security/vuxml: Document addl. MariaDB vulns

svn path=/head/; revision=554412
2020-11-07 17:40:33 +00:00 · 2020-11-07 17:40:33 +00:00 · c9df4f937f · 2021-03-31 03:12:20 +00:00
commit c9df4f937f
parent dcaa44a62b
1 changed files with 15 additions and 0 deletions
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@ -420,6 +420,18 @@ Notes:
  <vuln vid="4fba07ca-13aa-11eb-b31e-d4c9ef517024">
    <topic>MySQL -- Multiple vulnerabilities</topic>
    <affects>
+      <package>
+	<name>mariadb103-server</name>
+	<range><lt>10.3.26</lt></range>
+      </package>
+      <package>
+	<name>mariadb104-server</name>
+	<range><lt>10.4.16</lt></range>
+      </package>
+      <package>
+	<name>mariadb105-server</name>
+	<range><lt>10.5.7</lt></range>
+      </package>
      <package>
 	<name>mysql56-server</name>
 	<range><lt>5.6.50</lt></range>
@ -441,6 +453,8 @@ Notes:
 	    Oracle MySQL.</p>
 	  <p>The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle
 	    MySQL is 8.</p>
+	  <p>NOTE: MariaDB only contains CVE-2020-14812 CVE-2020-14765
+	    CVE-2020-14776 and CVE-2020-14789</p>
 	</blockquote>
      </body>
    </description>
@ -498,6 +512,7 @@ Notes:
    <dates>
      <discovery>2020-10-20</discovery>
      <entry>2020-10-21</entry>
+      <modified>2020-11-07</modified>
    </dates>
  </vuln>