[Secure-testing-commits] r58942 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Dec 26 13:41:33 UTC 2017


Author: carnil
Date: 2017-12-26 13:41:33 +0000 (Tue, 26 Dec 2017)
New Revision: 58942

Modified:
   data/CVE/list
Log:
CVE-2017-17365 confirmed to affect MariaDB 10.1 as well

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-26 13:34:27 UTC (rev 58941)
+++ data/CVE/list	2017-12-26 13:41:33 UTC (rev 58942)
@@ -14533,12 +14533,12 @@
 CVE-2017-15365 [Replication in sql/event_data_objects.cc occurs before ACL checks]
 	RESERVED
 	- mariadb-10.2 <unfixed> (bug #884065)
-	- mariadb-10.1 <undetermined>
+	- mariadb-10.1 <unfixed>
 	- mariadb-10.0 <undetermined>
 	- percona-xtrabackup <undetermined>
 	- mysql-5.7 <undetermined>
 	- mysql-5.5 <undetermined>
-	NOTE: MariaDB: Fixed in 10.2.10
+	NOTE: MariaDB: Fixed in 10.2.10, 10.1.30
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1524234
 	NOTE: https://www.percona.com/doc/percona-xtradb-cluster/LATEST/release-notes/Percona-XtraDB-Cluster-5.7.19-29.22-3.html
 	NOTE: Likely (unconfirmed) fix: https://github.com/MariaDB/server/commit/0b5a5258abbeaf8a0c3a18c7e753699787fdf46e?diff=unified




More information about the Secure-testing-commits mailing list