[Git][security-tracker-team/security-tracker][master] new mysql-connector-python issue

Moritz Muehlenhoff jmm at debian.org
Thu Jan 17 08:50:26 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
92423541 by Moritz Muehlenhoff at 2019-01-17T08:49:49Z
new mysql-connector-python issue
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10145,7 +10145,8 @@ CVE-2019-2437 (Vulnerability in the Oracle Solaris component of Oracle Sun Syste
 CVE-2019-2436 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 <not-affected> (Specific to 8)
 CVE-2019-2435 (Vulnerability in the MySQL Connectors component of Oracle MySQL ...)
-	TODO: check
+	- mysql-connector-python <unfixed>
+	NOTE: http://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html#CVE-2019-2435
 CVE-2019-2434 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
 	- mysql-5.7 <unfixed>
 CVE-2019-2433 (Vulnerability in the PeopleSoft Enterprise PeopleTools component of ...)
@@ -55366,7 +55367,7 @@ CVE-2018-5202 (SKCertService 2.5.5 and earlier contains a vulnerability that cou
 CVE-2018-5201 (Hancom Office 2018 10.0.0.8214 and earlier, Hancom Office NEO ...)
 	NOT-FOR-US: Hancom Office
 CVE-2018-5200 (KMPlayer 4.2.2.15 and earlier have a Heap Based Buffer Overflow ...)
-	TODO: check
+	NOT-FOR-US: KMPlayer (different from src:kmplayer)
 CVE-2018-5199 (In Veraport G3 ALL on MacOS, due to insufficient domain validation, It ...)
 	NOT-FOR-US: Veraport G3 ALL
 CVE-2018-5198 (In Veraport G3 ALL on MacOS, a race condition when calling the ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/92423541342d34c23ce204bcad96be80d358899a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/92423541342d34c23ce204bcad96be80d358899a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190117/f5340060/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list