Security Notes:
  * Connector/ODBC 5.3.13 Commercial upgrades the linked OpenSSL
    library to version 1.0.2r which has been publicly reported
    as not vulnerable to CVE-2019-1559
    (Bug #29489006, CVE-2019-1559)
  Functionality added or changed:
  Bugs fixed:
  * SQL_NO_DATA when fetching VARCHAR(500) with filter
    (Bug# 29512548/94545)

  Built using MySQL 5.7.26

5.3.12

  Security Notes:
  Functionality added or changed:
  * New connection option for ODBC driver to enable LOAD DATA LOCAL INFILE
  Bugs fixed:
  * Dynamic linking is broken in MyODBC 5.3.11 (Bug# 28609434/92319)
  * Crash in SQLBulkOperations when NO_SSPS is set to 0 (Bug #28289320)

  Built using MySQL 5.7.25

5.3.11

  Security Notes:
  * Fix issues found by Fortify (WL #11829)
  Functionality added or changed:
  * Fixes in ODBC 5.3 from 8.0 code merge (WL #12199)
  * Make sure ODBC 5.3 works with new 8.0 auth. mechanism. (WL #11962)
  Bugs fixed:
  * Source character set not supported by client error on SHOW TABLES command
    (Bug# 28116892/90984)
  * SQLColAttribute/SQL_DESC_TYPE_NAME text instead of longtext for
    longtext col (Bug# 11761407/53900)
  * Connector uses UTF8 charset instead of UTF8MB4 (Bug# 28204756)
  * SQLMoreResults does not set statement errors correctly
    (Bug# 11757423/49466)
  * Master: Connection fails for cache256 user when GET_SERVER_PUBLIC_KEY=1
    (Bug# 28359632)

  Built using MySQL 5.7.23

5.3.10

  Security Notes:
  Functionality added or changed:
  * Build ODBC Connector with libmysqlclient linked dynamically (WL #11105)
  Bugs fixed:
  * ODBC Driver issue with SELECT for UPDATE (Bug# 26646688/87457)
  * Contribution: Compilation fixes for MySQL 5.5 (Bug# 26633971/87413)
  * Contribution: Fix truncated "SSL Certificate Authority" label
    (Bug# 26579169/87325)
  * OpenRecordset leaking memory client side on Windows ODBC Client
    (Bug# 27155880/86473)
  * MySQL Connector/ODBC 5.2.5 - Command Timeout does not work
    (Bug# 26474362/69416)
  * Calling MySQLDrivercConnect with a NULL pcbConnStrOut causes a crash
    (Bug# 27101767/88371)

  Built using MySQL 5.7.20

5.3.9

  Security Notes:
  Functionality added or changed:
  * Added two new CMake build options. STATIC_MSVCRT to switch /MT and /MD
    compiler options in Windows. WITH_NODEFAULTLIB to specify the
    /NODEFAULTLIB linker option. (WL# 10890)
  Bugs fixed:
  * Segmentation fault in SQLFetch() when used with dynamic cursor
    (Bug# 18805392)
  * SQLExecute() after SQLFreeStmt(SQL_RESET_PARAMS) results
    in assert failure (Bug# 19148246)
  * SQLForeignKeys() crashing when SQL_MODE='ANSI_QUOTES'
    (Bug# 18641824)
  * SQLForeignKeys() returns empty result with NO_I_S=0
    (Bug# 26388694)

  Built using MySQL 5.7.19

----

5.3.8

  Security Notes:
  * Connector/ODBC 5.3.8 Commercial upgrades the linked OpenSSL
    library to version 1.0.2k which has been publicly reported
    as not vulnerable to CVE-2017-3732
    (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3732)
    (Bug #25615448, CVE-2017-3732)
  Functionality added or changed:
  * Added a new connection option NO_DATE_OVERFLOW to control returning
    of errors when the TIMESTAMP structure used for DATE column contains
    non-zero time part (Bug# 25386024)
  Bugs fixed:
  * SQL_ATTR_MAX_ROWS applies to all result sets on the statement,
    and not connection (Bug# 17259397/69554)
  * SQLTABLES patch (Bug 13914518) has to be extended for NO_I_S case
    (Bug# 14005343)
  * Connector/ODBC does not send correct error message when 2006 error occurs
    (Bug #25671389)
  * Error in Windows Setup Wizard Custom Setup Dialog
    (Bug# 25247807/84190)
  * Contents in embedded help for myodbc-installer are outdated
    (Bug# 18896110/72852)
  * SQLGetData() with invalid column number crashes (Bug# 18636600)
  * Assert failure in SQLSetDescField() API (Bug# 18641633)
  * Metadata functions crash when the catalog/table/column name is long
    (Bug #18796005)
  * Prefetch causes syntax errors in select queries with parameters
    (Bug# 17386788)

  Built using MySQL 5.7.18

----

5.3.7

  Security Notes:
  * Connector/ODBC 5.3.7 Commercial upgrades the linked OpenSSL
    library to version 1.0.2j which has been publicly reported
    as not vulnerable to CVE-2016-6304
    (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6304)
    (Bug #24753385, CVE-2016-6304)

  Functionality added or changed:
  * Added new options to control TLS versions for connecting:
    NO_TLS_1_0, NO_TLS_1_1, NO_TLS_1_2. By Default all TLS versions are enabled
    and options allow to disable using of a particular TLS version.
    (Bug# 23496903/81640)
  * Added a new option SSLMODE to set the SSL mode before connection is made.
    The option value can be set to any of the follwing: DISABLED, PREFERRED,
    REQUIRED, VERIFY_CA, VERIFY_IDENTITY. This option will override
    the deprecated SSLVERIFY and SSL_ENFORCE.
    (Bug# 23497043/81641)

  Bugs fixed:
  * Assertion in ODBC Driver when calling mysql_stmt_close() on a broken
    connection (Bug# 25109356/83858)
  * Connector ODBC does not build with newer CMake (Bug# 22746557)
  * Installation fails in OSX El Capitan (23123503/81113)

  Built using MySQL 5.7.17.

----

5.3.6

  Functionality added or changed:
  * Keywords specific to MySQL server 5.7 (WL#7992)
  * Implement SQL_ATTR_QUERY_TIMEOUT statement attribute (WL#7991)
  * Added DEFAULT_AUTH and PLUGIN_DIR options in connection parameters.
  * Added DISABLE_SSL_DEFAULT connection parameter to disable
    connecting through SSL by default.
  * Added SSL_ENFORCE connection parameter to enforce SSL connection.

  Bugs fixed:
  * ODBC Driver not parsing comments correctly (Bug# 16613308/53891)
  * Calling SQLGetDiagField with DIAGIDENTIFIER SQL_DIAG_ROW_COUNT always
    returns 0 (Bug #11750296/40771)
  * ADO hangs when using MySQL ODBC 5.3 ANSI Driver with French characters
    (Bug# 20526062)
  * Connector/ODBC fails to build when using libmysqlclient 5.7
    (Bug# 20685833/76261)
  * malloc/free mismatch in MySqlGetPrivateProvileStringW
    (Bug# 21074676/76984)

----

5.3.5

  Security Notes:
  * Connector/ODBC 5.3.5 Commercial upgrades the linked OpenSSL
    library to version 1.0.1m which has been publicly reported
    as not vulnerable to CVE-2015-0286
    (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0286).

    Since the only change in Connector/ODBC 5.3.5 is the inclusion
    of OpenSSL libraries publicly reported as unaffected by
    CVE-2015-0286, and since Oracle-produced MySQL Community
    builds use YaSSL libraries which have been reported as not
    affected by CVE-2015-0286, Oracle will not produce builds for
    Connector/ODBC Community for version 5.3.5. This means the
    Community edition of Connector/ODBC will skip version 5.3.5.
    (Bug #20747740, CVE-2015-0286)

----

5.3.4

  Functionality added or changed:
  * New ODBC connection option to specify the location of RSA public key
    (WL #7911)

  Bugs fixed:
  * SSL CA Path cannot be selected in Linux GUI (Bug #18813389/72716)

----

5.3.3

  Functionality added or changed:

  Bugs fixed:
  * Seg Fault in SQLForeignKeys() when column name contains special characters
    (Bug #18286118)
  * Add NULL handle checks in ODBC API functions (WL #7807)

----

Files:
RevisionActionfile
1.44modifypkgsrc/databases/myodbc/Makefile
1.12modifypkgsrc/databases/myodbc/PLIST
1.13modifypkgsrc/databases/myodbc/distinfo
1.3modifypkgsrc/databases/myodbc/patches/patch-CMakeLists.txt