[Secure-testing-commits] r51075 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Apr 26 18:03:36 UTC 2017 

Author: carnil
Date: 2017-04-26 18:03:36 +0000 (Wed, 26 Apr 2017)
New Revision: 51075

Modified:
   data/CVE/list
Log:
mysql-5.7 fixed in unstable, #860547

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-26 17:59:13 UTC (rev 51074)
+++ data/CVE/list	2017-04-26 18:03:36 UTC (rev 51075)
@@ -13545,11 +13545,11 @@
 	- mariadb-10.1 <not-affected> (Fixed before initial upload to Debian)
 	- mariadb-10.0 10.0.28-1
 	[jessie] - mariadb-10.0 10.0.28-0+deb8u1
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 	NOTE: This is the same as CVE-2016-5483 but duplicated CVE by Oracle
 CVE-2017-3599 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (ONly affects MySQL 5.6 and 5.7)
 CVE-2017-3598 (Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion ...)
 	NOT-FOR-US: Oracle
@@ -13853,57 +13853,57 @@
 CVE-2017-3469 (Vulnerability in the MySQL Workbench component of Oracle MySQL ...)
 	- mysql-workbench <unfixed>
 CVE-2017-3468 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3467 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3466
 	RESERVED
 CVE-2017-3465 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3464 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3463 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3462 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3461 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3460 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3459 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3458 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3457 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3456 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3455 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3454 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3453 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3452 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 <not-affected> (Only affects MySQL 5.6)
@@ -13911,7 +13911,7 @@
 CVE-2017-3451 (Vulnerability in the Oracle Retail Open Commerce Platform component of ...)
 	NOT-FOR-US: Oracle
 CVE-2017-3450 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.6 and 5.7)
 CVE-2017-3449
 	RESERVED
@@ -14152,13 +14152,13 @@
 	[jessie] - virtualbox <end-of-life> (DSA-3699-1)
 	[wheezy] - virtualbox <end-of-life> (DSA 3454)
 CVE-2017-3331 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)
 CVE-2017-3330 (Vulnerability in the Siebel UI Framework component of Oracle Siebel ...)
 	NOT-FOR-US: Oracle Siebel
 CVE-2017-3329 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3328 (Vulnerability in the Oracle Common Applications component of Oracle ...)
 	NOT-FOR-US: Oracle
@@ -14226,11 +14226,11 @@
 	NOT-FOR-US: Oracle
 CVE-2017-3309 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3308 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	{DSA-3834-1 DLA-916-1}
-	- mysql-5.7 <unfixed> (bug #860547)
+	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <removed> (bug #860544)
 CVE-2017-3307 (Vulnerability in the MySQL Enterprise Monitor component of Oracle ...)
 	NOT-FOR-US: MySQL Enterprise Monitor
@@ -35203,7 +35203,7 @@
 	- mariadb-10.1 <not-affected> (Fixed before initial upload to Debian)
 	- mariadb-10.0 10.0.28-1
 	[jessie] - mariadb-10.0 10.0.28-0+deb8u1
-	- mysql-5.7 <unfixed>
+	- mysql-5.7 5.7.18-1
 	- mysql-5.5 <removed>
 	NOTE: https://blog.tarq.io/cve-2016-5483-backdooring-mysqldump-backups/
 	NOTE: Affected according to blogpost: MySQL all versions, MariaDB <= 5.5.52 and < 10.1

More information about the Secure-testing-commits mailing list