Summary: | <dev-db/mysql-5.6.37-r1: multiple vulnerabilities (CPU JUL 2017) (CVE-2017-{3633,3634,3635,3636,3637,3641,3648,3647,3649,3651,3652,3653,3732})< | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | flopwiki, mysql-bugs, sudormrfhalt |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A2 [glsa+ cve glsa+ blocked] | ||
Package list: |
dev-db/mysql-5.6.37-r1
|
Runtime testing required: | --- |
Bug Depends on: | 612922, 634652 | ||
Bug Blocks: | 548132, 616486 |
Description
Agostino Sarubbo
2017-07-19 13:05:44 UTC
*** Bug 626572 has been marked as a duplicate of this bug. *** @ Arches, please test and mark stable. The test suite should pass following the official instructions. Local timeouts may be expected on resource starved machines. (each test thread can spawn up to 4 server instances) Target keywords: =dev-db/mysql-5.6.37 alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 # Official test instructions: # USE='server embedded extraengine perl openssl static-libs' \ # FEATURES='test userpriv -usersandbox' \ # ebuild mysql-5.6.37.ebuild \ # digest clean package # Parallel testing is enabled, auto will try to detect number of cores # You may set this by hand. # The default maximum is 8 unless MTR_MAX_PARALLEL is increased export MTR_PARALLEL="${MTR_PARALLEL:-auto}" Please do not add cve to whiteboard if you are not part of security. CVE in whiteboard means that security has assigned the CVE's in the Gentoo CVE database. Version: 5.6.36 and earlier vulnerable CVE-2017-3633 CVE-2017-3634 CVE-2017-3635 CVE-2017-3636 CVE-2017-3637 CVE-2017-3641 CVE-2017-3648 CVE-2017-3647 CVE-2017-3649 CVE-2017-3651 CVE-2017-3652 CVE-2017-3653 CVE-2017-3732 ia64 stable x86 stable arm stable amd64 stable sparc was dropped to exp. https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b5901d8f716555a1479f12313a2925fcadd177a9 ppc64 stable ppc stable Superseded by bug 634652. This issue was resolved and addressed in GLSA 201802-04 at https://security.gentoo.org/glsa/201802-04 by GLSA coordinator Thomas Deutschmann (whissi). |