[Secure-testing-commits] r47578 - in data: CVE DSA

Salvatore Bonaccorso Thu, 29 Dec 2016 22:39:26 -0800

Author: carnil
Date: 2016-12-30 06:38:55 +0000 (Fri, 30 Dec 2016)
New Revision: 47578


Modified:
   data/CVE/list
   data/DSA/list
Log:
Cleanup references for  CVE-2016-5616, REJECTED

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-12-30 06:38:43 UTC (rev 47577)
+++ data/CVE/list       2016-12-30 06:38:55 UTC (rev 47578)
@@ -20296,7 +20296,6 @@
        NOTE: Fixed by: 
https://github.com/mysql/mysql-server/commit/4e5473862e6852b0f3802b0cd0c6fa10b5253291
        NOTE: Fixed in MariaDB 5.5.52, MariaDB 10.1.18, MariaDB 10.0.28
        NOTE: Fixed in Oracle MySQL: 5.5.52, 5.6.33, and 5.7.15.
-       NOTE: Duplicate CVE from Oracle: CVE-2016-5616, cf. 
https://bugzilla.redhat.com/show_bug.cgi?id=1378936#c4
        NOTE: 
http://legalhackers.com/advisories/MySQL-MariaDB-PerconaDB-PrivEsc-Race-CVE-2016-6663-OCVE-2016-5616-Exploit.html
 CVE-2016-6662 (Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x 
through ...)
        {DSA-3666-1 DLA-624-1}
@@ -24120,15 +24119,6 @@
        REJECTED
 CVE-2016-5616
        REJECTED
-       {DSA-3711-1}
-       - mariadb-10.0 10.0.28-1
-       - mysql-5.7 5.7.15-1
-       - mysql-5.6 5.6.34-1 (bug #841049)
-       - mysql-5.5 <removed>
-       [jessie] - mysql-5.5 5.5.52-0+deb8u1
-       [wheezy] - mysql-5.5 5.5.52-0+deb7u1
-       NOTE: This is a Oracle assigned duplicate for CVE-2016-6663
-       NOTE: Equivalently fixed in MariaDB 5.5.52, MariaDB 10.1.18, MariaDB 
10.0.28
 CVE-2016-5615 (Unspecified vulnerability in Oracle Sun Solaris 11.3 allows 
local ...)
        NOT-FOR-US: Solaris
 CVE-2016-5614

Modified: data/DSA/list
===================================================================
--- data/DSA/list       2016-12-30 06:38:43 UTC (rev 47577)
+++ data/DSA/list       2016-12-30 06:38:55 UTC (rev 47578)
@@ -116,7 +116,7 @@
        {CVE-2015-8971}
        [jessie] - terminology 0.7.0-1+deb8u1
 [11 Nov 2016] DSA-3711-1 mariadb-10.0 - security update
-       {CVE-2016-3492 CVE-2016-5584 CVE-2016-5616 CVE-2016-5624 CVE-2016-5626 
CVE-2016-5629 CVE-2016-6663 CVE-2016-7440 CVE-2016-8283}
+       {CVE-2016-3492 CVE-2016-5584 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 
CVE-2016-6663 CVE-2016-7440 CVE-2016-8283}
        [jessie] - mariadb-10.0 10.0.28-0+deb8u1
 [10 Nov 2016] DSA-3710-1 pillow - security update
        {CVE-2016-9189 CVE-2016-9190}


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r47578 - in data: CVE DSA

Reply via email to