[Git][security-tracker-team/security-tracker][master] add mysql-5.7 issues

Moritz Muehlenhoff jmm at debian.org
Thu Jul 16 22:05:29 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f8a73430 by Moritz Muehlenhoff at 2020-07-16T23:04:50+02:00
add mysql-5.7 issues
also add those as unfixed since potentially affecting mariadb, needs further clarification

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2709,7 +2709,9 @@ CVE-2020-14577 (Vulnerability in the Java SE, Java SE Embedded product of Oracle
 	- openjdk-11 <unfixed>
 	- openjdk-8 <unfixed>
 CVE-2020-14576 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14575 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-5.7 <not-affected> (Only affects MySQL 8)
 CVE-2020-14574 (Vulnerability in the Oracle Communications Interactive Session Recorde ...)
@@ -2728,7 +2730,9 @@ CVE-2020-14569 (Vulnerability in the Oracle FLEXCUBE Investor Servicing product
 CVE-2020-14568 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-5.7 <not-affected> (Only affects MySQL 8)
 CVE-2020-14567 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14566 (Vulnerability in the Primavera Portfolio Management product of Oracle  ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14565 (Vulnerability in the Oracle Unified Directory product of Oracle Fusion ...)
@@ -2745,7 +2749,9 @@ CVE-2020-14561 (Vulnerability in the Oracle Hospitality Reporting and Analytics
 CVE-2020-14560 (Vulnerability in the Oracle Hyperion BI+ product of Oracle Hyperion (c ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14559 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14558 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14557 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
@@ -2759,19 +2765,25 @@ CVE-2020-14555 (Vulnerability in the Oracle Marketing product of Oracle E-Busine
 CVE-2020-14554 (Vulnerability in the Oracle Application Object Library product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14553 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14552 (Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion  ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14551 (Vulnerability in the Oracle AutoVue product of Oracle Supply Chain (co ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14550 (Vulnerability in the MySQL Client product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14549 (Vulnerability in the Primavera Portfolio Management product of Oracle  ...)
 	TODO: check
 CVE-2020-14548 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14547 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14546 (Vulnerability in the Hyperion Financial Close Management product of Or ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14545 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
@@ -2785,9 +2797,13 @@ CVE-2020-14542 (Vulnerability in the Oracle Solaris product of Oracle Systems (c
 CVE-2020-14541 (Vulnerability in the Hyperion Financial Close Management product of Or ...)
 	NOT-FOR-US: Oracle
 CVE-2020-14540 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14539 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	TODO: check
+	- mysql-5.7 <unfixed>
+	- mariadb-10.3 <unfixed>
+	- mariadb-10.1 <removed>
 CVE-2020-14538
 	RESERVED
 CVE-2020-14537 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8a734302af0a21ac9d716b97e61e01f1d4e91e2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8a734302af0a21ac9d716b97e61e01f1d4e91e2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200716/654bb9d5/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list