Date: Sat, 6 Aug 2016 22:34:14 +1000 From: Kubilay Kocak <koobs@FreeBSD.org> To: Michael Grimm <trashcan@ellael.org>, freebsd-ports@FreeBSD.org Cc: FreeBSD Ports Security Team <ports-secteam@freebsd.org>, Bernard Spil <brnrd@FreeBSD.org> Subject: Re: mariadb101-server vulnerability? Message-ID: <0ff02264-b10d-c0a6-f82b-38d178f26aac@FreeBSD.org> In-Reply-To: <F7C5E254-6801-4274-A973-9ECBAB3EA20F@ellael.org> References: <CACcSE1z4m_o9z2Ttw-Sb7bNhVmnwDrVX8BQFfa2a_dBbW_hwyw@mail.gmail.com> <CAJN5%2BGtsJ=n2m8Xz5eZj92yo5vFZST0dO1ZnLCpmf4x0H95w-Q@mail.gmail.com> <33ac70de-78b6-dc54-e81f-3153d0d721e4@FreeBSD.org> <b05d61de-03e7-0599-17c9-0d055ac8ab61@FreeBSD.org> <F7C5E254-6801-4274-A973-9ECBAB3EA20F@ellael.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 6/08/2016 7:23 AM, Michael Grimm wrote: > Hi — > > Kubilay Kocak <koobs@FreeBSD.org> wrote: > >> Unfortunately you are yet one more example of a user that's been left in >> the lurch without information or recourse wondering (rightfully) how >> they can resolve or mitigate this vulnerability. Our apologies. > > While we are that topic, I am wondering about that 14 days old warning, as well: > > mariadb101-server-10.1.16 is vulnerable: > MySQL -- Multiple vulnerabilities > CVE: CVE-2016-3452 > [long list of CVEs snipped] > CVE: CVE-2016-3477 > https://vuxml.FreeBSD.org/freebsd/ca5cb202-4f51-11e6-b2ec-b499baebfeaf.html > > I really do not know how serious this report is. Every feedback is highly appreciated. Hi Michael: Bug: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211274 Your comment on that issue would be appreciated. The parent issue (assigned to ports-secteam (cc'd)) for coordinating the multiple vulnerable ports is: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211248 > Thanks and with kind regards, > Michael > > _______________________________________________ > freebsd-ports@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0ff02264-b10d-c0a6-f82b-38d178f26aac>