maria-developers team mailing list archive

Thread
Date

Several CVE's in Oracle MySQL, is MariaDB vulnerable?

To: maria-developers@xxxxxxxxxxxxxxxxxxx
From: Christian Rebischke <chris.rebischke@xxxxxxxxx>
Date: Fri, 23 Oct 2015 18:47:28 +0200
User-agent: Mutt/1.5.24 (2015-08-30)

Hello everyone,
Sorry when I am on the wrong mailinglist. I wanted to submit a bugreport or
issue for this but I can't signup for your JIRA because of license reasons.

I am from the Archlinux-Security Team and want to ask if mariadb in the actual
version is vulnerable to the following CVEs:

CVE-2015-4913 CVE-2015-4910 CVE-2015-4905 CVE-2015-4904 CVE-2015-4895
CVE-2015-4890 CVE-2015-4879 CVE-2015-4870 CVE-2015-4862 CVE-2015-4864
CVE-2015-4861 CVE-2015-4858 CVE-2015-4836 CVE-2015-4833 CVE-2015-4830
CVE-2015-4826 CVE-2015-4819 CVE-2015-4815 CVE-2015-4807 CVE-2015-4802
CVE-2015-4800 CVE-2015-4792 CVE-2015-4791 CVE-2015-4766

I hope you can help me.

Best regards

--------------------------------------------------------------
Christian Rebischke
Member of Archlinux CVE-Monitoring Team

Website    : www.nullday.de
Twitter    : @sh1bumi
Jabber     : shibumi@xxxxxxxxxxxxx
PGP        : 0xDFE2060D
Fingerprint: 6DAF 7B80 8F9D F251 3962 0000 D214 61E3 DFE2 060D
--------------------------------------------------------------

Attachment: signature.asc
Description: PGP signature

Follow ups

Re: Several CVE's in Oracle MySQL, is MariaDB vulnerable?
From: Daniel Black, 2015-10-23