[Secure-testing-commits] r51037 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Apr 25 17:47:44 UTC 2017
Author: carnil
Date: 2017-04-25 17:47:44 +0000 (Tue, 25 Apr 2017)
New Revision: 51037
Modified:
data/CVE/list
Log:
Remove no-dsa for CVE-2016-5483, it is the same as CVE-2017-3600
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-25 17:47:33 UTC (rev 51036)
+++ data/CVE/list 2017-04-25 17:47:44 UTC (rev 51037)
@@ -34832,8 +34832,6 @@
[jessie] - mariadb-10.0 10.0.28-0+deb8u1
- mysql-5.7 <unfixed>
- mysql-5.5 <removed>
- [jessie] - mysql-5.5 <no-dsa> (Minor issue)
- [wheezy] - mysql-5.5 <no-dsa> (Minor issue)
NOTE: https://blog.tarq.io/cve-2016-5483-backdooring-mysqldump-backups/
NOTE: Affected according to blogpost: MySQL all versions, MariaDB <= 5.5.52 and < 10.1
NOTE: Per MariaDB Security fixed with the following three commits:
More information about the Secure-testing-commits
mailing list