Your message dated Sun, 3 Jul 2016 11:46:27 +0200
with message-id <[email protected]>
and subject line closing bugs reported against ancient mysql-5.1
has caused the Debian Bug report #712059,
regarding CVE-2012-0553 and CVE-2013-1492 unresolved
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
712059: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=712059
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: mysql-5.1
Version: 5.1.66-0+squeeze1
According to the Debian security tracker, these two CVEs are still
unresolved in the MySQL package that is a part of Debian Squeeze. I
cannot find any related bug report in the Debian bug tracker, so I'm
submitting a new report.
Any idea when this can be updated and fixed? It is setting off notices
when using "internal" vulnerability scanning software (e.g. OpenVAS
behind a firewall).
--
Justin Pasher
--- End Message ---
--- Begin Message ---
This bug has been reported against an ancient version of mysql (5.1),
that was last released with Debian 6.0 (squeeze). But even squeeze-lts
has now reached end-of-life and is no longer supported.
The bug is assumed to be fixed (or no longer relevant) in newer mysql
(or mariadb) releases and therefore I'm closing this report now. If the
problem is still reproducible in the currently supported versions
(mysql-5.6/mysql-5.7), feel free to provide more information, reopen
and reassign this bug report.
Andreas
--- End Message ---
