[Git][security-tracker-team/security-tracker][master] Reserve DLA-4208-1 for mariadb-10.5
Otto Kekäläinen (@otto)
otto at debian.org
Wed Jun 4 19:00:10 BST 2025
Otto Kekäläinen pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dda8a26d by Otto Kekäläinen at 2025-06-04T19:30:40+03:00
Reserve DLA-4208-1 for mariadb-10.5
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15232,7 +15232,6 @@ CVE-2025-30722 (Vulnerability in the MySQL Client product of Oracle MySQL (compo
- mariadb <unfixed> (bug #1105976)
[bookworm] - mariadb <no-dsa> (Minor issue, will be fixed in next point release)
- mariadb-10.5 <removed>
- [bullseye] - mariadb-10.5 <postponed> (Minor issue, follow bookworm PU, possible performance regression #1104874)
NOTE: Fixed in MariaDB: 11.4.6, 10.6.22, 10.5.29, 10.11.12
NOTE: MariaDB bug: https://jira.mariadb.org/browse/MDEV-36268
NOTE: MariaDB commit: https://github.com/MariaDB/server/commit/6aa860be27480db134a3c71065b9b47d15b72674 (mariadb-10.5.29)
@@ -15309,7 +15308,6 @@ CVE-2025-30693 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
- mariadb <unfixed> (bug #1105976)
[bookworm] - mariadb <no-dsa> (Minor issue, will be fixed in next point release)
- mariadb-10.5 <removed>
- [bullseye] - mariadb-10.5 <postponed> (Minor issue, follow bookworm PU, possible performance regression #1104874)
NOTE: Fixed in MariaDB: 11.4.6, 10.6.22, 10.5.29, 10.11.12
NOTE: MariaDB bug: https://jira.mariadb.org/browse/MDEV-36613
NOTE: MariaDB commit: https://github.com/MariaDB/server/commit/1c9f64e54ffb109bb6cf6a189e863bfa54e46510 (mariadb-10.5.29)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Jun 2025] DLA-4208-1 mariadb-10.5 - security update
+ {CVE-2025-30693 CVE-2025-30722}
+ [bullseye] - mariadb-10.5 1:10.5.29-0+deb11u1
[02 Jun 2025] DLA-4207-1 edk2 - security update
{CVE-2021-28216 CVE-2021-38575 CVE-2021-38576 CVE-2021-38578 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2024-1298 CVE-2024-38796}
[bullseye] - edk2 2020.11-2+deb11u3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dda8a26dbc8648aa298e00ce6ffc16bb1c5e7057
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dda8a26dbc8648aa298e00ce6ffc16bb1c5e7057
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250604/436a5638/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list