← Back to team overview

group.of.nepali.translators team mailing list archive

[Bug 1638125] Re: USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too

 

This bug was fixed in the package mariadb-10.0 -
10.0.28-0ubuntu0.16.10.1

---------------
mariadb-10.0 (10.0.28-0ubuntu0.16.10.1) yakkety-security; urgency=high

  [ Otto Kekäläinen ]
  * SECURITY UPDATE: New upstream release 10.0.28. Includes fixes for the
    following security vulnerabilities (LP: #1638125):
    - CVE-2016-8283
    - CVE-2016-7440
    - CVE-2016-6663
    - CVE-2016-5629
    - CVE-2016-5626
    - CVE-2016-5624
    - CVE-2016-5616
    - CVE-2016-5584
    - CVE-2016-3492
  * Previous release 10.0.27 included included fixes for
    the following security vulnerabilities:
    - CVE-2016-6662
    - CVE-2016-5630
    - CVE-2016-5612
  * Previous release 10.0.26 included included fixes for
    the following security vulnerabilities:
    - CVE-2016-3615
    - CVE-2016-3521
    - CVE-2016-3477
  * Add Ubuntu Developers as maintainer in d/control

  [ Vicențiu Ciorbaru ]
  * Fix connect.upd test in armhf
  * Fix mroonga/storage.index_read_multiple_double test in armhf

 -- Otto Kekäläinen <otto@xxxxxxxxxx>  Thu, 01 Dec 2016 13:36:08 +0200

** Changed in: mariadb-10.0 (Ubuntu Yakkety)
       Status: Confirmed => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-3477

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-3521

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-3615

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-5612

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-5630

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-6662

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1638125

Title:
  USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too

Status in mariadb-10.0 package in Ubuntu:
  Fix Committed
Status in mariadb-5.5 source package in Trusty:
  Fix Released
Status in mariadb-10.0 source package in Xenial:
  Fix Released
Status in mariadb-10.0 source package in Yakkety:
  Fix Released
Status in mariadb-10.0 source package in Zesty:
  Fix Committed

Bug description:
  The mentioned security notice also affect MariaDB and the latest
  release includes fixes.

  I will produce a security release soon and attach more information to this bug report for:
   - mariadb.5.5 in Trusty
   - mariadb-10.0 in Xenial and Yakkety (zesty can sync from Debian)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mariadb-10.0/+bug/1638125/+subscriptions