Bug 24684

Summary: mysql-connector-odbc new security issue CVE-2019-1559
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED OLD QA Contact: Sec team <security>
Severity: critical    
Priority: Normal CC: geiger.david68210, marja11, nicolas.salguero
Version: 6   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: mysql-connector-odbc-5.3.2-3.mga6.src.rpm CVE:
Status comment:

Description David Walser 2019-04-17 21:15:55 CEST 
The April 2019 Oracle CPU lists a security issue fixed in mysql-connector-odbc:
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixMSQL

It sounds like it needs to be updated to something newer than 5.3.12.

I'm not sure why I'm not seeing the package in Cauldron.
Comment 1 David GEIGER 2019-04-18 05:22:21 CEST 
On Cauldron it is replaced for mariadb-connector-odbc.

CC: (none) => geiger.david68210

Comment 2 Marja Van Waes 2019-04-20 07:15:48 CEST 
Assigning to all packagers collectively, since there is no registered maintainer for this package.

CC: (none) => marja11
Assignee: bugsquad => pkg-bugs

Comment 3 Nicolas Salguero 2019-11-06 16:22:34 CET 
Mageia 6 EOL

Status: NEW => RESOLVED
Resolution: (none) => OLD
CC: (none) => nicolas.salguero