[debian-mysql] Bug#687484: Bug#687484: Status of CVE-2012-4414: SQL injection

Arnaud Fontaine arnau at debian.org
Tue Sep 30 07:10:23 UTC 2014


Henri Salo <henri at nerv.fi> writes:

> What is current status of CVE-2012-4414? Information about the issue in
> http://www.openwall.com/lists/oss-security/2012/09/11/4
>
> Marked as grave and security without any comments from maintainers. Plans to
> patch this issue? If not could you please give reasoning, thank you.

I think this bug only affects squeeze (oldstable) which reached its EOL
and is now only supported by volunteers as part of the Debian-LTS
project so you should probably get in touch with them:

https://wiki.debian.org/LTS

Cheers,
-- 
Arnaud Fontaine



More information about the pkg-mysql-maint mailing list