Debian Bug report logs -
#878398
Security fixes from the October 2017 CPU
Reported by: "Norvald H. Ryeng" <norvald.ryeng@oracle.com>
Date: Fri, 13 Oct 2017 10:51:01 UTC
Severity: grave
Tags: fixed-upstream, security, upstream
Found in version mysql-5.7/5.7.18-1
Fixed in version mysql-5.7/5.7.20-1
Done: Salvatore Bonaccorso <carnil@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>
:
Bug#878398
; Package src:mysql-5.7
.
(Fri, 13 Oct 2017 10:51:04 GMT) (full text, mbox, link).
Acknowledgement sent
to "Norvald H. Ryeng" <norvald.ryeng@oracle.com>
:
New Bug report received and forwarded. Copy sent to Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>
.
(Fri, 13 Oct 2017 10:51:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: mysql-5.7
Version: 5.7.18-1
Severity: grave
Tags: security upstream fixed-upstream
The Oracle Critical Patch Update for October 2017 will be released on
Tuesday, October 17. According to the pre-release announcement [1], it
will contain information about CVEs fixed in MySQL 5.7.20.
The CVE numbers will be available when the CPU is released.
Regards,
Norvald H. Ryeng
[1] http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>
:
Bug#878398
; Package src:mysql-5.7
.
(Wed, 18 Oct 2017 09:42:02 GMT) (full text, mbox, link).
Acknowledgement sent
to Lars Tangvald <lars.tangvald@oracle.com>
:
Extra info received and forwarded to list. Copy sent to Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>
.
(Wed, 18 Oct 2017 09:42:02 GMT) (full text, mbox, link).
Message #10 received at 878398@bugs.debian.org (full text, mbox, reply):
CVE List for 5.7:
CVE-2017-3731
CVE-2017-10155
CVE-2017-10165
CVE-2017-10167
CVE-2017-10227
CVE-2017-10268
CVE-2017-10276
CVE-2017-10279
CVE-2017-10283
CVE-2017-10284
CVE-2017-10286
CVE-2017-10294
CVE-2017-10296
CVE-2017-10311
CVE-2017-10313
CVE-2017-10314
CVE-2017-10320
CVE-2017-10365
CVE-2017-10379
CVE-2017-10384
--
Lars
On 13. okt. 2017 12:34, Norvald H. Ryeng wrote:
> Source: mysql-5.7
> Version: 5.7.18-1
> Severity: grave
> Tags: security upstream fixed-upstream
>
> The Oracle Critical Patch Update for October 2017 will be released on
> Tuesday, October 17. According to the pre-release announcement [1], it
> will contain information about CVEs fixed in MySQL 5.7.20.
>
> The CVE numbers will be available when the CPU is released.
>
> Regards,
>
> Norvald H. Ryeng
>
> [1] http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
>
> _______________________________________________
> pkg-mysql-maint mailing list
> pkg-mysql-maint@lists.alioth.debian.org
> https://urldefense.proofpoint.com/v2/url?u=http-3A__lists.alioth.debian.org_cgi-2Dbin_mailman_listinfo_pkg-2Dmysql-2Dmaint&d=DwICAg&c=RoP1YumCXCgaWHvlZYR8PQcxBKCX5YTpkKY057SbK10&r=HPjEzLhETPj8fl9HCxxISaaV3f5tXDpGXDR3R2IELxg&m=7DikT9z1InjqtpgXAqPEvoncum9MvgyB0I0VEBgUepI&s=tXNrK89Tn-ffN2T5k0Ak03vcAwEkRO5OD3F-IEB8PjU&e=
Marked as fixed in versions mysql-5.7/5.7.20-1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org
.
(Fri, 01 Dec 2017 23:09:06 GMT) (full text, mbox, link).
Marked Bug as done
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org
.
(Fri, 01 Dec 2017 23:09:06 GMT) (full text, mbox, link).
Notification sent
to "Norvald H. Ryeng" <norvald.ryeng@oracle.com>
:
Bug acknowledged by developer.
(Fri, 01 Dec 2017 23:09:07 GMT) (full text, mbox, link).
Message sent on
to "Norvald H. Ryeng" <norvald.ryeng@oracle.com>
:
Bug#878398.
(Fri, 01 Dec 2017 23:09:08 GMT) (full text, mbox, link).
Message #19 received at 878398-submitter@bugs.debian.org (full text, mbox, reply):
close 878398 5.7.20-1
thanks
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org
.
(Sat, 30 Dec 2017 07:26:47 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 14:11:46 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.