CVS commit: pkgsrc/doc

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/doc
From: "Nia Alarie" <nia%netbsd.org@localhost>
Date: Wed, 10 Apr 2024 19:49:31 +0000

Module Name:    pkgsrc
Committed By:   nia
Date:           Wed Apr 10 19:49:31 UTC 2024

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
Make MariaDB vulnerability version specifiers apply properly to the
versions we've included with pkgsrc.


To generate a diff of this commit:
cvs rdiff -u -r1.167 -r1.168 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.167 pkgsrc/doc/pkg-vulnerabilities:1.168
--- pkgsrc/doc/pkg-vulnerabilities:1.167        Wed Apr 10 07:27:00 2024
+++ pkgsrc/doc/pkg-vulnerabilities      Wed Apr 10 19:49:30 2024
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.167 2024/04/10 07:27:00 wiz Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.168 2024/04/10 19:49:30 nia Exp $
 #
 #FORMAT 1.0.0
 #
@@ -22743,9 +22743,15 @@ librecad-[0-9]*        buffer-overflow         https:/
 librecad-[0-9]*        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-45343
 libsixel-[0-9]*        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-45340
 libspf2<1.2.11 arbitrary-code-execution        https://nvd.nist.gov/vuln/detail/CVE-2021-33912
-mariadb-server<10.6.2  denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46657
-mariadb-server<10.6.3  denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46658
-mariadb-server<10.7.2  denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46659
+mariadb-server>=10.4<10.4.20   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46657
+mariadb-server>=10.5<10.5.11   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46657
+mariadb-server>=10.6<10.6.2    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46657
+mariadb-server>=10.4<10.4.21   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46658
+mariadb-server>=10.5<10.5.12   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46658
+mariadb-server>=10.6<10.6.3    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46658
+mariadb-server>=10.4<10.4.23   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46659
+mariadb-server>=10.5<10.5.14   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46659
+mariadb-server>=10.6<10.6.6    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2021-46659
 moodle<3.11.5  sql-injection                   https://nvd.nist.gov/vuln/detail/CVE-2022-0332
 moodle<3.11.5  invalid-validation              https://nvd.nist.gov/vuln/detail/CVE-2022-0333
 moodle<3.11.5  information-disclosure          https://nvd.nist.gov/vuln/detail/CVE-2022-0334
@@ -23553,10 +23559,18 @@ libxml2<2.9.14        integer-overflow        https://
 lighttpd<1.4.59        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-30780
 lrzip-[0-9]*   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-33067
 mantis<2.25.5  cross-site-scripting    https://nvd.nist.gov/vuln/detail/CVE-2022-33910
-mariadb-server<10.7    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31621
-mariadb-server<10.7    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31622
-mariadb-server<10.7    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31623
-mariadb-server<10.7    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31624
+mariadb-server>=10.4<10.4.22   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31621
+mariadb-server>=10.5<10.5.13   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31621
+mariadb-server>=10.6<10.6.5    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31621
+mariadb-server>=10.4<10.4.23   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31622
+mariadb-server>=10.5<10.5.14   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31622
+mariadb-server>=10.6<10.6.6    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31622
+mariadb-server>=10.4<10.4.23   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31623
+mariadb-server>=10.5<10.5.14   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31623
+mariadb-server>=10.6<10.6.66   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31623
+mariadb-server>=10.4<10.4.23   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31624
+mariadb-server>=10.5<10.5.14   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31624
+mariadb-server>=10.6<10.6.6    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-31624
 matio<1.5.22   denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-1515
 moodle<4.0.1   cross-site-scripting    https://nvd.nist.gov/vuln/detail/CVE-2022-30596
 moodle<4.0.1   information-disclosure  https://nvd.nist.gov/vuln/detail/CVE-2022-30597

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/meta-pkgs/aspell-languages
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/meta-pkgs/aspell-languages
Indexes:

Home | Main Index | Thread Index | Old Index