lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <E1bSQ8k-0003nN-Go@master.debian.org>
Date: Wed, 27 Jul 2016 14:48:54 +0000
From: Salvatore Bonaccorso <carnil@...ian.org>
To: bugtraq@...urityfocus.com
Subject: [SECURITY] [DSA 3632-1] mariadb-10.0 security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3632-1                   security@...ian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
July 27, 2016                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mariadb-10.0
CVE ID         : CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440

Several issues have been discovered in the MariaDB database server. The
vulnerabilities are addressed by upgrading MariaDB to the new upstream
version 10.0.26. Please see the MariaDB 10.0 Release Notes for further
details:

 https://mariadb.com/kb/en/mariadb/mariadb-10026-release-notes/

For the stable distribution (jessie), these problems have been fixed in
version 10.0.26-0+deb8u1.

For the unstable distribution (sid), these problems have been fixed in
version 10.0.26-1.

We recommend that you upgrade your mariadb-10.0 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@...ts.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=XXUm
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ