Security issues (solved in Debian) - affecting mariadb-server in xenial and yakkety
Bug #1684274 reported by
Andrei Coada
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| mariadb-10.0 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Security database references:
In Mitre's CVE dictionary: CVE-2017-3302, CVE-2017-3313.
The vulnerabilities are addressed by upgrading MariaDB to the new upstream version 10.0.30. Please see the MariaDB 10.0 Release Notes for further details:
https:/
For the stable distribution (jessie), these problems have been fixed in version 10.0.30-0+deb8u1.
| information type: | Public → Public Security |
| summary: |
- Security issues -> new upstream release (incl. Debian) + Security issues (solved in Debian) - affecting mariadb-server in xenial + and yakkety |
Revision history for this message
| Otto Kekäläinen (otto) wrote | #1 |
Revision history for this message
| Andrei Coada (raziel.kernel) wrote | #2 |
| Changed in mariadb-10.0 (Ubuntu): | |
| status: | New → Confirmed |
Revision history for this message
| Otto Kekäläinen (otto) wrote | #3 |
Revision history for this message
| Faustin (fauust) wrote | #4 |
| Changed in mariadb-10.0 (Ubuntu): | |
| status: | Confirmed → Fix Released |
To post a comment you must log in.
I plan to do a security update for Ubuntu like I've always done for the recent 3 years, but I was very busy in March/April and have not had time to do it yet... sorry
If the security issues were grave or if the package was in Ubuntu repository 'main' I would have acted immediately, but now I'll finish this once I've completed some other high priority issues elsewhere and have time for this.