1. Home
  2. Security Advisories
  3. Rocky Linux
  4. RLSA-2019:3708

[RLSA-2019:3708] mariadb:10.3 security and bug fix update

Severity Moderate
Affected Packages 4
CVEs 12
Info Packages References Vulnerabilities

An update is available for asio, Judy. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

The following packages have been upgraded to a later upstream version: mariadb (10.3.17), galera (25.3.26). (BZ#1701687, BZ#1711265, BZ#1741358)

Security Fix(es):

  • mysql: InnoDB unspecified vulnerability (CPU Jan 2019) (CVE-2019-2510)

  • mysql: Server: DDL unspecified vulnerability (CPU Jan 2019) (CVE-2019-2537)

  • mysql: Server: Replication unspecified vulnerability (CPU Apr 2019) (CVE-2019-2614)

  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2019) (CVE-2019-2627)

  • mysql: InnoDB unspecified vulnerability (CPU Apr 2019) (CVE-2019-2628)

  • mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2019) (CVE-2019-2737)

  • mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2019) (CVE-2019-2739)

  • mysql: Server: XML unspecified vulnerability (CPU Jul 2019) (CVE-2019-2740)

  • mysql: InnoDB unspecified vulnerability (CPU Jul 2019) (CVE-2019-2758)

  • mysql: Server: Parser unspecified vulnerability (CPU Jul 2019) (CVE-2019-2805)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section.

Package Affected Version
pkg:rpm/rockylinux/Judy?arch=x86_64&distro=rockylinux-8.4 < 1.0.5-18.module+el8.4.0+427+adf35707
pkg:rpm/rockylinux/Judy?arch=aarch64&distro=rockylinux-8.4 < 1.0.5-18.module+el8.4.0+427+adf35707
pkg:rpm/rockylinux/asio-devel?arch=x86_64&distro=rockylinux-8.5 < 1.10.8-7.module+el8.5.0+777+18007c86
pkg:rpm/rockylinux/asio-devel?arch=aarch64&distro=rockylinux-8.5 < 1.10.8-7.module+el8.5.0+777+18007c86
ID
RLSA-2019:3708
Severity
moderate
URL
https://errata.rockylinux.org/RLSA-2019:3708
Published
2019-11-05T20:53:43
(4 years ago)
Modified
2023-02-02T13:00:00
(19 months ago)
Rights
Copyright 2024 Rocky Enterprise Software Foundation
Other Advisories
Source # ID Name URL
CVE CVE-2019-2510 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2510
CVE CVE-2019-2537 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537
CVE CVE-2019-2614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614
CVE CVE-2019-2627 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627
CVE CVE-2019-2628 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628
CVE CVE-2019-2737 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2737
CVE CVE-2019-2739 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2739
CVE CVE-2019-2740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2740
CVE CVE-2019-2758 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2758
CVE CVE-2019-2805 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2805
CVE CVE-2020-2922 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2922
CVE CVE-2021-2007 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2007
Bugzilla 1657220 https://bugzilla.redhat.com/show_bug.cgi?id=1657220
Bugzilla 1659920 https://bugzilla.redhat.com/show_bug.cgi?id=1659920
Bugzilla 1666751 https://bugzilla.redhat.com/show_bug.cgi?id=1666751
Bugzilla 1666763 https://bugzilla.redhat.com/show_bug.cgi?id=1666763
Bugzilla 1686818 https://bugzilla.redhat.com/show_bug.cgi?id=1686818
Bugzilla 1687879 https://bugzilla.redhat.com/show_bug.cgi?id=1687879
Bugzilla 1693245 https://bugzilla.redhat.com/show_bug.cgi?id=1693245
Bugzilla 1702707 https://bugzilla.redhat.com/show_bug.cgi?id=1702707
Bugzilla 1702709 https://bugzilla.redhat.com/show_bug.cgi?id=1702709
Bugzilla 1702969 https://bugzilla.redhat.com/show_bug.cgi?id=1702969
Bugzilla 1702976 https://bugzilla.redhat.com/show_bug.cgi?id=1702976
Bugzilla 1702977 https://bugzilla.redhat.com/show_bug.cgi?id=1702977
Bugzilla 1731997 https://bugzilla.redhat.com/show_bug.cgi?id=1731997
Bugzilla 1731999 https://bugzilla.redhat.com/show_bug.cgi?id=1731999
Bugzilla 1732000 https://bugzilla.redhat.com/show_bug.cgi?id=1732000
Bugzilla 1732008 https://bugzilla.redhat.com/show_bug.cgi?id=1732008
Bugzilla 1732025 https://bugzilla.redhat.com/show_bug.cgi?id=1732025
Self RLSA-2019:3708 https://errata.rockylinux.org/RLSA-2019:3708
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/rockylinux/Judy?arch=x86_64&distro=rockylinux-8.4 rockylinux Judy < 1.0.5-18.module+el8.4.0+427+adf35707 rockylinux-8.4 x86_64
Affected pkg:rpm/rockylinux/Judy?arch=aarch64&distro=rockylinux-8.4 rockylinux Judy < 1.0.5-18.module+el8.4.0+427+adf35707 rockylinux-8.4 aarch64
Affected pkg:rpm/rockylinux/asio-devel?arch=x86_64&distro=rockylinux-8.5 rockylinux asio-devel < 1.10.8-7.module+el8.5.0+777+18007c86 rockylinux-8.5 x86_64
Affected pkg:rpm/rockylinux/asio-devel?arch=aarch64&distro=rockylinux-8.5 rockylinux asio-devel < 1.10.8-7.module+el8.5.0+777+18007c86 rockylinux-8.5 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date