Date: Wed, 11 Nov 2015 20:39:13 +0000 (UTC) From: Bernard Spil <brnrd@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r401295 - head/security/vuxml Message-ID: <201511112039.tABKdDw9037189@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: brnrd Date: Wed Nov 11 20:39:13 2015 New Revision: 401295 URL: https://svnweb.freebsd.org/changeset/ports/401295 Log: Document CVE's in MySQL/MariaDB/Percona PR: 204410 Submitted by: Sevan Janiyan <venture37@geeklan.co.uk> Reviewed by: feld Approved by: feld Security: CVE-2015-4802 Security: CVE-2015-4807 Security: CVE-2015-4815 Security: CVE-2015-4826 Security: CVE-2015-4830 Security: CVE-2015-4836 Security: CVE-2015-4858 Security: CVE-2015-4861 Security: CVE-2015-4870 Security: CVE-2015-4913 Security: CVE-2015-4792 Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Wed Nov 11 20:16:11 2015 (r401294) +++ head/security/vuxml/vuln.xml Wed Nov 11 20:39:13 2015 (r401295) @@ -58,6 +58,98 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="851a0eea-88aa-11e5-90e7-b499baebfeaf"> + <topic>MySQL - Multiple vulnerabilities</topic> + <affects> + <package> + <name>mariadb-client</name> + <range><lt>5.3.13</lt></range> + </package> + <package> + <name>mariadb-server</name> + <range><lt>5.3.13</lt></range> + </package> + <package> + <name>mariadb55-client</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>mariadb55-server</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>mariadb100-client</name> + <range><lt>10.0.22</lt></range> + </package> + <package> + <name>mariadb100-server</name> + <range><lt>10.0.22</lt></range> + </package> + <package> + <name>mysql55-client</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>mysql55-server</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>mysql56-client</name> + <range><lt>5.6.27</lt></range> + </package> + <package> + <name>mysql56-server</name> + <range><lt>5.6.27</lt></range> + </package> + <package> + <name>percona55-client</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>percona55-server</name> + <range><lt>5.5.46</lt></range> + </package> + <package> + <name>percona56-client</name> + <range><lt>5.6.27</lt></range> + </package> + <package> + <name>percona56-server</name> + <range><lt>5.6.27</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>Oracle reports:</p> + <blockquote cite="http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html">; + <p>Critical Patch Update: MySQL Server, version(s) 5.5.45 and prior, 5.6.26 and prior</p> + </blockquote> + </body> + </description> + <references> + <url>http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html</url>; + <cvename>CVE-2015-4802</cvename> + <cvename>CVE-2015-4807</cvename> + <cvename>CVE-2015-4815</cvename> + <cvename>CVE-2015-4826</cvename> + <cvename>CVE-2015-4830</cvename> + <cvename>CVE-2015-4836</cvename> + <cvename>CVE-2015-4858</cvename> + <cvename>CVE-2015-4861</cvename> + <cvename>CVE-2015-4870</cvename> + <cvename>CVE-2015-4913</cvename> + <cvename>CVE-2015-4792</cvename> + <url>https://mariadb.com/kb/en/mariadb/mariadb-5546-release-notes/</url>; + <url>https://mariadb.com/kb/en/mariadb/mariadb-10022-release-notes/</url>; + <url>https://www.percona.com/doc/percona-server/5.5/release-notes/Percona-Server-5.5.46-37.5.html</url>; + <url>https://www.percona.com/doc/percona-server/5.6/release-notes/Percona-Server-5.6.27-75.0.html</url>; + </references> + <dates> + <discovery>2015-11-10</discovery> + <entry>2015-11-11</entry> + </dates> + </vuln> + <vuln vid="b665668a-91db-4f13-8113-9e4b5b0e47f7"> <topic>jenkins -- remote code execution via unsafe deserialization</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201511112039.tABKdDw9037189>