[Git][security-tracker-team/security-tracker][master] Add CVE-2021-46667/mariadb

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Feb 1 09:46:31 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
08808dd4 by Salvatore Bonaccorso at 2022-02-01T10:46:05+01:00
Add CVE-2021-46667/mariadb

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,7 +21,11 @@ CVE-2021-46668 (MariaDB through 10.5.9 allows an application crash via certain l
 	- mariadb-10.3 <removed>
 	NOTE: https://jira.mariadb.org/browse/MDEV-25787
 CVE-2021-46667 (MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an ...)
-	TODO: check
+	- mariadb-10.6 1:10.6.5-1
+	- mariadb-10.5 <unfixed>
+	- mariadb-10.3 <removed>
+	NOTE: https://jira.mariadb.org/browse/MDEV-26350
+	NOTE: Fixed in MariaDB: 10.2.41, 10.3.32, 10.4.22, 10.5.13, 10.6.5
 CVE-2021-46666 (MariaDB before 10.6.2 allows an application crash because of mishandli ...)
 	TODO: check
 CVE-2021-46665 (MariaDB through 10.5.9 allows a sql_parse.cc application crash because ...)


=====================================
data/next-point-update.txt
=====================================
@@ -8,6 +8,8 @@ CVE-2021-41270
 	[bullseye] - symfony 4.4.19+dfsg-2+deb11u1
 CVE-2021-35604
 	[bullseye] - mariadb-10.5 1:10.5.13-0+deb11u1
+CVE-2021-46667
+	[bullseye] - mariadb-10.5 1:10.5.13-0+deb11u1
 CVE-2021-44917
 	[bullseye] - gnuplot 5.4.1+dfsg1-1+deb11u1
 CVE-2021-45379



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08808dd44d31132557cb612f41a76240c579a271

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08808dd44d31132557cb612f41a76240c579a271
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220201/9e78dcdb/attachment.htm>

More information about the debian-security-tracker-commits mailing list