[Git][security-tracker-team/security-tracker][master] Add three new CVEs for MariaDB 10.3

Salvatore Bonaccorso carnil at debian.org
Fri May 3 16:07:29 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9972a056 by Salvatore Bonaccorso at 2019-05-03T15:06:56Z
Add three new CVEs for MariaDB 10.3

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23738,11 +23738,15 @@ CVE-2019-2630 (Vulnerability in the MySQL Server component of Oracle MySQL (subc
 CVE-2019-2629 (Vulnerability in the Oracle Health Sciences Data Management Workbench  ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2628 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
+	- mariadb-10.3 <unfixed>
 	- mysql-5.7 <unfixed> (bug #927308)
 	NOTE: https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixMSQL
+	NOTE: Fixed in MariaDB: 10.3.15
 CVE-2019-2627 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
+	- mariadb-10.3 <unfixed>
 	- mysql-5.7 <unfixed> (bug #927308)
 	NOTE: https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixMSQL
+	NOTE: Fixed in MariaDB: 10.3.15
 CVE-2019-2626 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
 	- mysql-5.7 <not-affected> (Only affects MySQL 8)
 CVE-2019-2625 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
@@ -23768,8 +23772,10 @@ CVE-2019-2616 (Vulnerability in the BI Publisher (formerly XML Publisher) compon
 CVE-2019-2615 (Vulnerability in the Oracle WebLogic Server component of Oracle Fusion ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2614 (Vulnerability in the MySQL Server component of Oracle MySQL (subcompon ...)
+	- mariadb-10.3 <unfixed>
 	- mysql-5.7 <unfixed> (bug #927308)
 	NOTE: https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixMSQL
+	NOTE: Fixed in MariaDB 10.3.15
 CVE-2019-2613 (Vulnerability in the Oracle Outside In Technology component of Oracle  ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2612 (Vulnerability in the Oracle Outside In Technology component of Oracle  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9972a056421373b6271e197d31a5ccdfecdda36e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9972a056421373b6271e197d31a5ccdfecdda36e
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190503/492d1cb0/attachment.html>


More information about the debian-security-tracker-commits mailing list