[Secure-testing-commits] r45570 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-10-25 08:18:40 +0000 (Tue, 25 Oct 2016)
New Revision: 45570

Modified:
   data/CVE/list
Log:
Update information for CVE-2016-6663

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-25 07:23:42 UTC (rev 45569)
+++ data/CVE/list	2016-10-25 08:18:40 UTC (rev 45570)
@@ -6416,10 +6416,17 @@
 	RESERVED
 CVE-2016-6663
 	RESERVED
-	- mariadb-10.0 <undetermined>
-	- mysql-5.6 <undetermined>
-	- mysql-5.5 <undetermined>
-	NOTE: Leave this entries as undetermined as long the details for CVE-2016-6663 are not published
+	- mariadb-10.0 <unfixed>
+	- mysql-5.7 5.7.15-1
+	- mysql-5.6 <unfixed> (bug #841049)
+	- mysql-5.5 <removed>
+	[jessie] - mysql-5.5 5.5.52-0+deb8u1
+	[wheezy] - mysql-5.5 5.5.52-0+deb7u1
+	NOTE: Fixed by: https://github.com/MariaDB/server/commit/347eeefbfc658c8531878218487d729f4e020805
+	NOTE: Fixed by: https://github.com/mysql/mysql-server/commit/4e5473862e6852b0f3802b0cd0c6fa10b5253291
+	NOTE: Fixed in MariaDB: 5.5.52, 10.1.18
+	NOTE: Fixed in Oracle MySQL: 5.5.52, 5.6.33, and 5.7.15.
+	NOTE: Duplicate CVE from Oracle: CVE-2016-5616, cf. https://bugzilla.redhat.com/show_bug.cgi?id=1378936#c4
 CVE-2016-6662 (Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through ...)
 	{DSA-3666-1 DLA-624-1}
 	- mariadb-10.0 10.0.27-1
@@ -10248,7 +10255,6 @@
 	[wheezy] - mysql-5.5 5.5.52-0+deb7u1
 CVE-2016-5616
 	RESERVED
-	- mariadb-10.0 <undetermined>
 	- mysql-5.7 5.7.15-1
 	- mysql-5.6 <unfixed> (bug #841049)
 	- mysql-5.5 <removed>