FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
22373c43-d728-11e6-a9a5-b499baebfeaf	MySQL -- multiple vulnerabilities The MySQL project reports: CVE-2016-3492: Remote security vulnerability in 'Server: Optimizer' sub component. CVE-2016-5616, CVE-2016-6663: Race condition allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table. CVE-2016-5617, CVE-2016-6664: mysqld_safe, when using file-based logging, allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files. CVE-2016-5624: Remote security vulnerability in 'Server: DML' sub component. CVE-2016-5626: Remote security vulnerability in 'Server: GIS' sub component. CVE-2016-5629: Remote security vulnerability in 'Server: Federated' sub component. CVE-2016-8283: Remote security vulnerability in 'Server: Types' sub component. Discovery 2016-09-13 Entry 2017-01-14 mariadb55-client mariadb55-server < 5.5.52 mariadb100-client mariadb100-server < 10.0.28 mariadb101-client mariadb101-server < 10.1.18 mysql55-client mysql55-server < 5.5.52 mysql56-client mysql56-server < 5.6.33 mysql57-client mysql57-server < 5.7.15 percona55-client percona55-server < 5.5.51.38.2 percona56-client percona56-server < 5.6.32.78.1 http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html#AppendixMSQL https://mariadb.com/kb/en/mariadb/mariadb-10028-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-5552-release-notes/ https://mariadb.com/kb/en/mariadb/mariadb-10118-release-notes/ CVE-2016-3492 CVE-2016-5616 CVE-2016-5617 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-6663 CVE-2016-6664 CVE-2016-8283
622b5c47-855b-11ea-a5e2-d4c9ef517024	MySQL Client -- Multiple vulerabilities Oracle reports: This Critical Patch Update contains 45 new security patches for Oracle MySQL. 9 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials. Discovery 2020-04-14 Entry 2020-04-23 mysql56-client < 5.6.48 mysql57-client < 5.7.30 mysql80-client < 8.0.20 mysql-connector-c < 8.0.20 mysql-connector-c++ < 8.0.20 mysql-connector-java < 8.0.20 percona55-client < 5.5.68 percona56-client < 5.6.48 percona57-client < 5.7.30 https://www.oracle.com/security-alerts/cpujan2020.html CVE-2020-2752 CVE-2020-2934 CVE-2020-2875 CVE-2020-2922 CVE-2020-2933

VuXML ID

Description

22373c43-d728-11e6-a9a5-b499baebfeaf

MySQL -- multiple vulnerabilities

The MySQL project reports:

CVE-2016-3492: Remote security vulnerability in 'Server: Optimizer' sub component.

CVE-2016-5616, CVE-2016-6663: Race condition allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table.

CVE-2016-5617, CVE-2016-6664: mysqld_safe, when using file-based logging, allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files.

CVE-2016-5624: Remote security vulnerability in 'Server: DML' sub component.

CVE-2016-5626: Remote security vulnerability in 'Server: GIS' sub component.

CVE-2016-5629: Remote security vulnerability in 'Server: Federated' sub component.

CVE-2016-8283: Remote security vulnerability in 'Server: Types' sub component.

Discovery 2016-09-13
Entry 2017-01-14
mariadb55-client
mariadb55-server

< 5.5.52

mariadb100-client
mariadb100-server

< 10.0.28

mariadb101-client
mariadb101-server

< 10.1.18

mysql55-client
mysql55-server

< 5.5.52

mysql56-client
mysql56-server

< 5.6.33

mysql57-client
mysql57-server

< 5.7.15

percona55-client
percona55-server

< 5.5.51.38.2

percona56-client
percona56-server

< 5.6.32.78.1

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html#AppendixMSQL
https://mariadb.com/kb/en/mariadb/mariadb-10028-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5552-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-10118-release-notes/
CVE-2016-3492
CVE-2016-5616
CVE-2016-5617
CVE-2016-5624
CVE-2016-5626
CVE-2016-5629
CVE-2016-6663
CVE-2016-6664
CVE-2016-8283

622b5c47-855b-11ea-a5e2-d4c9ef517024

MySQL Client -- Multiple vulerabilities

Oracle reports:

This Critical Patch Update contains 45 new security patches for Oracle MySQL. 9 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.

Discovery 2020-04-14
Entry 2020-04-23
mysql56-client

< 5.6.48

mysql57-client

< 5.7.30

mysql80-client

< 8.0.20

mysql-connector-c

< 8.0.20

mysql-connector-c++

< 8.0.20

mysql-connector-java

< 8.0.20

percona55-client

< 5.5.68

percona56-client

< 5.6.48

percona57-client

< 5.7.30

https://www.oracle.com/security-alerts/cpujan2020.html
CVE-2020-2752
CVE-2020-2934
CVE-2020-2875
CVE-2020-2922
CVE-2020-2933