Posted by & filed under Redis.

Redis 2.4.16 has been released. Here is the short Changelog :

  • INFO command now shows slaves with the correct port number, assuming you use 2.4.16 or greater as slave as well. This makes Redis 2.4.16 compatible with Redis Sentinel. This fix required the introduction of a new internal command called REPLCONF, see commit b998ebe for more information.

The packages are now available for Debian 6.0 “Squeeze” on both amd64 and i386 architectures. The upgrade urgency is low.

Posted by & filed under PHP.

On july 19th 2012, the PHP group has released PHP 5.4.5 and PHP 5.3.15, that bring over 30 bug fixes, including a fix for a security related overflow issue in the stream implementation.

The corresponding packages are now available on Dotdeb for Debian 6.0 “Squeeze” on both amd64 and i386 architectures (see the installation instructions). Please also note that the php5-xhprof package is now available for PHP 5.4.

As usual, please read the ChangeLog before upgrading and be sure to use to the latest packages before reporting any issue.

Posted by & filed under Nginx.

Dotdeb’s packages of Nginx 1.2.2 are now available for Debian 6.0 “Squeeze” (amd64/i386). They fix 11 bugs, enhance IPv6, and introduce weighted ip_hash and least_conn load-balancing to upstream servers. Please take a look at Nginx’ official Changelog before upgrading.

Please also note that :

  • Naxsi has been upgraded to the 0.47 version, and the new nginx-naxsi-ui package provides the autolearning daemon and the web user interface.
  • Nginx Cache Purge has been upgraded to the 1.6 version.
  • Passenger has been upgraded to the 3.0.13 version.

As usual, if you want to know which module has been included in each Nginx flavor, you just have to look at this document.

Posted by & filed under Passenger.

Packages of Passenger 3.0.13 are now available for Debian 6.0 “Squeeze” on both amd64 and i386 architectures.

Here is the announcement from Phusion’s blog :

Phusion Passenger is an Apache and Nginx module for deploying Ruby web applications. It has a strong focus on ease of use, stability and performance. Phusion Passenger is built on top of tried-and-true, battle-hardened Unix technologies, yet at the same time introduces innovations not found in most traditional Unix servers. Since version 3.0 it can also run standalone without an external web server, making it not only easier for first-time users but also ideal on development environments.

Recent changes

Phusion Passenger is under constant maintenance and development. We are pleased to announce Phusion Passenger version 3.0.13. This is a bug fix release.

  • [Nginx] Preferred Nginx version upgraded to 1.2.1.
  • Fixed compilation problems on FreeBSD 6.4. Fixes issue #766.
  • Fixed compilation problems on GCC >= 4.6.
  • Fixed compilation problems on OpenIndiana and Solaris 11. Fixes issue #742.
  • Union Station-related bug fixes.
  • Sending the soft termination signal twice to application processes no longer makes them crash. Patch contributed by Ian Ehlert.

Posted by & filed under PHP.

On june 14th 2012, the PHP group has released PHP 5.4.4, that brings over 30 bug fixes, some of which are security related : A weakness in the DES implementation of crypt and a heap overflow issue in the phar extension. Please also note that the use of php://fd streams is now restricted to the CLI SAPI (php5-cli).

Packages of PHP 5.4.4 are now available on Dotdeb for Debian 6.0 “Squeeze” on both amd64 and i386 architectures (see the installation instructions).

As usual, please read the ChangeLog before upgrading and be sure to use to the latest packages before reporting any issue.

Posted by & filed under Redis.

Redis 2.4.15 has been released. Here is the short Changelog :

  • [BUGFIX] Jemalloc updated to 3.0.0. This fixes a possibly AOF rewrite issue. See issue #504 for info.

The packages are now available for Debian 6.0 “Squeeze” on both amd64 and i386 architectures. The upgrade urgency is moderate if you use AOF, otherwise low.

Posted by & filed under PHP.

On june 14th 2012, the PHP group has released PHP 5.3.14, that brings over 30 bug fixes, some of which are security related : A weakness in the DES implementation of crypt and a heap overflow issue in the phar extension. Please also note that the use of php://fd streams is now restricted to the CLI SAPI (php5-cli).

Packages of PHP 5.3.14 are now available on Dotdeb for Debian 6.0 “Squeeze” on both amd64 and i386 architectures.

As usual, please read the ChangeLog before upgrading and be sure to use to the latest packages before reporting any issue.

Posted by & filed under MySQL.

During the last weeks, MySQL suffered from many vulnerabilities (see DSA-2429-1 and DSA-2496-1). Due to the non-disclosure of security patch information from Oracle, the Debian security team is now forced to ship upstreams version update of MySQL 5.1 (5.1.63 as of this writing).

Then it makes no sense for Dotdeb to duplicate this effort and to maintain the same versions of MySQL 5.1 for Squeeze with the same features and level of optimization. As a consequence the MySQL 5.1 packages has been removed from the Dotdeb repository (you’ll find archived versions here).

Please just be sure to have debian-security in your sources.list to have the most recent security fixes for your MySQL 5.1 server :

deb http://security.debian.org/ squeeze/updates main contrib non-free

Now, don’t worry, if you want to install a recent MySQL 5.5 server, the packages will still be actively maintained on Dotdeb, in terms of features and optimization.

Posted by & filed under MySQL.

Percona toolkit 2.1.2 is now available on Dotdeb for Debian 6.0 “Squeeze”. It brings a lot of bug fixes :

  • pt-table-sync is now working properly, the --lock-and-rename feature has been disabled when using it with MySQL versions that don’t support it reliably.
  • pt-table-checksum and pt-online-schema-change have been enhanced to add even more safety checks, and to detect and deal with some MySQL optimizer misbehaviors, as well as to handle more edge-case behaviors related to things like replication lag.
  • A variety of bugfixes in pretty much every tool because of an expanded test coverage : more MySQL versions, more operating system platforms, more types of MySQL server settings, and more versions of Perl.

Baron Schwartz also wrote a blog post about it.