[Git][security-tracker-team/security-tracker][master] new mysql issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jan 19 09:06:05 GMT 2022



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
28ccaaa0 by Moritz Muehlenhoff at 2022-01-19T10:05:43+01:00
new mysql issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10804,6 +10804,7 @@ CVE-2022-21682 (Flatpak is a Linux application sandboxing and distribution frame
 	NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx
 	NOTE: https://github.com/flatpak/flatpak/commit/445bddeee657fdc8d2a0a1f0de12975400d4fc1a
 	NOTE: Documentation: https://github.com/flatpak/flatpak/commit/4d11f77aa7fd3e64cfa80af89d92567ab9e8e6fa
+	NOTE: 1.12.4 added further changes to avoid regressions for some workflows
 CVE-2022-21681 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
 	TODO: check
 CVE-2022-21680 (Marked is a markdown parser and compiler. Prior to version 4.0.10, the ...)
@@ -11871,10 +11872,13 @@ CVE-2022-21381
 	RESERVED
 CVE-2022-21380
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21379
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21378
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21377
 	RESERVED
 CVE-2022-21376
@@ -11883,20 +11887,26 @@ CVE-2022-21375
 	RESERVED
 CVE-2022-21374
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21373
 	RESERVED
 CVE-2022-21372
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21371
 	RESERVED
 CVE-2022-21370
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21369
 	RESERVED
 CVE-2022-21368
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21367
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21366
 	RESERVED
 	- openjdk-11 <unfixed>
@@ -11910,8 +11920,10 @@ CVE-2022-21364
 	RESERVED
 CVE-2022-21363
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21362
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21361
 	RESERVED
 CVE-2022-21360
@@ -11923,20 +11935,26 @@ CVE-2022-21359
 	RESERVED
 CVE-2022-21358
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21357
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21356
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21355
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21354
 	RESERVED
 CVE-2022-21353
 	RESERVED
 CVE-2022-21352
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21351
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21350
 	RESERVED
 CVE-2022-21349
@@ -11944,6 +11962,7 @@ CVE-2022-21349
 	- openjdk-8 <unfixed>
 CVE-2022-21348
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21347
 	RESERVED
 CVE-2022-21346
@@ -11952,10 +11971,13 @@ CVE-2022-21345
 	RESERVED
 CVE-2022-21344
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21343
 	RESERVED
 CVE-2022-21342
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21341
 	RESERVED
 	- openjdk-8 <unfixed>
@@ -11968,70 +11990,101 @@ CVE-2022-21340
 	- openjdk-17 <unfixed>
 CVE-2022-21339
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21338
 	RESERVED
 CVE-2022-21337
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21336
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21335
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21334
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21333
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21332
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21331
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21330
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21329
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21328
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21327
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21326
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21325
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21324
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21323
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21322
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21321
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21320
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21319
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21318
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21317
 	RESERVED
-CVE-2022-21316
+	NOT-FOR-US: MySQL Cluster
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21315
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21314
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21313
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21312
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21311
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21310
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21309
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21308
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21307
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21306
 	RESERVED
 CVE-2022-21305
@@ -12041,12 +12094,18 @@ CVE-2022-21305
 	- openjdk-17 <unfixed>
 CVE-2022-21304
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21303
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21302
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21301
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21300
 	RESERVED
 CVE-2022-21299
@@ -12058,6 +12117,7 @@ CVE-2022-21298
 	RESERVED
 CVE-2022-21297
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21296
 	RESERVED
 	- openjdk-8 <unfixed>
@@ -12085,18 +12145,25 @@ CVE-2022-21291
 	- openjdk-17 <unfixed>
 CVE-2022-21290
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21289
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21288
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21287
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21286
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21285
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21284
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21283
 	RESERVED
 	- openjdk-11 <unfixed>
@@ -12110,10 +12177,13 @@ CVE-2022-21281
 	RESERVED
 CVE-2022-21280
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21279
 	RESERVED
+	NOT-FOR-US: MySQL Cluster
 CVE-2022-21278
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21277
 	RESERVED
 	- openjdk-11 <unfixed>
@@ -12134,6 +12204,8 @@ CVE-2022-21271
 	- openjdk-11 <unfixed>
 CVE-2022-21270
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21269
 	RESERVED
 CVE-2022-21268
@@ -12144,8 +12216,10 @@ CVE-2022-21266
 	RESERVED
 CVE-2022-21265
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21264
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21263
 	RESERVED
 CVE-2022-21262
@@ -12162,12 +12236,15 @@ CVE-2022-21257
 	RESERVED
 CVE-2022-21256
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21255
 	RESERVED
 CVE-2022-21254
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21253
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21252
 	RESERVED
 CVE-2022-21251
@@ -12176,6 +12253,7 @@ CVE-2022-21250
 	RESERVED
 CVE-2022-21249
 	RESERVED
+	- mysql-8.0 <unfixed>
 CVE-2022-21248
 	RESERVED
 	- openjdk-8 <unfixed>
@@ -12187,6 +12265,8 @@ CVE-2022-21246
 	RESERVED
 CVE-2022-21245
 	RESERVED
+	- mysql-5.7 <removed>
+	- mysql-8.0 <unfixed>
 CVE-2022-21244
 	RESERVED
 CVE-2022-21243



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28ccaaa0fd930d5e4df98f9dd8d7545a2159c9e9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28ccaaa0fd930d5e4df98f9dd8d7545a2159c9e9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220119/d6659121/attachment.htm>


More information about the debian-security-tracker-commits mailing list