Re: [SECURITY] [DSA 3635-1] libdbd-mysql-perl security update

Sat, 30 Jul 2016 00:57:39 -0700 

Not used

On Friday, July 29, 2016, Salvatore Bonaccorso <car...@debian.org> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> - -------------------------------------------------------------------------
> Debian Security Advisory DSA-3635-1                   secur...@debian.org
> <javascript:;>
> https://www.debian.org/security/                     Salvatore Bonaccorso
> July 29, 2016                         https://www.debian.org/security/faq
> - -------------------------------------------------------------------------
>
> Package        : libdbd-mysql-perl
> CVE ID         : CVE-2014-9906 CVE-2015-8949
>
> Two use-after-free vulnerabilities were discovered in DBD::mysql, a Perl
> DBI driver for the MySQL database server. A remote attacker can take
> advantage of these flaws to cause a denial-of-service against an
> application using DBD::mysql (application crash), or potentially to
> execute arbitrary code with the privileges of the user running the
> application.
>
> For the stable distribution (jessie), these problems have been fixed in
> version 4.028-2+deb8u1.
>
> We recommend that you upgrade your libdbd-mysql-perl packages.
>
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: https://www.debian.org/security/
>
> Mailing list: debian-security-annou...@lists.debian.org <javascript:;>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
>
> iQIcBAEBCgAGBQJXm5p3AAoJEAVMuPMTQ89ECy8P/Ar8I0SEJkYHgqQYrbZ0Iv7w
> WJxCWu3a5SZfU1ml8BD62xqV1jazNFdlZ7899F3WY7dCPod7W1lxdn/cro/2gBHG
> 4UFK9g5vzVZfDSZtUPV0UWgDs/jAkfSjs+W5RPk+BBRirvsw3rVgIxfZzWb3mX4X
> 32igajK+M0RjigR83nvmyir1hB0+nVWrF7FfjRIZ4n4zM75EiTjm96t4opZSaGFS
> yDhuZEkALzPT64qWA5K+s0o7sX7tYsViLxLLpQOSJzBonwXCvR2SP4QmYsbUESjU
> 103l9JI5or19lRXwm6I7Tk+Bp5MHV4N0yclEGcqb7HuMSNWM9Jta1EIcIylozC6o
> v0wNA1MWSwoGG9DhwnTHwFOtiGYY6CEBhiHjQcC6MwQ+evvcTgSDUdLjxzqyPfDf
> 8NvRQNqL/BgA+zGE/Jw1GLNWUFxCvAr0G0CN0bXQFrmwRjpLy3QtcbNajBHvH3cl
> qUowSfs2JqWu++6N4A8Xp20njLHs2o6E5xEwEWCteJM6OD4N5Q2qxaPBiv9AA1Ic
> Mj7qKyOLt2HXfI0hlpguAcb72dSrnJBODQ7Z0/cTkW14djjZXuhgSw/m5PE2FkSC
> 1EM35fvSYmxXUG8neSroZOCdL1ZJTH59itR42t1JOht4axaaDUEuvsWbyDiddY+v
> zDC5yCLemhUDyu1cuNg2
> =9Y4D
> -----END PGP SIGNATURE-----
>
>

-- 

*Fredrik Kers* | CTO | linkedin.com/company/netrounds
<https://www.linkedin.com/company/netrounds>

<mats.nordl...@netrounds.com>

*Netrounds* | Storgatan 9 | 972 38 LuleƄ | Sweden | www.netrounds.com

Reply via email to