[debian-mysql] Bug#775882: Bug#775882: mariadb-10.0: affected by CVEs of the Oracle Patch Update for January 2015?
Salvatore Bonaccorso
carnil at debian.org
Mon Jan 26 17:47:29 UTC 2015
Control: tags -1 upstream fixed-upstream
Control: retitle -1 mariadb-10.0: CVE-2015-0411 CVE-2015-0382 CVE-2015-0381 CVE-2015-0432 CVE-2014-6568 CVE-2015-0374
Hi Otto,
On Fri, Jan 23, 2015 at 08:46:46AM +0200, Otto Kekäläinen wrote:
> I started to search information about this 2 days ago, but so far I
> haven't found any indication that these would affect MariaDB, though I
> haven't got the definitive final reply from mariadb devs confirming so
> either.
So the following CVEs were fixed with the 10.0.16 upload according to
[1]:
CVE-2015-0411
CVE-2015-0382
CVE-2015-0381
CVE-2015-0432
CVE-2014-6568
CVE-2015-0374
[1] https://mariadb.com/kb/en/mariadb/mariadb-10016-release-notes/
Could you prepare an update so that these fixes can be included in
Jessie?
Regards,
Salvatore
More information about the pkg-mysql-maint
mailing list