[Git][security-tracker-team/security-tracker][master] MariaDB: Annotate upstream version fixing several CVEs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Feb 20 10:16:10 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d4d8aab1 by Salvatore Bonaccorso at 2022-02-20T11:15:39+01:00
MariaDB: Annotate upstream version fixing several CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3069,6 +3069,7 @@ CVE-2021-46668 (MariaDB through 10.5.9 allows an application crash via certain l
- mariadb-10.5 <removed>
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-25787
+ NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34, 10.2.43
CVE-2021-46667 (MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an ...)
- mariadb-10.6 1:10.6.5-1
- mariadb-10.5 <removed>
@@ -3087,16 +3088,19 @@ CVE-2021-46665 (MariaDB through 10.5.9 allows a sql_parse.cc application crash b
- mariadb-10.5 <removed>
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-25636
+ NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34, 10.2.43
CVE-2021-46664 (MariaDB through 10.5.9 allows an application crash in sub_select_postj ...)
- mariadb-10.6 1:10.6.7-1
- mariadb-10.5 <removed>
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-25761
+ NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34, 10.2.43
CVE-2021-46663 (MariaDB through 10.5.13 allows a ha_maria::extra application crash via ...)
- mariadb-10.6 1:10.6.7-1
- mariadb-10.5 <removed>
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-26351
+ NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34, 10.2.43
CVE-2021-46662 (MariaDB through 10.5.9 allows a set_var.cc application crash via certa ...)
- mariadb-10.6 1:10.6.5-1
- mariadb-10.5 <removed>
@@ -3109,6 +3113,7 @@ CVE-2021-46661 (MariaDB through 10.5.9 allows an application crash in find_field
- mariadb-10.5 <removed>
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-25766
+ NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34, 10.2.43
CVE-2021-4218
RESERVED
- linux 5.8.7-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4d8aab16f7578d9273120536f89a860fa7097f1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4d8aab16f7578d9273120536f89a860fa7097f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220220/e4099ed6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list