You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa mysql-5.5

Sigurnosni nedostaci programskog paketa mysql-5.5

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512

– ————————————————————————-
Debian Security Advisory DSA-3308-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
July 18, 2015 https://www.debian.org/security/faq
– ————————————————————————-

Package : mysql-5.5
CVE ID : CVE-2015-2582 CVE-2015-2620 CVE-2015-2643 CVE-2015-2648
CVE-2015-4737 CVE-2015-4752
Debian Bug : 792445

Several issues have been discovered in the MySQL database server. The
vulnerabilities are addressed by upgrading MySQL to the new upstream
version 5.5.44. Please see the MySQL 5.5 Release Notes and Oracle’s
Critical Patch Update advisory for further details:

https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

For the oldstable distribution (wheezy), these problems have been fixed
in version 5.5.44-0+deb7u1.

For the stable distribution (jessie), these problems have been fixed in
version 5.5.44-0+deb8u1.

We recommend that you upgrade your mysql-5.5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=TnIo
—–END PGP SIGNATURE—–


To UNSUBSCRIBE, email to debian-security-announce-REQUEST@lists.debian.org
with a subject of “unsubscribe”. Trouble? Contact listmaster@lists.debian.org
Archive: https://lists.debian.org/E1ZGOTI-0002mm-RV@master.debian.org

Top
More in Preporuke
Sigurnosni propust programskog paketa openstack-cinder

Otkriven je sigurnosni propust u programskom paketu openstack-cinder za Fedoru uzrokovan greškom koja bi autenticiranom korisniku mogla omogućiti čitanje bilo...

Close