[Secure-testing-commits] r25280 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jan 19 20:19:17 UTC 2014 

Author: carnil
Date: 2014-01-19 20:19:17 +0000 (Sun, 19 Jan 2014)
New Revision: 25280

Modified:
   data/CVE/list
Log:
Update mysql-5.5 CVEs with fixed versions from unstable upload

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-01-19 10:31:52 UTC (rev 25279)
+++ data/CVE/list	2014-01-19 20:19:17 UTC (rev 25280)
@@ -2093,8 +2093,8 @@
 CVE-2014-0437 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
 	- mariadb-5.5 <unfixed>
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0436
 	RESERVED
 CVE-2014-0435 (Unspecified vulnerability in the Oracle Transportation Management ...)
@@ -2137,7 +2137,7 @@
 	RESERVED
 CVE-2014-0420 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	- mariadb-5.5 <unfixed>
-	- mysql-5.5 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
 	- mysql-5.1 <not-affected> (Only affects Mysql 5.5 and 5.6)
 CVE-2014-0419 (Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) ...)
 	NOT-FOR-US: Oracle Secure Global Desktop
@@ -2160,8 +2160,8 @@
 CVE-2014-0412 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
 	- mariadb-5.5 <unfixed>
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0411 (Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; ...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 7u51-2.4.4-1
@@ -2192,13 +2192,13 @@
 	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2014-0402 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0401 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
 	- mariadb-5.5 <unfixed>
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0400 (Unspecified vulnerability in the Oracle Internet Directory component ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2014-0399 (Unspecified vulnerability in the Oracle Transportation Management ...)
@@ -2215,8 +2215,8 @@
 	NOT-FOR-US: PeopleSoft Enterprise
 CVE-2014-0393 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0392 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...)
 	NOT-FOR-US: PeopleSoft Enterprise
 CVE-2014-0391 (Unspecified vulnerability in the Oracle Identity Manager component in ...)
@@ -2232,8 +2232,8 @@
 	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 CVE-2014-0386 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2014-0385 (Unspecified vulnerability in Oracle Java SE 7u45, when installing on ...)
 	- openjdk-6 <not-affected> (Specific to MacOS X)
 	- openjdk-7 <not-affected> (Specific to MacOS X)
@@ -6180,8 +6180,8 @@
 CVE-2013-5908 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
 	{DSA-2845-1}
 	- mariadb-5.5 <unfixed>
-	- mysql-5.5 <unfixed>
-	- mysql-5.1 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
+	- mysql-5.1 <removed>
 CVE-2013-5907 (Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; ...)
 	- openjdk-6 <unfixed>
 	- openjdk-7 7u51-2.4.4-1
@@ -6228,7 +6228,7 @@
 	- virtualbox-ose <removed>
 	- virtualbox <unfixed> (bug #735410)
 CVE-2013-5891 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
-	- mysql-5.5 <unfixed>
+	- mysql-5.5 5.5.35+dfsg-1
 	- mysql-5.1 <not-affected> (Only affects 5.5 and 5.6)
 CVE-2013-5890 (Unspecified vulnerability in the Oracle Payroll component in Oracle ...)
 	NOT-FOR-US: Oracle E-Business Suite
@@ -15830,7 +15830,7 @@
 	[squeeze] - monkey <no-dsa> (Minor issue)
 CVE-2013-2162 (Race condition in the post-installation script ...)
 	{DSA-2818-1}
-	- mysql-5.5 <unfixed> (low; bug #711600)
+	- mysql-5.5 5.5.35+dfsg-1 (low; bug #711600)
 	- mysql-5.1 <removed> (low)
 	[squeeze] - mysql-5.1 <no-dsa> (Minor issue, can be included in a future DSA)
 CVE-2013-2161 (XML injection vulnerability in account/utils.py in OpenStack Swift ...)

More information about the Secure-testing-commits mailing list