Debian Bug report logs -
#712059
CVE-2012-0553 and CVE-2013-1492 unresolved
Reported by: Justin Pasher <justinp@distribion.com>
Date: Wed, 12 Jun 2013 16:15:06 UTC
Severity: normal
Found in version 5.1.66-0+squeeze1
Done: Andreas Beckmann <anbe@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>:
Bug#712059; Package mysql-5.1.
(Wed, 12 Jun 2013 16:15:10 GMT) (full text, mbox, link).
Acknowledgement sent
to Justin Pasher <justinp@distribion.com>:
New Bug report received and forwarded. Copy sent to Debian MySQL Maintainers <pkg-mysql-maint@lists.alioth.debian.org>.
(Wed, 12 Jun 2013 16:15:10 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: mysql-5.1
Version: 5.1.66-0+squeeze1
According to the Debian security tracker, these two CVEs are still
unresolved in the MySQL package that is a part of Debian Squeeze. I
cannot find any related bug report in the Debian bug tracker, so I'm
submitting a new report.
Any idea when this can be updated and fixed? It is setting off notices
when using "internal" vulnerability scanning software (e.g. OpenVAS
behind a firewall).
--
Justin Pasher
Reply sent
to Andreas Beckmann <anbe@debian.org>:
You have taken responsibility.
(Mon, 04 Jul 2016 15:03:13 GMT) (full text, mbox, link).
Notification sent
to Justin Pasher <justinp@distribion.com>:
Bug acknowledged by developer.
(Mon, 04 Jul 2016 15:03:13 GMT) (full text, mbox, link).
Message #10 received at 712059-done@bugs.debian.org (full text, mbox, reply):
This bug has been reported against an ancient version of mysql (5.1),
that was last released with Debian 6.0 (squeeze). But even squeeze-lts
has now reached end-of-life and is no longer supported.
The bug is assumed to be fixed (or no longer relevant) in newer mysql
(or mariadb) releases and therefore I'm closing this report now. If the
problem is still reproducible in the currently supported versions
(mysql-5.6/mysql-5.7), feel free to provide more information, reopen
and reassign this bug report.
Andreas
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Tue, 02 Aug 2016 07:36:54 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 19:01:40 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon