blob: 2a8dba121a51978b1f89886c03ecc4d54d5f3906 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
<define-tag description>security update</define-tag>
<define-tag moreinfo>
<p>A vulnerability was discovered in mysql-connector-java, a Java database
(JDBC) driver for MySQL, which may result in unauthorized update, insert
or delete access to some MySQL Connectors accessible data as well as
read access to a subset of MySQL Connectors accessible data. The
vulnerability was addressed by upgrading mysql-connector-java to the new
upstream version 5.1.39, which includes additional changes, such as bug
fixes, new features, and possibly incompatible changes. Please see the
MySQL Connector/J Release Notes and Oracle's Critical Patch Update
advisory for further details:</p>
<ul>
<li><a href="https://dev.mysql.com/doc/relnotes/connector-j/5.1/en/news-5-1.html">\
https://dev.mysql.com/doc/relnotes/connector-j/5.1/en/news-5-1.html</a></li>
<li><a href="http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL">\
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html#AppendixMSQL</a></li>
</ul>
<p>For the stable distribution (jessie), this problem has been fixed in
version 5.1.39-1~deb8u1.</p>
<p>We recommend that you upgrade your mysql-connector-java packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/security/2016/dsa-3621.data"
# $Id$
|
