> let's apply the policy buster and
> revisit one year before bullseye, maybe there's a more friendly fork by then
> which
> Debian can adopt.
yesterday the package got removed from testing; i'm not going to seek
to reintroduce it
--
Sandro "morph" Tosi
My website: http://sandrotosi.me/
Me at
On Thu, Mar 28, 2019 at 07:29:07PM -0400, Sandro Tosi wrote:
> Hello Moritz,
> could you please reply to the points made below? thanks!
Sorry, missed your reply.
> > what kind of security support do Debian provide to the mysql server
> > packages?
None at all, they're only in unstable for that
Hello Moritz,
could you please reply to the points made below? thanks!
On Wed, Feb 27, 2019 at 12:23 AM Sandro Tosi wrote:
> Hello Moritz,
> i'm not sure what kind of input you're expecting from (if at all, and
> this RC is mostly for the RT), but i'll reply
>
> > mysql-connector-python is
Dear Mortiz,
There is also another Python connector for MariaDB/MySQL in the repos,
`python3-mysqldb` and `python-mysqldb`. This is not a pure python
package but a wrapper around C module.
On Tue, 26 Feb 2019 20:32:06 +0100 Moritz Muehlenhoff
wrote:
> - Aside from the packaged software and
Hello Moritz,
i'm not sure what kind of input you're expecting from (if at all, and
this RC is mostly for the RT), but i'll reply
> mysql-connector-python is affected by Oracle's policy of not disclosing
> what security fixes they fix.
>
> CVE-2019-2435 is labeled with a CVSS 8.1/10 score and
Source: mysql-connector-python
Severity: serious
mysql-connector-python is affected by Oracle's policy of not disclosing
what security fixes they fix.
CVE-2019-2435 is labeled with a CVSS 8.1/10 score and only fixed in
8.x, while the version in stretch (2.1.x) is marked as vulnerable,
but no
6 matches
Mail list logo
