[Git][security-tracker-team/security-tracker][master] Add retrospectively additional CVE entry for mariadb

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon May 17 05:34:07 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0e16d6bb by Salvatore Bonaccorso at 2021-05-17T06:33:35+02:00
Add retrospectively additional CVE entry for mariadb

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -33722,7 +33722,7 @@ CVE-2021-2168
 CVE-2021-2167 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
 	NOT-FOR-US: Oracle
 CVE-2021-2166 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mariadb-10.5 <unfixed> (bug #988428)
+	- mariadb-10.5 1:10.5.10-1 (bug #988428)
 	- mariadb-10.3 <removed>
 	[buster] - mariadb-10.3 <no-dsa> (Minor issue)
 	- mysql-8.0 <unfixed> (bug #987325)
@@ -34032,8 +34032,14 @@ CVE-2021-2024 (Vulnerability in the MySQL Server product of Oracle MySQL (compon
 CVE-2021-2023 (Vulnerability in the Oracle Installed Base product of Oracle E-Busines ...)
 	NOT-FOR-US: Oracle
 CVE-2021-2022 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
+	- mariadb-10.5 1:10.5.5-1
+	- mariadb-10.3 1:10.3.24-1
+	[buster] - mariadb-10.3 1:10.3.25-0+deb10u1
+	- mariadb-10.1 <removed>
+	[stretch] - mariadb-10.1 10.1.47-0+deb9u1
 	- mysql-8.0 8.0.23-1 (bug #980795)
 	- mysql-5.7 <removed> (bug #981194)
+	NOTE: Fixed in MariaDB 10.5.5, 10.4.14, 10.3.24, 10.2.33, 10.1.46
 CVE-2021-2021 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-8.0 8.0.23-1 (bug #980795)
 CVE-2021-2020 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e16d6bb0424dedca3cf3e2a8568ba75b685c435

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e16d6bb0424dedca3cf3e2a8568ba75b685c435
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210517/2a0cf9ce/attachment.htm>


More information about the debian-security-tracker-commits mailing list