** Description changed:
https://people.canonical.com/~ubuntu-
security/cve/2017/CVE-2017-15365.html
The security notice above also affect MariaDB and the latest release
includes fixes.
Oracle has not patched MySQL yet, so and there is no update for
mysql-5.7, so no USN has been published yet.
I will produce a security release soon and attach more information to this
bug report for:
- - mariadb-10.1 in Zesty
- - mariadb-10.1 in Artful
- - (mariadb-10.1 in Artful can sync from Debian)
+ - mariadb-10.1 in Zesty
+ - mariadb-10.1 in Artful
+
+ (mariadb-10.1 in Bionic can sync from Debian)
** Changed in: mariadb-10.0 (Ubuntu)
Assignee: (unassigned) => Otto Kekäläinen (otto)
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-15365
** Package changed: mariadb-10.0 (Ubuntu) => mariadb-10.1 (Ubuntu)
** Changed in: mariadb-10.1 (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1740768
Title:
CVE-2017-15365: Replication in sql/event_data_objects.cc occurs before
ACL checks
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mariadb-10.1/+bug/1740768/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
