On Wed, Sep 14, 2016 at 09:07:32AM -0400, Roberto C. Sánchez wrote:
>
> That is not to say that they couldn't have addressed the vulnerabilities
> without contacting David to tell him that they had done say. That said,
> the exploit is explained in a very detailed and methodical way in the
>
On Wed, Sep 14, 2016 at 02:58:48PM +0200, Markus Koschany wrote:
>
> Maybe you should contact Dawid Golunski who published the advisory and
> ask him to clarify the issue. As I understand it CVE-2016-6662 is fixed
> in version 5.5.52 which is confirmed by the official changelog in my
> opinion.
On 14.09.2016 04:50, Roberto C. Sánchez wrote:
[...]
> Does anyone have any thoughts on the matter?
Maybe you should contact Dawid Golunski who published the advisory and
ask him to clarify the issue. As I understand it CVE-2016-6662 is fixed
in version 5.5.52 which is confirmed by the official
On 13.09.2016 07:11, Roberto C. Sánchez wrote:
> I was looking over the dla-needed.txt entries and saw that mysql-5.5 was
> in need of a DLA, so I claimed it. However, before I begin preparing
> the update, I thought I would ask a couple of questions to ensure that I
> understand clearly what