[Git][security-tracker-team/security-tracker][master] Add galera-4 as well for CVE-2023-5157

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Oct 4 15:53:08 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
53768994 by Salvatore Bonaccorso at 2023-10-04T16:52:48+02:00
Add galera-4 as well for CVE-2023-5157

Link: https://jira.mariadb.org/browse/MDEV-25068?focusedCommentId=225680&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-225680

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1457,6 +1457,7 @@ CVE-2023-5189 [insecure galaxy-importer tarfile extraction]
 	- ansible <undetermined>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2234387
 CVE-2023-5157 (A vulnerability was found in MariaDB. An OpenVAS port scan on ports 33 ...)
+	- galera-4 26.4.13-1
 	- galera-3 <unfixed>
 	NOTE: https://jira.mariadb.org/browse/MDEV-25068
 CVE-2023-5115 [malicious role archive can cause ansible-galaxy to overwrite arbitrary files]



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53768994e85e1ff845938edec16b17b19215248b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53768994e85e1ff845938edec16b17b19215248b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231004/ac4c2d87/attachment.htm>


More information about the debian-security-tracker-commits mailing list