Bug 606254

Summary:	<dev-db/mysql-5.6.35: multiple vulnerabilities (OCPUJAN2017)
Product:	Gentoo Security	Reporter:	Agostino Sarubbo <ago>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED FIXED
Severity:	major	CC:	mysql-bugs
Priority:	Normal	Flags:	stable-bot: sanity-check+
Version:	unspecified
Hardware:	All
OS:	Linux
See Also:	https://bugs.gentoo.org/show_bug.cgi?id=612150
Whiteboard:	B1 [glsa cve]
Package list:	dev-db/mysql-5.6.35	Runtime testing required:	---
Bug Depends on:
Bug Blocks:	612146

Description Agostino Sarubbo gentoo-dev

2017-01-18 11:47:15 UTC

http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL

Comment 1 Brian Evans (RETIRED) gentoo-dev

2017-01-18 13:54:51 UTC

dev-db/mysql-5.6.35 satisfies all of the CVEs in the Oracle list.

Arches may stable using the official instructions in the ebuild

Comment 2 Agostino Sarubbo gentoo-dev

2017-01-19 11:26:00 UTC

amd64 stable

Comment 3 Agostino Sarubbo gentoo-dev

2017-01-19 11:34:34 UTC

x86 stable

Comment 4 Agostino Sarubbo gentoo-dev

2017-01-20 11:13:33 UTC

ppc64 stable

Comment 5 Tobias Klausmann (RETIRED) gentoo-dev

2017-01-21 11:44:22 UTC

Stable on alpha.

Comment 6 Agostino Sarubbo gentoo-dev

2017-01-21 20:36:38 UTC

ppc stable

Comment 7 Agostino Sarubbo gentoo-dev

2017-01-22 16:31:58 UTC

sparc stable

Comment 8 Agostino Sarubbo gentoo-dev

2017-01-23 16:29:43 UTC

ia64 stable

Comment 9 Jeroen Roovers (RETIRED) gentoo-dev

2017-01-25 06:38:34 UTC

Stable for HPPA.

Comment 10 Markus Meier gentoo-dev

2017-02-05 17:03:00 UTC

arm stable, all arches done.

Comment 11 Thomas Deutschmann (RETIRED) gentoo-dev

2017-02-12 18:46:34 UTC

New GLSA request filed.

Comment 12 GLSAMaker/CVETool Bot gentoo-dev

2017-02-20 23:38:53 UTC

This issue was resolved and addressed in
 GLSA 201702-17 at https://security.gentoo.org/glsa/201702-17
by GLSA coordinator Thomas Deutschmann (whissi).