[Git][security-tracker-team/security-tracker][master] Mark CVEs with same fix for MariaDB

[@rouca]

Bastien Roucariès pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
659a8b26 by Bastien Roucariès at 2024-09-17T15:51:56+00:00
Mark CVEs with same fix for MariaDB

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -198096,6 +198096,7 @@ CVE-2022-27447 (MariaDB Server v10.9 and below was 
discovered to contain a use-a
        - mariadb-10.1 <removed>
        NOTE: MariaDB bug: https://jira.mariadb.org/browse/MDEV-28099
        NOTE: MariaDB main bug: https://jira.mariadb.org/browse/MDEV-24176
+       NOTE: Same fix than CVE-2022-27376 and CVE-2022-27379
        NOTE: Fixed in MariaDB 10.3.35, 10.4.25, 10.5.16, 10.6.8, 10.7.4, 10.8.3
        NOTE: MariaDB commit: [1/3] 
https://github.com/MariaDB/server/commit/c02ebf3510850ba78a106be9974c94c3b97d8585
 (mariadb-10.3.35)
        NOTE: MariaDB commit: [2/3] 
https://github.com/MariaDB/server/commit/08c7ab404f69d9c4ca6ca7a9cf7eec74c804f917
 (mariadb-10.3.35)
@@ -198355,7 +198356,7 @@ CVE-2022-27379 (An issue in the component 
Arg_comparator::compare_real_fixed of
        - mariadb-10.1 <removed>
        NOTE: MariaDB bug: https://jira.mariadb.org/browse/MDEV-26353
        NOTE: MariaDB bug (main): https://jira.mariadb.org/browse/MDEV-24176
-       NOTE: Same fix than CVE-2022-27376
+       NOTE: Same fix than CVE-2022-27376 and CVE-2022-27447
        NOTE: Fixed in MariaDB version 10.3.35, 10.4.25, 10.5.16, 10.6.8, 10.7.4
 CVE-2022-27378 (An issue in the component Create_tmp_table::finalize of 
MariaDB Server ...)
        {DLA-3114-1}
@@ -198387,6 +198388,7 @@ CVE-2022-27376 (MariaDB Server v10.6.5 and below was 
discovered to contain an us
        NOTE: Bug MariaDB: https://jira.mariadb.org/browse/MDEV-26354
        NOTE: Bug MariaDB (duplicate): 
https://jira.mariadb.org/browse/MDEV-26437
        NOTE: Bug MariaDB (main): https://jira.mariadb.org/browse/MDEV-24176
+       NOTE: Same fix than CVE-2022-27379 and CVE-2022-27447
        NOTE: Fixed in MariaDB version 10.3.35, 10.4.25, 10.5.16, 10.6.8, 10.7.4
        NOTE: Commit MariaDB [1/3] 
https://github.com/MariaDB/server/commit/c02ebf3510850ba78a106be9974c94c3b97d8585
        NOTE: Commit MariaDB [2/3] 
https://github.com/MariaDB/server/commit/08c7ab404f69d9c4ca6ca7a9cf7eec74c804f917



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/659a8b269715259c020665ecea4d321234d08566

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/659a8b269715259c020665ecea4d321234d08566
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits