[Secure-testing-commits] r50794 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 19 06:38:03 UTC 2017
Author: carnil
Date: 2017-04-19 06:38:03 +0000 (Wed, 19 Apr 2017)
New Revision: 50794
Modified:
data/CVE/list
Log:
Add bug references for mysql-5.5, #860544
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-19 06:31:46 UTC (rev 50793)
+++ data/CVE/list 2017-04-19 06:38:03 UTC (rev 50794)
@@ -12540,7 +12540,7 @@
CVE-2017-3600
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3599
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
@@ -12875,19 +12875,19 @@
CVE-2017-3464
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3463
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3462
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3461
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3460
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
@@ -12907,7 +12907,7 @@
CVE-2017-3456
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3455
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
@@ -12919,7 +12919,7 @@
CVE-2017-3453
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3452
RESERVED
- mysql-5.7 <not-affected> (Only affects MySQL 5.6)
@@ -13177,7 +13177,7 @@
CVE-2017-3329
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3328 (Vulnerability in the Oracle Common Applications component of Oracle ...)
NOT-FOR-US: Oracle
CVE-2017-3327 (Vulnerability in the Oracle Common Applications component of Oracle ...)
@@ -13245,11 +13245,11 @@
CVE-2017-3309
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3308
RESERVED
- mysql-5.7 <unfixed> (bug #860547)
- - mysql-5.5 <removed>
+ - mysql-5.5 <removed> (bug #860544)
CVE-2017-3307
RESERVED
CVE-2017-3306
@@ -13257,8 +13257,7 @@
CVE-2017-3305 [Incorrect enforcement of ssl-mode=REQUIRED in MySQL 5.5 and 5.6]
RESERVED
- mysql-5.7 <not-affected> (Fixed before the initial release to Debian)
- - mysql-5.5 <removed>
- [jessie] - mysql-5.5 <no-dsa> (Can wait until the next Oracle CPU)
+ - mysql-5.5 <removed> (bug #860544)
NOTE: The issue arises because of an improper fix for the issue known under
NOTE: the name BACKRONYM. The CVE CVE-2015-3152 though is explicitly only
NOTE: assigned for MariaDB and Percona, thus Oracle MySQL products are not
@@ -13278,8 +13277,7 @@
- mariadb-10.0 <removed>
- mysql-5.7 <not-affected> (Fixed before initial release in Debian)
- mysql-5.6 <not-affected> (Fixed before initial release in Debian)
- - mysql-5.5 <removed> (bug #854713)
- [jessie] - mysql-5.5 <no-dsa> (Can wait until the next Oracle CPU)
+ - mysql-5.5 <removed> (bug #854713; bug #860544)
NOTE: Fixed by: https://github.com/mysql/mysql-server/commit/4797ea0b772d5f4c5889bc552424132806f46e93
NOTE: Fixed in Oracle MySQL 5.6.21, 5.7.5
NOTE: https://bugs.mysql.com/bug.php?id=70429
More information about the Secure-testing-commits
mailing list