seanius at alioth.debian.org
2007-May-17 16:38 UTC
[Secure-testing-commits] r5867 - data/CVE
Author: seanius Date: 2007-05-17 16:38:29 +0000 (Thu, 17 May 2007) New Revision: 5867 Modified: data/CVE/list Log: the CVE says it is fixed in 5.0.40, but 5.0.41 is vulnerable. 4.0 not affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-05-17 15:53:06 UTC (rev 5866) +++ data/CVE/list 2007-05-17 16:38:29 UTC (rev 5867) @@ -47,9 +47,11 @@ [sarge] - mysql-dfsg-4.1 <not-affected> (bug #424830) [sarge] - mysql-dfsg <not-affected> CVE-2007-2692 (The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x ...) - - mysql-dfsg-5.0 5.0.41-1 (bug #424778) + - mysql-dfsg-5.0 <unfixed> (bug #424778) [sarge] - mysql-dfsg-4.1 <unfixed> (bug #424830) - [sarge] - mysql-dfsg <unfixed> + [sarge] - mysql-dfsg <not-affected> + NOTE: the CVE says it''s fixed in 5.0.40, but 5.0.41 is vulnerable + NOTE: http://bugs.mysql.com/bug.php?id=28499 CVE-2007-2691 (MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does ...) - mysql-dfsg-5.0 <unfixed> (bug #424778) [sarge] - mysql-dfsg-4.1 <unfixed> (bug #424830)