Summary: | <dev-perl/DBD-mysql-4.37.0: Buffer overflow in error reporting | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | perl |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2016/10/03/7 | ||
Whiteboard: | B2 [glsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 600180 | ||
Bug Blocks: |
Description
Agostino Sarubbo
2016-10-07 10:23:47 UTC
This is CVE-2016-1246, more info: http://blogs.perl.org/users/mike_b/2016/10/security-release---buffer-overflow-in-dbdmysql-perl-library.html Upstream changelog: http://cpansearch.perl.org/src/MICHIELB/DBD-mysql-4.037/Changes This is fixed in 4.37.0, which is already in the tree. Maintainers, can we stabilize that? (In reply to Hanno Boeck from comment #1) > This is CVE-2016-1246, more info: > http://blogs.perl.org/users/mike_b/2016/10/security-release---buffer- > overflow-in-dbdmysql-perl-library.html > > Upstream changelog: > http://cpansearch.perl.org/src/MICHIELB/DBD-mysql-4.037/Changes > > This is fixed in 4.37.0, which is already in the tree. Maintainers, can we > stabilize that? Sure. Arches please stabilize dev-perl/DBD-mysql-4.37.0 Target: all stable arches amd64 stable x86 stable arm stable Stable for HPPA. Stable for PPC64. Stable on alpha. Stabilization blocked due to newer bug 600180. We will do cleanup afterwards. This issue was resolved and addressed in GLSA 201701-51 at https://security.gentoo.org/glsa/201701-51 by GLSA coordinator Aaron Bauman (b-man). |