openSUSE-SU-2017:1530-1

Опубликовано: 10 июн. 2017

Источник: suse-cvrf

Описание

Security update for mysql-connector-cpp, mysql-workbench

This update for mysql-connector-cpp and mysql-workbench fixes the following issues:

Mysql-connector-cpp was updated to version 1.1.8:

See the news files on https://dev.mysql.com/doc/relnotes/connector-cpp/en/

Mysql-workbench was updated to version 6.3.9:

https://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-3-8.html
https://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-3-9.html
resolves CVE-2017-3469 (boo#1035195)

Список пакетов

openSUSE Leap 42.2

libmysqlcppconn-devel-1.1.8-5.3.2

libmysqlcppconn7-1.1.8-5.3.2

mysql-connector-cpp-1.1.8-5.3.2

mysql-workbench-6.3.9-2.5.2

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-06/msg00029.html
E-Mail link for openSUSE-SU-2017:1530-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Vulnerability in the MySQL Workbench component of Oracle MySQL (subcomponent: Workbench: Security : Encryption). Supported versions that are affected are 6.3.8 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Workbench. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Workbench accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

Затронутые продукты

openSUSE Leap 42.2:libmysqlcppconn-devel-1.1.8-5.3.2

openSUSE Leap 42.2:libmysqlcppconn7-1.1.8-5.3.2

openSUSE Leap 42.2:mysql-connector-cpp-1.1.8-5.3.2

openSUSE Leap 42.2:mysql-workbench-6.3.9-2.5.2

Ссылки

https://www.suse.com/security/cve/CVE-2017-3469.html
CVE-2017-3469
https://bugzilla.suse.com/1035195
SUSE Bug 1035195

openSUSE-SU-2017:1530-1

Описание

Список пакетов

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2017-3469

Описание

Затронутые продукты

Ссылки