[Secure-testing-commits] r43294 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jul 20 05:32:22 UTC 2016 

Author: carnil
Date: 2016-07-20 05:32:22 +0000 (Wed, 20 Jul 2016)
New Revision: 43294

Modified:
   data/CVE/list
Log:
Add second batch of CVEs for mysql-*

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-07-20 05:19:35 UTC (rev 43293)
+++ data/CVE/list	2016-07-20 05:32:22 UTC (rev 43294)
@@ -2202,14 +2202,28 @@
 	RESERVED
 CVE-2016-5440
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <removed>
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-5439
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-5438
 	RESERVED
 CVE-2016-5437
 	RESERVED
+	- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-5436
 	RESERVED
+	- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-5435 (Memory leak in Huawei IPS Module, NGFW Module, NIP6300, NIP6600, and ...)
 	TODO: check
 CVE-2016-6211 [SA-CORE-2016-002 -- User module -- Saving user accounts can sometimes grant the user all roles]
@@ -8094,8 +8108,16 @@
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=762100
 CVE-2016-3615
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <removed>
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3614
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3613
 	RESERVED
 CVE-2016-3612
@@ -8148,6 +8170,9 @@
 	RESERVED
 CVE-2016-3588
 	RESERVED
+	- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3587
 	RESERVED
 CVE-2016-3586
@@ -8282,12 +8307,19 @@
 	RESERVED
 CVE-2016-3521
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <removed>
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3520
 	RESERVED
 CVE-2016-3519
 	RESERVED
 CVE-2016-3518
 	RESERVED
+	- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3517
 	RESERVED
 CVE-2016-3516
@@ -8322,6 +8354,10 @@
 	RESERVED
 CVE-2016-3501
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3500
 	RESERVED
 CVE-2016-3499
@@ -8352,6 +8388,10 @@
 	RESERVED
 CVE-2016-3486
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3485
 	RESERVED
 CVE-2016-3484
@@ -8416,6 +8456,10 @@
 	NOT-FOR-US: PeopleSoft
 CVE-2016-3459
 	RESERVED
+	- mariadb-10.0 <undetermined>
+	- mysql-5.6 <unfixed>
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3458
 	RESERVED
 CVE-2016-3457 (Unspecified vulnerability in the PeopleSoft Enterprise HCM ...)
@@ -8506,6 +8550,9 @@
 	[wheezy] - openjdk-6 <end-of-life> (Not supported in Wheezy LTS)
 CVE-2016-3424
 	RESERVED
+	- mysql-5.6 <not-affected> (Only affects MySQL 5.7)
+	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html#AppendixMSQL
 CVE-2016-3423 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
 	NOT-FOR-US: PeopleSoft
 CVE-2016-3422 (Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 ...)

More information about the Secure-testing-commits mailing list