[Secure-testing-commits] r29577 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Oct 22 15:42:53 UTC 2014 

Author: carnil
Date: 2014-10-22 15:42:53 +0000 (Wed, 22 Oct 2014)
New Revision: 29577

Modified:
   data/CVE/list
Log:
Another round of MariaDB CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-10-22 15:36:51 UTC (rev 29576)
+++ data/CVE/list	2014-10-22 15:42:53 UTC (rev 29577)
@@ -4056,7 +4056,8 @@
 CVE-2014-6469 (Unspecified vulnerability in Oracle MySQL Server 5.5.39 and eariler ...)
 	{DSA-3054-1}
 	- mysql-5.5 <unfixed>
-	- mariadb-5.5 <undetermined>
+	- mariadb-5.5 <unfixed>
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <undetermined>
 CVE-2014-6468 (Unspecified vulnerability in Oracle Java SE 8u20 allows local users to ...)
 	- openjdk-8 <unfixed>
@@ -4071,12 +4072,14 @@
 CVE-2014-6464 (Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier ...)
 	{DSA-3054-1}
 	- mysql-5.5 <unfixed>
-	- mariadb-5.5 <undetermined>
+	- mariadb-5.5 <unfixed>
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <undetermined>
 CVE-2014-6463 (Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier ...)
 	{DSA-3054-1}
 	- mysql-5.5 5.5.39-1
-	- mariadb-5.5 <undetermined>
+	- mariadb-5.5 5.5.39-1
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <undetermined>
 CVE-2014-6462 (Unspecified vulnerability in the Oracle Access Manager component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
@@ -6814,6 +6817,7 @@
 CVE-2014-4274 (Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier ...)
 	{DSA-3054-1 DLA-75-1}
 	- mariadb-5.5 5.5.39-1
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- mysql-5.5 5.5.39-1
 	- mysql-5.1 <removed>
 	- percona-xtradb-cluster-5.5 <undetermined>
@@ -9201,7 +9205,8 @@
 CVE-2014-4287 (Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier ...)
 	{DSA-3054-1}
 	- mysql-5.5 5.5.39-1
-	- mariadb-5.5 <undetermined>
+	- mariadb-5.5 5.5.39-1
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <undetermined>
 CVE-2014-4286
 	REJECTED
@@ -9273,6 +9278,7 @@
 	- mysql-5.5 5.5.39-1 (bug #754941)
 	- mysql-5.1 <not-affected> (Only affects 5.5 and later)
 	- mariadb-5.5 5.5.38-1 (bug #754940)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <unfixed>
 CVE-2014-4259
 	RESERVED
@@ -9281,6 +9287,7 @@
 	- mysql-5.5 5.5.39-1 (bug #754941)
 	- mysql-5.1 <not-affected> (Only affects 5.5 and later)
 	- mariadb-5.5 5.5.38-1 (bug #754940)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <unfixed>
 CVE-2014-4257 (Unspecified vulnerability in the Oracle WebCenter Portal component in ...)
 	NOT-FOR-US: Oracle WebCenter Portal
@@ -9320,6 +9327,7 @@
 	[wheezy] - mysql-5.5 5.5.37-0+wheezy1
 	- mysql-5.1 <not-affected> (Only affects 5.5 and later)
 	- mariadb-5.5 5.5.36-1 (bug #754940)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <unfixed>
 	NOTE: Unspecified, but according to Oracle only for 5.5.35 and earlier
 CVE-2014-4242 (Unspecified vulnerability in the Oracle WebLogic Server component in ...)
@@ -9428,6 +9436,7 @@
 	- mysql-5.5 5.5.39-1 (bug #754941)
 	- mysql-5.1 <not-affected> (Only affects 5.5 and later)
 	- mariadb-5.5 5.5.38-1 (bug #754940)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <unfixed>
 CVE-2014-4206 (Unspecified vulnerability in the Hyperion Enterprise Performance ...)
 	NOT-FOR-US: Oracle
@@ -14086,6 +14095,7 @@
 	- mysql-5.5 5.5.39-1 (bug #754941)
 	- mysql-5.1 <not-affected> (Only affects 5.5 and later)
 	- mariadb-5.5 5.5.38-1 (bug #754940)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <unfixed>
 CVE-2014-2493 (Unspecified vulnerability in the Oracle JDeveloper component in Oracle ...)
 	NOT-FOR-US: Oracle
@@ -14226,6 +14236,7 @@
 	{DSA-2919-1}
 	- mysql-5.5 5.5.37-1 (bug #744910)
 	- mariadb-5.5 5.5.37-1 (bug #745330)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- mysql-5.1 <not-affected> (Only affects Mysql 5.5/5.6)
 	- percona-xtradb-cluster-5.5 5.5.37-25.10+dfsg-1
 	NOTE: this is the same issue as CVE-2014-0001, see http://www.openwall.com/lists/oss-security/2014/09/11/23
@@ -14235,6 +14246,7 @@
 	{DSA-2919-1}
 	- mysql-5.5 5.5.37-1 (bug #744910)
 	- mariadb-5.5 5.5.37-1 (bug #745330)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- mysql-5.1 <not-affected> (Only affects Mysql 5.5/5.6)
 	- percona-xtradb-cluster-5.5 5.5.37-25.10+dfsg-1
 CVE-2014-2437 (Unspecified vulnerability in the PeopleSoft Enterprise PT PeopleTools ...)
@@ -14243,6 +14255,7 @@
 	{DSA-2919-1}
 	- mysql-5.5 5.5.37-1 (bug #744910)
 	- mariadb-5.5 5.5.37-1 (bug #745330)
+	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- mysql-5.1 <not-affected> (Only affects Mysql 5.5/5.6)
 	- percona-xtradb-cluster-5.5 5.5.37-25.10+dfsg-1
 CVE-2014-2435 (Unspecified vulnerability in Oracle MySQL Server 5.6.16 and earlier ...)

More information about the Secure-testing-commits mailing list