mariadb101-server vulnerability?
Kubilay Kocak
koobs at FreeBSD.org
Sat Aug 6 12:34:32 UTC 2016
On 6/08/2016 7:23 AM, Michael Grimm wrote:
> Hi —
>
> Kubilay Kocak <koobs at FreeBSD.org> wrote:
>
>> Unfortunately you are yet one more example of a user that's been left in
>> the lurch without information or recourse wondering (rightfully) how
>> they can resolve or mitigate this vulnerability. Our apologies.
>
> While we are that topic, I am wondering about that 14 days old warning, as well:
>
> mariadb101-server-10.1.16 is vulnerable:
> MySQL -- Multiple vulnerabilities
> CVE: CVE-2016-3452
> [long list of CVEs snipped]
> CVE: CVE-2016-3477
> https://vuxml.FreeBSD.org/freebsd/ca5cb202-4f51-11e6-b2ec-b499baebfeaf.html
>
> I really do not know how serious this report is. Every feedback is highly appreciated.
Hi Michael:
Bug: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211274
Your comment on that issue would be appreciated.
The parent issue (assigned to ports-secteam (cc'd)) for coordinating the
multiple vulnerable ports is:
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211248
> Thanks and with kind regards,
> Michael
>
> _______________________________________________
> freebsd-ports at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-ports
> To unsubscribe, send any mail to "freebsd-ports-unsubscribe at freebsd.org"
>
More information about the freebsd-ports
mailing list