[Secure-testing-commits] r52544 - in data: . CVE

Markus Koschany apo at moszumanska.debian.org
Tue Jun 13 22:24:05 UTC 2017


Author: apo
Date: 2017-06-13 22:24:05 +0000 (Tue, 13 Jun 2017)
New Revision: 52544

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
CVE-2017-3469,mysql-workbench: Mark as no-dsa for Wheezy

Follow Jessie. According to the CVE description the vulnerability is difficult to exploit.
Unfortunately detailed information are not available and will not be disclosed
by Oracle hence there is not much we can do besides from backporting the latest
release.



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-13 21:10:13 UTC (rev 52543)
+++ data/CVE/list	2017-06-13 22:24:05 UTC (rev 52544)
@@ -17960,6 +17960,7 @@
 	- mysql-workbench <unfixed> (low; bug #861487)
 	[stretch] - mysql-workbench <no-dsa> (Minor issue)
 	[jessie] - mysql-workbench <no-dsa> (Minor issue)
+	[wheezy] - mysql-workbench <no-dsa> (Minor issue)
 CVE-2017-3468 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 5.7.18-1 (bug #860547)
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.7)

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-06-13 21:10:13 UTC (rev 52543)
+++ data/dla-needed.txt	2017-06-13 22:24:05 UTC (rev 52544)
@@ -82,9 +82,6 @@
   NOTE: has 8 different bugs fixed. Only 2 reverse dependancies:
   NOTE: mysql-utilities and mysql-workbench.
 --
-mysql-workbench
-  NOTE: maintainer contacted 20170429
---
 openexr
 --
 otrs2 (Lucas Kanashiro)




More information about the Secure-testing-commits mailing list