[Git][security-tracker-team/security-tracker][master] Add CVE-2023-52968/MariaDB

Mon Mar 10 19:31:37 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d6c6497 by Salvatore Bonaccorso at 2025-03-10T20:31:12+01:00
Add CVE-2023-52968/MariaDB

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -70,7 +70,11 @@ CVE-2023-52970 (MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 th
 CVE-2023-52969 (MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through  ...)
 	TODO: check
 CVE-2023-52968 (MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 1 ...)
-	TODO: check
+	- mariadb <not-affected> (Fixed before initial upload to Debian after source package rename)
+	- mariadb-10.5 <removed>
+	[bullseye] - mariadb-10.5 1:10.5.26-0+deb11u1
+	NOTE: Fixed in MariaDB: 10.4.33, 10.5.24, 10.6.17, 10.11.7, 11.0.5, 11.1.4, 11.2.3, 11.3.2, 11.4.1
+	NOTE: https://jira.mariadb.org/browse/MDEV-32082
 CVE-2025-27840 (Espressif ESP32 chips allow 29 hidden HCI commands, such as 0xFC02 (Wr ...)
 	NOT-FOR-US: Espressif ESP32 chips
 CVE-2025-1783 (The Gallery Styles plugin for WordPress is vulnerable to Stored Cross- ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d6c649748c602c9f77406430a3766ce69ef25c5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d6c649748c602c9f77406430a3766ce69ef25c5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250310/409ae025/attachment.htm>
