[Git][security-tracker-team/security-tracker][master] Add CVE-2021-46666/mariadb
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Feb 1 09:49:27 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
50e23d69 by Salvatore Bonaccorso at 2022-02-01T10:49:04+01:00
Add CVE-2021-46666/mariadb
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27,7 +27,12 @@ CVE-2021-46667 (MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading
NOTE: https://jira.mariadb.org/browse/MDEV-26350
NOTE: Fixed in MariaDB: 10.2.41, 10.3.32, 10.4.22, 10.5.13, 10.6.5
CVE-2021-46666 (MariaDB before 10.6.2 allows an application crash because of mishandli ...)
- TODO: check
+ - mariadb-10.6 <not-affected> (Fixed before initial upload to Debian)
+ - mariadb-10.5 1:10.5.11-1
+ - mariadb-10.3 <removed>
+ [buster] - mariadb-10.3 1:10.3.31-0+deb10u1
+ NOTE: https://jira.mariadb.org/browse/MDEV-25635
+ NOTE: Fixed in MariaDB: 10.2.39, 10.3.30, 10.4.20, 10.5.11, 10.6.2
CVE-2021-46665 (MariaDB through 10.5.9 allows a sql_parse.cc application crash because ...)
TODO: check
CVE-2021-46664 (MariaDB through 10.5.9 allows an application crash in sub_select_postj ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50e23d69e5921797302126a622ae3f83d56a7d5d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50e23d69e5921797302126a622ae3f83d56a7d5d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220201/d30887bb/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list