DRAFT: FDW security advisories (mysql_fdw / mongo_fdw / hdfs_fdw)#7189
Draft
vtran-edb wants to merge 1 commit into
Draft
DRAFT: FDW security advisories (mysql_fdw / mongo_fdw / hdfs_fdw)#7189vtran-edb wants to merge 1 commit into
vtran-edb wants to merge 1 commit into
Conversation
Add seven draft CVE advisories for the MySQL, MongoDB, and HDFS foreign data wrappers, formatted to the security advisory template, plus the regenerated advisories index. DRAFT for dev-team review before publication. Placeholders remain: - CVE IDs (CVE-YYYY-NNNN) pending assignment - First Published dates and first-fix release versions - CVE-G (mongo_fdw ObjectId OOB read) has an unresolved traceability gap and MUST NOT be published until commit 5d48478 is reviewed. index.mdx regenerated via tools/automation/generators/advisoryindex. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Draft security advisories for the three foreign data wrappers, covering the vulnerabilities fixed under FDW-753 / FDW-754 / FDW-755 / FDW-759. Adds seven advisory
.mdxfiles (formatted tocve.mdx.template) plus the regeneratedadvisories/index.mdx.This is a DRAFT for dev-team review before publication — not for merge as-is.
Advisories
Placeholders to resolve before publishing
CVE-YYYY-NNNN(intitle,navTitle, the NVD link, and the filename → rename tocve<year><number>.mdx).TBD(drafts group under a "Released TBD" section in the index).tools/automation/generators/advisoryindexafter real IDs/dates are set so the index regenerates cleanly.Reviewer notes
authentication_database/replica_setare server options), not a plain user mapping; the low-privilege vector is connection redirection. See the advisory's Note block.5d48478) is not attached to FDW-753 and has not been independently reviewed. Please review that commit and give it a review record before this advisory ships. PSIRT to confirm whether a CVE is warranted.index.mdxwas regenerated with the official generator (not hand-edited); the security/assessments indexes were unchanged.🤖 Generated with Claude Code