[Git][security-tracker-team/security-tracker][master] Track fixes for mysql-8.0 via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 23 06:07:46 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f470356c by Salvatore Bonaccorso at 2026-04-23T07:07:14+02:00
Track fixes for mysql-8.0 via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1252,15 +1252,15 @@ CVE-2026-35242 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virt
CVE-2026-35241 (Vulnerability in the PeopleSoft Enterprise CS Student Records product ...)
NOT-FOR-US: Oracle
CVE-2026-35240 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-35239 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-35238 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-35237 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-35236 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-35235 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <not-affected> (Only affects MySQL 9)
CVE-2026-35234 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
@@ -1284,11 +1284,11 @@ CVE-2026-34321 (Vulnerability in the Oracle Financial Services Analytical Applic
CVE-2026-34320 (Vulnerability in the Oracle Financial Services Customer Screening prod ...)
NOT-FOR-US: Oracle
CVE-2026-34319 (Vulnerability in the MySQL Shell product of Oracle MySQL (component: S ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34318 (Vulnerability in the MySQL Shell product of Oracle MySQL (component: S ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34317 (Vulnerability in the MySQL Shell product of Oracle MySQL (component: S ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34315 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2026-34314 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
@@ -1302,7 +1302,7 @@ CVE-2026-34310 (Vulnerability in the Oracle Financial Services Analytical Applic
CVE-2026-34309 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34308 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34307 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34306 (Vulnerability in the PeopleSoft Enterprise FIN Project Costing product ...)
@@ -1310,9 +1310,9 @@ CVE-2026-34306 (Vulnerability in the PeopleSoft Enterprise FIN Project Costing p
CVE-2026-34305 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2026-34304 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34303 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34302 (Vulnerability in the Oracle Workflow product of Oracle E-Business Suit ...)
NOT-FOR-US: Oracle
CVE-2026-34301 (Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management ...)
@@ -1332,7 +1332,7 @@ CVE-2026-34295 (Vulnerability in the PeopleSoft Enterprise SCM Purchasing produc
CVE-2026-34294 (Vulnerability in the Oracle Identity Manager Connector product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34293 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34292 (Vulnerability in the Oracle WebLogic Server product of Oracle Fusion M ...)
NOT-FOR-US: Oracle
CVE-2026-34291 (Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middl ...)
@@ -1366,11 +1366,11 @@ CVE-2026-34280 (Vulnerability in the PeopleSoft Enterprise HCM Human Resources p
CVE-2026-34279 (Vulnerability in the Oracle Enterprise Manager Base Platform product o ...)
NOT-FOR-US: Oracle
CVE-2026-34278 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34277 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34276 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34275 (Vulnerability in the Oracle Advanced Inbound Telephony product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34274 (Vulnerability in the Oracle Configurator product of Oracle E-Business ...)
@@ -1380,9 +1380,9 @@ CVE-2026-34273 (Vulnerability in Oracle GoldenGate (component: Libraries). Supp
CVE-2026-34272 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- mysql-8.0 <not-affected> (Only affects MySQL 9)
CVE-2026-34271 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34270 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34269 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
NOT-FOR-US: Oracle
CVE-2026-34268 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
@@ -1393,7 +1393,7 @@ CVE-2026-34268 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
- openjdk-25 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2026-04-21
CVE-2026-34267 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-34266 (Vulnerability in the PeopleSoft Enterprise HCM Absence Management prod ...)
NOT-FOR-US: Oracle
CVE-2026-33813 (Parsing a WEBP image with an invalid, large size panics on 32-bit plat ...)
@@ -1442,7 +1442,7 @@ CVE-2026-22018 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
- openjdk-25 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2026-04-21
CVE-2026-22017 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22016 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
- openjdk-8 <unfixed>
- openjdk-11 <unfixed>
@@ -1451,7 +1451,7 @@ CVE-2026-22016 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
- openjdk-25 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2026-04-21
CVE-2026-22015 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22014 (Vulnerability in the Oracle User Management product of Oracle E-Busine ...)
NOT-FOR-US: Oracle
CVE-2026-22013 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
@@ -1466,7 +1466,7 @@ CVE-2026-22011 (Vulnerability in the Oracle Applications DBA product of Oracle E
CVE-2026-22010 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
NOT-FOR-US: Oracle
CVE-2026-22009 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22008 (Vulnerability in Oracle Java SE (component: Libraries). The supporte ...)
- openjdk-25 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2026-04-21
@@ -1480,19 +1480,19 @@ CVE-2026-22007 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
CVE-2026-22006 (Vulnerability in the PeopleSoft Enterprise HCM Human Resources product ...)
NOT-FOR-US: Oracle
CVE-2026-22005 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22004 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22003 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
- openjdk-8 <unfixed>
CVE-2026-22002 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-22001 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-21999 (Vulnerability in the XML Database component of Oracle Database Server. ...)
NOT-FOR-US: Oracle
CVE-2026-21998 (Vulnerability in the MySQL Server product of Oracle MySQL (component: ...)
- - mysql-8.0 <unfixed> (bug #1134614)
+ - mysql-8.0 8.0.46-1 (bug #1134614)
CVE-2026-21997 (Vulnerability in the Oracle Life Sciences Empirica Signal product of O ...)
NOT-FOR-US: Oracle
CVE-2026-1354 (Zero Motorcycles firmware versions 44 and prior enable an attacker to ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f470356c077dacd21092433d5fbbf3bc7cb8f040
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f470356c077dacd21092433d5fbbf3bc7cb8f040
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260423/a11c45b2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list