Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
08808dd4 by Salvatore Bonaccorso at 2022-02-01T10:46:05+01:00
Add CVE-2021-46667/mariadb
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,11 @@ CVE-2021-46668 (MariaDB through 10.5.9 allows an application
crash via certain l
- mariadb-10.3 <removed>
NOTE: https://jira.mariadb.org/browse/MDEV-25787
CVE-2021-46667 (MariaDB before 10.6.5 has a sql_lex.cc integer overflow,
leading to an ...)
- TODO: check
+ - mariadb-10.6 1:10.6.5-1
+ - mariadb-10.5 <unfixed>
+ - mariadb-10.3 <removed>
+ NOTE: https://jira.mariadb.org/browse/MDEV-26350
+ NOTE: Fixed in MariaDB: 10.2.41, 10.3.32, 10.4.22, 10.5.13, 10.6.5
CVE-2021-46666 (MariaDB before 10.6.2 allows an application crash because of
mishandli ...)
TODO: check
CVE-2021-46665 (MariaDB through 10.5.9 allows a sql_parse.cc application crash
because ...)
=====================================
data/next-point-update.txt
=====================================
@@ -8,6 +8,8 @@ CVE-2021-41270
[bullseye] - symfony 4.4.19+dfsg-2+deb11u1
CVE-2021-35604
[bullseye] - mariadb-10.5 1:10.5.13-0+deb11u1
+CVE-2021-46667
+ [bullseye] - mariadb-10.5 1:10.5.13-0+deb11u1
CVE-2021-44917
[bullseye] - gnuplot 5.4.1+dfsg1-1+deb11u1
CVE-2021-45379
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08808dd44d31132557cb612f41a76240c579a271
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08808dd44d31132557cb612f41a76240c579a271
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
