Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
be8ce851 by Salvatore Bonaccorso at 2023-11-01T20:37:00+01:00
Track fixed version for mysql-8.0 issues fixed via unstable
The listing of CVEs from the debian/changelog does not look correct,
some CVEs were included which were fixed earlier and one not affecting
mylsql-8.0 but only 8.1. Skip those.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54671,11 +54671,11 @@ CVE-2023-22116
CVE-2023-22115 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1
CVE-2023-22114 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22113 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1
CVE-2023-22112 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22111 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1
CVE-2023-22110 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -54693,7 +54693,7 @@ CVE-2023-22105 (Vulnerability in the BI Publisher
product of Oracle Analytics (c
CVE-2023-22104 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.33-1
CVE-2023-22103 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22102 (Vulnerability in the MySQL Connectors product of Oracle MySQL
(compone ...)
- mysql-connector-java <removed>
CVE-2023-22101 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
@@ -54705,7 +54705,7 @@ CVE-2023-22099 (Vulnerability in the Oracle VM
VirtualBox product of Oracle Virt
CVE-2023-22098 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 7.0.12-dfsg-1
CVE-2023-22097 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22096 (Vulnerability in the Java VM component of Oracle Database
Server. Sup ...)
NOT-FOR-US: Oracle
CVE-2023-22095 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -54715,7 +54715,7 @@ CVE-2023-22094 (Vulnerability in the MySQL Installer
product of Oracle MySQL (co
CVE-2023-22093 (Vulnerability in the Oracle iRecruitment product of Oracle
E-Business ...)
NOT-FOR-US: Oracle
CVE-2023-22092 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22091 (Vulnerability in the Oracle GraalVM for JDK product of Oracle
Java SE ...)
- openjdk-17 17.0.9+9-1
CVE-2023-22090 (Vulnerability in the PeopleSoft Enterprise CC Common
Application Objec ...)
@@ -54731,7 +54731,7 @@ CVE-2023-22086 (Vulnerability in the Oracle WebLogic
Server product of Oracle Fu
CVE-2023-22085 (Vulnerability in the Hospitality OPERA 5 Property Services
product of ...)
NOT-FOR-US: Oracle
CVE-2023-22084 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22083 (Vulnerability in the Oracle Enterprise Session Border
Controller produ ...)
NOT-FOR-US: Oracle
CVE-2023-22082 (Vulnerability in the Oracle Business Intelligence Enterprise
Edition p ...)
@@ -54745,9 +54745,9 @@ CVE-2023-22081 (Vulnerability in the Oracle Java SE,
Oracle GraalVM for JDK prod
CVE-2023-22080 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
NOT-FOR-US: Oracle
CVE-2023-22079 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22078 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22077 (Vulnerability in the Oracle Database Recovery Manager
component of Ora ...)
NOT-FOR-US: Oracle
CVE-2023-22076 (Vulnerability in the Oracle Applications Framework product of
Oracle E ...)
@@ -54763,19 +54763,19 @@ CVE-2023-22072 (Vulnerability in the Oracle WebLogic
Server product of Oracle Fu
CVE-2023-22071 (Vulnerability in the PL/SQL component of Oracle Database
Server. Supp ...)
NOT-FOR-US: Oracle
CVE-2023-22070 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22069 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
NOT-FOR-US: Oracle
CVE-2023-22068 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22067 (Vulnerability in Oracle Java SE (component: CORBA). Supported
version ...)
- openjdk-8 8u392-ga-1
CVE-2023-22066 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22065 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1
CVE-2023-22064 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22063
RESERVED
CVE-2023-22062 (Vulnerability in the Oracle Hyperion Financial Reporting
product of Or ...)
@@ -54785,7 +54785,7 @@ CVE-2023-22061 (Vulnerability in the Oracle Business
Intelligence Enterprise Edi
CVE-2023-22060 (Vulnerability in the Oracle Hyperion Workspace product of
Oracle Hyper ...)
NOT-FOR-US: Oracle
CVE-2023-22059 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22058 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1 (bug #1041819)
CVE-2023-22057 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -54851,7 +54851,7 @@ CVE-2023-22034 (Vulnerability in the Unified Audit
component of Oracle Database
CVE-2023-22033 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- mysql-8.0 8.0.34-1 (bug #1041819)
CVE-2023-22032 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
- - mysql-8.0 <unfixed> (bug #1055034)
+ - mysql-8.0 8.0.35-1 (bug #1055034)
CVE-2023-22031 (Vulnerability in the Oracle WebLogic Server product of Oracle
Fusion M ...)
NOT-FOR-US: Oracle
CVE-2023-22030
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be8ce85197f0a9aef3000075413bf14f0c886d07
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be8ce85197f0a9aef3000075413bf14f0c886d07
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
