[Git][security-tracker-team/security-tracker][master] Add CVE-2019-2974 for MariaDB as well

Sat Oct 26 23:08:02 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
472698e9 by Salvatore Bonaccorso at 2019-10-26T22:04:35Z
Add CVE-2019-2974 for MariaDB as well

MariaDB is similarly to Oracle slightly intransparent in their updates.
Trying to catch up with the Oracle Critical Patch Updates and
correlations to MariaDB releases showed that CVE-2019-2974 newly
appeared in the respective release notes.

There might be more such CVEs.

Hopefully the tracking is correct as well.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45369,6 +45369,10 @@ CVE-2019-2975 (Vulnerability in the Java SE, Java SE Embedded product of Oracle
 	- openjdk-11 11.0.5+10-1
 	- openjdk-8 8u232-b09-1
 CVE-2019-2974 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
+	- mariadb-10.3 1:10.3.17-1
+	[buster] - mariadb-10.3 1:10.3.17-0+deb10u1
+	- mariadb-10.1 <removed>
+	[stretch] - mariadb-10.1 10.1.41-0+deb9u1
 	- mysql-5.7 <unfixed> (bug #942443)
 	NOTE: https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html#AppendixMSQL
 CVE-2019-2973 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/472698e9423490d7bc92c77dfd436136696f581d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/472698e9423490d7bc92c77dfd436136696f581d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191026/1d1c88bb/attachment.html>
