[openSUSE-SU-2020:0289-1] Security update for mariadb
Severity
Moderate
Affected Packages
17
CVEs
2
Security update for mariadb
This update for mariadb fixes the following issues:
MariaDB was updated to version 10.2.31 GA (bsc#1162388).
Security issues fixed:
- CVE-2020-2574: Fixed a difficult to exploit vulnerability that allowed an attacker to crash the client (bsc#1162388).
- CVE-2019-18901: Fixed an unsafe path handling behavior in mysql-systemd-helper (bsc#1160895).
- Enabled security hardenings in MariaDB's systemd service, namely ProtectSystem, ProtectHome and UMask (bsc#1160878).
This update was imported from the SUSE:SLE-15:Update update project.
- ID
- openSUSE-SU-2020:0289-1
- Severity
- moderate
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2WWOUCCIRD2P3YRI5GU76EFPRT63XZMG/
- Published
-
2020-03-02T23:15:05
(4 years ago) - Modified
-
2020-03-02T23:15:05
(4 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2020-1537
- ALPINE:CVE-2020-2574
- ALSA-2020:3732
- ALSA-2020:5500
- ALSA-2020:5503
- ELSA-2020-3732
- ELSA-2020-4026
- ELSA-2020-5500
- ELSA-2020-5503
- FREEBSD:A6CF65AD-37D2-11EA-A1C7-B499BAEBFEAF
- FREEBSD:CB0183BB-45F6-11EA-A1C7-B499BAEBFEAF
- GLSA-202105-27
- RHSA-2020:3732
- RHSA-2020:4026
- RHSA-2020:5500
- RHSA-2020:5503
- RLSA-2020:3732
- RLSA-2020:5500
- RLSA-2020:5503
- SUSE-SU-2020:0496-1
- SUSE-SU-2020:0505-1
- SUSE-SU-2020:0523-1
- SUSE-SU-2020:0527-1
- SUSE-SU-2020:0640-1
- SUSE-SU-2020:0831-1
- USN-4250-1
- USN-4250-2
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0289-1.json | |
Suse | URL for openSUSE-SU-2020:0289-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2WWOUCCIRD2P3YRI5GU76EFPRT63XZMG/ | |
Suse | E-Mail link for openSUSE-SU-2020:0289-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2WWOUCCIRD2P3YRI5GU76EFPRT63XZMG/ | |
Bugzilla | SUSE Bug 1160878 | https://bugzilla.suse.com/1160878 | |
Bugzilla | SUSE Bug 1160883 | https://bugzilla.suse.com/1160883 | |
Bugzilla | SUSE Bug 1160895 | https://bugzilla.suse.com/1160895 | |
Bugzilla | SUSE Bug 1160912 | https://bugzilla.suse.com/1160912 | |
Bugzilla | SUSE Bug 1162388 | https://bugzilla.suse.com/1162388 | |
CVE | SUSE CVE CVE-2019-18901 page | https://www.suse.com/security/cve/CVE-2019-18901/ | |
CVE | SUSE CVE CVE-2020-2574 page | https://www.suse.com/security/cve/CVE-2020-2574/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/mariadb?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/mariadb-tools?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb-tools | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb-tools?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb-tools | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/mariadb-test?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb-test | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb-test?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb-test | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/mariadb-galera?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb-galera | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb-galera?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb-galera | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/mariadb-errormessages?arch=noarch&distro=opensuse-leap-15.1 | opensuse | mariadb-errormessages | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | noarch | |
Affected | pkg:rpm/opensuse/mariadb-client?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb-client | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb-client?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb-client | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/mariadb-bench?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | mariadb-bench | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/mariadb-bench?arch=i586&distro=opensuse-leap-15.1 | opensuse | mariadb-bench | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/libmysqld19?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | libmysqld19 | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/libmysqld19?arch=i586&distro=opensuse-leap-15.1 | opensuse | libmysqld19 | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/libmysqld-devel?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | libmysqld-devel | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/libmysqld-devel?arch=i586&distro=opensuse-leap-15.1 | opensuse | libmysqld-devel | < 10.2.31-lp151.2.12.1 | opensuse-leap-15.1 | i586 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |