[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 3944-1] mariadb-10.0 security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3944-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
August 17, 2017                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mariadb-10.0
CVE ID         : CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456
                 CVE-2017-3464 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653

Several issues have been discovered in the MariaDB database server. The
vulnerabilities are addressed by upgrading MariaDB to the new upstream
version 10.0.32. Please see the MariaDB 10.0 Release Notes for further
details:

 https://mariadb.com/kb/en/mariadb/mariadb-10031-release-notes/
 https://mariadb.com/kb/en/mariadb/mariadb-10032-release-notes/

For the oldstable distribution (jessie), these problems have been fixed
in version 10.0.32-0+deb8u1.

We recommend that you upgrade your mariadb-10.0 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=rOOX
-----END PGP SIGNATURE-----


Reply to: