[Secure-testing-commits] r51075 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 26 18:03:36 UTC 2017
Author: carnil
Date: 2017-04-26 18:03:36 +0000 (Wed, 26 Apr 2017)
New Revision: 51075
Modified:
data/CVE/list
Log:
mysql-5.7 fixed in unstable, #860547
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-26 17:59:13 UTC (rev 51074)
+++ data/CVE/list 2017-04-26 18:03:36 UTC (rev 51075)
@@ -13545,11 +13545,11 @@
- mariadb-10.1 <not-affected> (Fixed before initial upload to Debian)
- mariadb-10.0 10.0.28-1
[jessie] - mariadb-10.0 10.0.28-0+deb8u1
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
NOTE: This is the same as CVE-2016-5483 but duplicated CVE by Oracle
CVE-2017-3599 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (ONly affects MySQL 5.6 and 5.7)
CVE-2017-3598 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
NOT-FOR-US: Oracle
@@ -13853,57 +13853,57 @@
CVE-2017-3469 (Vulnerability in the MySQL Workbench component of Oracle MySQL ...)
- mysql-workbench <unfixed>
CVE-2017-3468 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3467 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3466
RESERVED
CVE-2017-3465 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3464 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3463 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3462 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3461 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3460 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3459 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3458 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3457 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3456 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3455 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3454 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3453 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3452 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- mysql-5.7 <not-affected> (Only affects MySQL 5.6)
@@ -13911,7 +13911,7 @@
CVE-2017-3451 (Vulnerability in the Oracle Retail Open Commerce Platform component of ...)
NOT-FOR-US: Oracle
CVE-2017-3450 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
CVE-2017-3449
RESERVED
@@ -14152,13 +14152,13 @@
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
[wheezy] - virtualbox <end-of-life> (DSA 3454)
CVE-2017-3331 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
CVE-2017-3330 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
NOT-FOR-US: Oracle Siebel
CVE-2017-3329 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3328 (Vulnerability in the Oracle Common Applications component of Oracle ...)
NOT-FOR-US: Oracle
@@ -14226,11 +14226,11 @@
NOT-FOR-US: Oracle
CVE-2017-3309 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3308 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
{DSA-3834-1 DLA-916-1}
- - mysql-5.7 <unfixed> (bug #860547)
+ - mysql-5.7 5.7.18-1 (bug #860547)
- mysql-5.5 <removed> (bug #860544)
CVE-2017-3307 (Vulnerability in the MySQL Enterprise Monitor component of Oracle ...)
NOT-FOR-US: MySQL Enterprise Monitor
@@ -35203,7 +35203,7 @@
- mariadb-10.1 <not-affected> (Fixed before initial upload to Debian)
- mariadb-10.0 10.0.28-1
[jessie] - mariadb-10.0 10.0.28-0+deb8u1
- - mysql-5.7 <unfixed>
+ - mysql-5.7 5.7.18-1
- mysql-5.5 <removed>
NOTE: https://blog.tarq.io/cve-2016-5483-backdooring-mysqldump-backups/
NOTE: Affected according to blogpost: MySQL all versions, MariaDB <= 5.5.52 and < 10.1
More information about the Secure-testing-commits
mailing list