Bug 239571 - databases/mysql55-server databases/mysql56-server databases/mysql57-server databases/mysql80-server - security fixes
Summary: databases/mysql55-server databases/mysql56-server databases/mysql57-server da...
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Mahdi Mokhtari
URL: https://www.oracle.com/technetwork/se...
Keywords: needs-patch, security
Depends on: 239271 239272
Blocks:
  Show dependency treegraph
 
Reported: 2019-08-01 08:16 UTC by Sergey N. Voronkov
Modified: 2019-08-05 23:22 UTC (History)
5 users (show)

See Also:
serg: maintainer-feedback+
mmokhi: merge-quarterly?


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Greg Veldman 2019-08-01 15:35:22 UTC
Patches for 5.7 are in bug 239271, I didn't see this one until just now.  I'll see if I can work up patches for the other supported versions in the next day or two, unless someone beats me to it...

Meanwhile, since this is security related, if the patches in the other bug look good can a committer get them committed?
Comment 2 Greg Veldman 2019-08-01 15:36:19 UTC
Tagging ports-secteam@...
Comment 3 commit-hook freebsd_committer 2019-08-05 23:22:19 UTC
A commit references this bug:

Author: mmokhi
Date: Mon Aug  5 23:21:26 UTC 2019
New revision: 508218
URL: https://svnweb.freebsd.org/changeset/ports/508218

Log:
  databases/mysq56-{client, server}: Update to 5.6.45

  This update includes security fixes which are
  mentioned on upstream critical patch report.
  Further info:
  https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html#AppendixMSQL

  PR:		239571
  Reported by:	serg@tmn.ru
  Sponsored by:	Platform.sh

Changes:
  head/databases/mysql56-client/files/patch-sql-common_client__authentication.cc
  head/databases/mysql56-server/Makefile
  head/databases/mysql56-server/distinfo
  head/databases/mysql56-server/files/patch-sql-common_client__authentication.cc