[Git][security-tracker-team/security-tracker][master] Add CVE-2021-46658/MariaDB

Sun Jan 30 08:42:15 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b14d9617 by Salvatore Bonaccorso at 2022-01-30T09:41:44+01:00
Add CVE-2021-46658/MariaDB

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,7 +19,12 @@ CVE-2021-46660 (Signiant Manager+Agents before 15.1 allows XML External Entity (
 CVE-2021-46659 (MariaDB before 10.7.2 allows an application crash because it does not  ...)
 	TODO: check
 CVE-2021-46658 (save_window_function_values in MariaDB before 10.6.3 allows an applica ...)
-	TODO: check
+	- mariadb-10.6 <not-affected> (Fixed before initial upload to Debian)
+	- mariadb-10.5 1:10.5.11-1
+	- mariadb-10.3 <removed>
+	[buster] - mariadb-10.3 1:10.3.31-0+deb10u1
+	NOTE: https://jira.mariadb.org/browse/MDEV-25630
+	NOTE: Fixed in MariaDB: 10.2.40, 10.3.31, 10.4.21, 10.5.12, 10.6.3
 CVE-2021-46657 (get_sort_by_table in MariaDB before 10.6.2 allows an application crash ...)
 	- mariadb-10.6 <not-affected> (Fixed before initial upload to Debian)
 	- mariadb-10.5 1:10.5.11-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b14d96174fd06b868fc9bddc6e7470e939820e9f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b14d96174fd06b868fc9bddc6e7470e939820e9f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220130/eea32ed4/attachment.htm>
