Hi,
MySQL Connector/Net 1.0.10.1 a new version of the all-managed .NET
driver for MySQL has been released. This is a bug fix release for the
current production branch of Connector/Net. Version 1.0.10.1 is
suitable for use with any MySQL version including MySQL-4.1, MySQL-5.0,
MySQL-5.1 beta or the MySQL-6.0 Falcon "Preview".
It is now available in source and binary form from the Connector/Net
download pages at http://dev.mysql.com/downloads/connector/net/1.0.html
and mirror sites (note that not all mirror sites may be up to date at
this point of time - if you can't find this version on some mirror,
please try again later or choose another download site.)
We moved to a new installer technology for this release. Please let us
know what, if any, problems you have with it.
== CHANGELOG ==
--Bugs--
* Bug #24373 High CPU utilization when no idle connection
* Bug #24957 MySql.Data.Types.MySqlConversionException is not marked as
Serializable.
* Bug #25603 Critial ConnectionPool Error in Connector.Net 5.03
* Fixed problem where an attempt to open a connection max pool size
times while the server is down will prevent any further attempts due to
the pool semaphore being full. (Bug #29409)
* Fixed problem where attempting to load a reader into a datatable using
a table with a multi-column primary key would result in multiple
constraints being added to the datatable. No test case added to the 1.0
tree as loading a datatable with a reader is a .Net 2.0 thing. (bug #30204)
--Other--
* Added "Use Procedure Bodies" connection string option to allow calling
procedures without using procedure metadata (if possible).
* Reverted behavior that required parameter names to start with the
parameter marker. We apologize for this back and forth but we
mistakenly changed the behavior to not match what SqlClient supports.
We now support using either syntax for adding parameters however we also
respond exactly like SqlClient in that if you ask for the index of a
parameter using a syntax different than you added the parameter, the result
will be -1.
* Changed installer to Inno Setup
Thanks,
Reggie
--
MySQL Announce Mailing List
For list archives: http://lists.mysql.com/announce
To unsubscribe: http://lists.mysql.com/announce?unsub=yuzo@jinjin.org
Hi,
MySQL Connector/Net 5.0.8.1, a new version of the all-managed .NET
driver for MySQL, has been released. This is a re-release of 5.0.8 due
to an installer bug. With 5.0.8, the installer would on many systems
fail to start reporting an error importing one of our support
libraries. With this release, we believe this to be corrected.
It is now available in source and binary form from the Connector/Net
download pages at http://dev.mysql.com/downloads/connector/net/5.0.html
and mirror sites (note that not all mirror sites may be up to date at
this point of time - if you can't find this version on some mirror,
please try again later or choose another download site.)
For a list of changes, please refer to the change log for 5.0.8.
Thanks,
Reggie
--
MySQL Announce Mailing List
For list archives: http://lists.mysql.com/announce
To unsubscribe: http://lists.mysql.com/announce?unsub=yuzo@jinjin.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA07-235A
Trend Micro ServerProtect Contains Multiple Vulnerabilities
Original release date: August 23, 2007
Last revised: --
Source: US-CERT
Systems Affected
* Trend Micro ServerProtect for Windows/Novell Netware
Overview
A number of vulnerabilities exist in the Trend Micro ServerProtect
antivirus product. These vulnerabilities could allow a remote attacker
to completely compromise an affected system.
I. Description
Multiple buffer overflow vulnerabilities and an integer overflow
vulnerability have been discovered in the RPC interfaces used by
various components in Trend Micro's ServerProtect software package.
These vulnerabilities could be exploited by a remote attacker with the
ability to supply a specially crafted RPC request to the system
running the affected software.
Further information about the vulnerabilities is available in the
Vulnerability Notes Database.
II. Impact
A remote, unauthenticated attacker could execute arbitrary code on a
vulnerable system. The attacker-supplied code would be executed with
system privileges, resulting in a complete compromise of the affected
system.
III. Solution
Apply updates from Trend Micro
Trend Micro has provided an update for these vulnerabilities in
ServerProtect 5.58 for Windows NT/2000/2003 Security Patch 4 -
Build 1185
Administrators are encouraged to review this notice and apply the
patch as soon as possible.
Restrict network access to the affected components
Until the patch can be applied, administrators may wish to block
access to the vulnerable software from outside their network
perimeters, specifically by blocking access to the ports used by the
ServerProtect service (5186/tcp) and the ServerProtect Agent service
(3628/tcp). This will limit exposure to attacks; however, attackers
within the network perimeter could still exploit the vulnerabilities.
IV. References
* US-CERT Vulnerability Notes for Trend Micro ServerProtect Security
Patch 4 -
<http://www.kb.cert.org/vuls/byid?searchview&query=spnt_558_win_en_securitypatch4>
* README for Trend Micro ServerProtect 5.58 for Windows NT/2000/2003
Security Patch 4 - Build 1185 -
<http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch4_readme.txt>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/techalerts/TA07-235A.html>
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@cert.org> with "TA07-235A Feedback VU#959400" in the
subject.
____________________________________________________________________
For instructions on subscribing to or unsubscribing from this
mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
____________________________________________________________________
Produced 2007 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
August 23, 2007: Initial release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iQEVAwUBRs3klPRFkHkM87XOAQL7zAf+PXpaSnXpigRzucYQBATk81xcjzQXhoQx
HSGK1rJfxF6rQfyP/KpoBxMLLVvFkPbixK/Q2Cc3h5SGRzLPk6KANXIW+dJ3lMVl
q0DHKdr8MLtczp+rQv8Dzhwoi+AT1DYmlqEnW0Rb1X5vSK26y1tUNbrIPmVocpIK
DcxFVuFS7NEBIgQEopnZn4cXq59uavjuNR9QMFfekZcM1dMvxkYEG46fY9oggSdD
DPHqg9fkfTZ8ARnzy44L6PMMkRtOTIdCOCfmTj/leC8Y+HggScZ2SziV3CxKvJVZ
2dCMGMkoPlPujqQxgR1L5DAT47KVYR5QbzbVqTFsUiNYH4pJ4W5G1g==
=v2XA
-----END PGP SIGNATURE-----
The Apache UIMA[1] team is pleased to announce the immediate
availability of Apache UIMA 2.2.0-incubating[2]. UIMA is
a component framework for the the development, discovery,
composition and deployment of multi-modal analytics for
the analysis of unstructured information.
This release brings many incremental improvements, for example
in the areas of class loading and pear support. Please
see the release notes[3] for a full list of new features
and fixes in this release.
The Apache UIMA team
[1] http://incubator.apache.org/uima
[2] http://incubator.apache.org/uima/downloads.html
[3] http://incubator.apache.org/uima/downloads/releaseDocs/2.2.0-incubating/RELEASE_NOTES.html
INCUBATION DISCLAIMER
Apache UIMA is an effort undergoing incubation at The Apache Software
Foundation (ASF). Incubation is required of all newly accepted projects
until a further review indicates that the infrastructure, communications,
and decision making process have stabilized in a manner consistent with
other successful ASF projects. While incubation status is not necessarily
a reflection of the completeness or stability of the code, it does
indicate that the project has yet to be fully endorsed by the ASF.
GNU SASL is a modern C library that implement the standard network
security protocol Simple Authentication and Security Layer (SASL). The
framework and a couple of common SASL mechanisms are implemented. GNU
SASL can be used by network applications for IMAP, SMTP and similar
protocols to provide authentication services (and more).
Since version 0.2.17, GNU SASL is developed using Git instead of CVS. A
public git mirror is available from
<http://git.josefsson.org/?p=gsasl.git;a=summary>.
* Version 0.2.21 (released 2007-08-22)
** DIGEST-MD5: Remove the extra leading, trailing, and intermediate commas.
Patch from James Canete <jcanete01@shaw.ca>.
** Fix typos in manual.
Tiny patch from Brad Hards <bradh@frogmouth.net>.
** Update gnulib files.
** API and ABI modifications.
No changes since last version.
Instructions for how to build GNU SASL under uClinux are available from
<http://josefsson.org/uclinux/>. If your toolchain is broken, it is
possible to build GNU SASL without using the ./configure mechanism, see
<http://josefsson.org/uclinux/old/>.
Improving GNU SASL is costly, but you can help! We are looking for
organizations that find GNU SASL useful and wish to contribute back.
You can contribute by reporting bugs, improve the software, purchase
support contracts, or donate money or equipment.
Commercial support contracts for GNU SASL are available, and they help
finance continued maintenance. Simon Josefsson Datakonsult, a
Stockholm based privately held company, is currently funding GNU SASL
maintenance. We are always looking for interesting development
projects. See http://josefsson.org/ for more details.
All manual formats are available from:
http://josefsson.org/gsasl/manual/
Specifically, the following formats are available.
The main manual:
http://josefsson.org/gsasl/manual/gsasl.html - HTML format
http://josefsson.org/gsasl/manual/gsasl.pdf - PDF format
API Reference manual:
http://josefsson.org/gsasl/reference/ch01.html - GTK-DOC HTML
Doxygen documentation:
http://josefsson.org/gsasl/doxygen/ - HTML format
http://josefsson.org/gsasl/doxygen/gsasl.pdf - PDF format
If you need help to use GNU SASL, or want to help others, you are
invited to join our help-gsasl mailing list, see:
<http://lists.gnu.org/mailman/listinfo/help-gsasl>.
The project page of the library is available at:
http://www.gnu.org/software/gsasl/
http://josefsson.org/gsasl/
Here are the build reports for various platforms:
http://autobuild.josefsson.org/gsasl/
Daily builds of the package are available from:
http://daily.josefsson.org/gsasl/
Here are the compressed sources of the entire package:
http://josefsson.org/gsasl/releases/gsasl-0.2.21.tar.gz (3.2MB)
http://josefsson.org/gsasl/releases/gsasl-0.2.21.tar.gz.sig (PGP)
Here are the compressed sources of the LGPL library (included above):
http://josefsson.org/gsasl/releases/libgsasl-0.2.21.tar.gz (760KB)
http://josefsson.org/gsasl/releases/libgsasl-0.2.21.tar.gz.sig (PGP)
The software is cryptographically signed by the author using an
OpenPGP key identified by the following information:
pub 1280R/B565716F 2002-05-05 [expires: 2008-06-30]
Key fingerprint = 0424 D4EE 81A0 E3D1 19C6 F835 EDA2 1E94 B565 716F
uid Simon Josefsson <simon@josefsson.org>
uid Simon Josefsson <jas@extundo.com>
The key is available from:
http://josefsson.org/key.txt
dns:b565716f.josefsson.org?TYPE=CERT
Here are the SHA-1 and SHA-224 checksums:
971ede97fc148ac3238415c55b1b95eca485afac gsasl-0.2.21.tar.gz
b8cd4746fcdd0bef7b075bb41f0811fc8ef7322c gsasl-0.2.21.tar.gz.sig
1b1e7b2277318267c0aabf62fff85b2840976dba2162f3b016a93988 gsasl-0.2.21.tar.gz
89a8a278fdb0acaac337428ebb3d579cb7deb4fcf410326cbd37e316 gsasl-0.2.21.tar.gz.sig
1ad5b257ad46d1e742bde618a8ed0e6587dc93ce libgsasl-0.2.21.tar.gz
73619090b3a1b5ddbb11a59e1de4a39e5b966b07 libgsasl-0.2.21.tar.gz.sig
b7cf023e8be9214fb144de754c58a067e9881fb037b2aa77e8296a6b libgsasl-0.2.21.tar.gz
7274f8422a16ce8cb9640dd69584cb38901bff779c5c0baa8d611893 libgsasl-0.2.21.tar.gz.sig
Enjoy,
Simon