Oracle MySQL Connector is prone to a remote security vulnerability. A remote user can exploit a flaw in the Connector/Python component to partially access data, partially modify data, and partially deny service. This vulnerability affects the following supported versions: 2.1.3 and earlier, 2.0.4 and earlier.
@maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
I added mysql-connector-python-2.1.4 to the gentoo repo, and removed all older versions. This package did not have any stable versions, so no need to stabilize anything here.
Thanks! @ Security: Waiting for CVE than this can be closed.
CVE-2016-5598 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5598): Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Connector/Python.
