Date: Mon, 22 Jul 2019 14:33:45 +0000 (UTC) From: Bernard Spil <brnrd@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r507143 - head/security/vuxml Message-ID: <201907221433.x6MEXjYh007014@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: brnrd Date: Mon Jul 22 14:33:45 2019 New Revision: 507143 URL: https://svnweb.freebsd.org/changeset/ports/507143 Log: security/vuxml: Add vulns from Oracle 2019-07 Critical Patch Update Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Mon Jul 22 14:14:01 2019 (r507142) +++ head/security/vuxml/vuln.xml Mon Jul 22 14:33:45 2019 (r507143) @@ -58,6 +58,118 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="198e6220-ac8b-11e9-a1c7-b499baebfeaf"> + <topic>MySQL -- Multiple vulerabilities</topic> + <affects> + <package> + <name>mariadb55-server</name> + <range><lt>5.5.65</lt></range> + </package> + <package> + <name>mariadb101-server</name> + <range><lt>10.1.41</lt></range> + </package> + <package> + <name>mariadb102-server</name> + <range><lt>10.2.26</lt></range> + </package> + <package> + <name>mariadb103-server</name> + <range><lt>10.3.17</lt></range> + </package> + <package> + <name>mariadb104-server</name> + <range><lt>10.4.7</lt></range> + </package> + <package> + <name>mysql56-server</name> + <range><lt>5.6.45</lt></range> + </package> + <package> + <name>mysql57-server</name> + <range><lt>5.7.27</lt></range> + </package> + <package> + <name>mysql80-server</name> + <range><lt>8.0.17</lt></range> + </package> + <package> + <name>percona55-server</name> + <range><lt>5.5.65</lt></range> + </package> + <package> + <name>percona56-server</name> + <range><lt>5.6.45</lt></range> + </package> + <package> + <name>percona57-server</name> + <range><lt>5.7.27</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Oracle reports:</p> + <blockquote cite="https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"> + <p>This Critical Patch Update contains 45 new security fixes for + Oracle MySQL. 4 of these vulnerabilities may be remotely exploitable + without authentication, i.e., may be exploited over a network without + requiring user credentials. + </p> + </blockquote> + </body> + </description> + <references> + <url>https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html</url> + <cvename>CVE-2019-2730</cvename> + <cvename>CVE-2019-2731</cvename> + <cvename>CVE-2019-2737</cvename> + <cvename>CVE-2019-2738</cvename> + <cvename>CVE-2019-2739</cvename> + <cvename>CVE-2019-2740</cvename> + <cvename>CVE-2019-2741</cvename> + <cvename>CVE-2019-2743</cvename> + <cvename>CVE-2019-2746</cvename> + <cvename>CVE-2019-2747</cvename> + <cvename>CVE-2019-2752</cvename> + <cvename>CVE-2019-2755</cvename> + <cvename>CVE-2019-2757</cvename> + <cvename>CVE-2019-2758</cvename> + <cvename>CVE-2019-2774</cvename> + <cvename>CVE-2019-2778</cvename> + <cvename>CVE-2019-2780</cvename> + <cvename>CVE-2019-2784</cvename> + <cvename>CVE-2019-2785</cvename> + <cvename>CVE-2019-2789</cvename> + <cvename>CVE-2019-2791</cvename> + <cvename>CVE-2019-2795</cvename> + <cvename>CVE-2019-2796</cvename> + <cvename>CVE-2019-2797</cvename> + <cvename>CVE-2019-2798</cvename> + <cvename>CVE-2019-2800</cvename> + <cvename>CVE-2019-2801</cvename> + <cvename>CVE-2019-2802</cvename> + <cvename>CVE-2019-2803</cvename> + <cvename>CVE-2019-2805</cvename> + <cvename>CVE-2019-2808</cvename> + <cvename>CVE-2019-2810</cvename> + <cvename>CVE-2019-2811</cvename> + <cvename>CVE-2019-2812</cvename> + <cvename>CVE-2019-2814</cvename> + <cvename>CVE-2019-2815</cvename> + <cvename>CVE-2019-2819</cvename> + <cvename>CVE-2019-2822</cvename> + <cvename>CVE-2019-2826</cvename> + <cvename>CVE-2019-2830</cvename> + <cvename>CVE-2019-2834</cvename> + <cvename>CVE-2019-2879</cvename> + <cvename>CVE-2019-3822</cvename> + </references> + <dates> + <discovery>2019-07-16</discovery> + <entry>2019-07-22</entry> + </dates> + </vuln> + <vuln vid="19d648e0-ab69-11e9-bfef-000ffec0b3e1"> <topic>drupal -- Drupal core - Access bypass</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201907221433.x6MEXjYh007014>