git.libre-soc.org Git - buildroot.git/commit

author	Ryan Coe <bluemrp9@gmail.com>
	Thu, 14 Dec 2017 17:41:57 +0000 (09:41 -0800)
committer	Peter Korsgaard <peter@korsgaard.com>
	Thu, 14 Dec 2017 20:18:43 +0000 (21:18 +0100)
commit	e299197a2c2a267d05e5ae7cb7298bce0faceb51
tree	ad2de497adb050db879c804a073c236d1dabccee	tree
parent	985d1a03c394a947f38ec33254fba0488ba9518d	commit \| diff

mariadb: security bump version to 10.1.29

Release notes: https://mariadb.com/kb/en/mariadb-10129-release-notes/
Changelog: https://mariadb.com/kb/en/mariadb-10129-changelog/

Fixes the following security vulnerabilities:

CVE-2017-10378 - Vulnerability in the MySQL Server component of Oracle MySQL
(subcomponent: Server: Optimizer). Supported versions that are affected are
5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily
exploitable vulnerability allows low privileged attacker with network access
via multiple protocols to compromise MySQL Server. Successful attacks of this
vulnerability can result in unauthorized ability to cause a hang or frequently
repeatable crash (complete DOS) of MySQL Server.

CVE-2017-10268 - Vulnerability in the MySQL Server component of Oracle MySQL
(subcomponent: Server: Replication). Supported versions that are affected are
5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to
exploit vulnerability allows high privileged attacker with logon to the
infrastructure where MySQL Server executes to compromise MySQL Server.
Successful attacks of this vulnerability can result in unauthorized access to
critical data or complete access to all MySQL Server accessible data.

Signed-off-by: Ryan Coe <bluemrp9@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

package/mariadb/mariadb.hash		diff \| blob \| history
package/mariadb/mariadb.mk		diff \| blob \| history