[SUSE-SU-2017:0411-1] Security update for mariadb
Severity
Important
Affected Packages
29
CVEs
11
Security update for mariadb
This mariadb version update to 10.0.29 fixes the following issues:
- CVE-2017-3318: unspecified vulnerability affecting Error Handling (bsc#1020896)
- CVE-2017-3317: unspecified vulnerability affecting Logging (bsc#1020894)
- CVE-2017-3312: insecure error log file handling in mysqld_safe, incomplete CVE-2016-6664 (bsc#1020873)
- CVE-2017-3291: unrestricted mysqld_safe's ledir (bsc#1020884)
- CVE-2017-3265: unsafe chmod/chown use in init script (bsc#1020885)
- CVE-2017-3258: unspecified vulnerability in the DDL component (bsc#1020875)
- CVE-2017-3257: unspecified vulnerability affecting InnoDB (bsc#1020878)
- CVE-2017-3244: unspecified vulnerability affecing the DML component (bsc#1020877)
- CVE-2017-3243: unspecified vulnerability affecting the Charsets component (bsc#1020891)
- CVE-2017-3238: unspecified vulnerability affecting the Optimizer component (bsc#1020882)
- CVE-2016-6664: Root Privilege Escalation (bsc#1008253)
Applications using the client library for MySQL (libmysqlclient.so) had a use-after-free issue that could cause the applications to crash (bsc#1022428)
notable changes:
- XtraDB updated to 5.6.34-79.1
- TokuDB updated to 5.6.34-79.1
- Innodb updated to 5.6.35
- Performance Schema updated to 5.6.35
Release notes and changelog:
* https://kb.askmonty.org/en/mariadb-10029-release-notes
* https://kb.askmonty.org/en/mariadb-10029-changelog
- ID
- SUSE-SU-2017:0411-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2017/suse-su-20170411-1/
- Published
-
2017-02-07T12:16:05
(7 years ago) - Modified
-
2017-02-07T12:16:05
(7 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2017-789
- ALAS-2017-790
- ALAS-2017-830
- ALAS-2017-831
- ALPINE:CVE-2016-6664
- ALPINE:CVE-2017-3238
- ALPINE:CVE-2017-3243
- ALPINE:CVE-2017-3244
- ALPINE:CVE-2017-3257
- ALPINE:CVE-2017-3258
- ALPINE:CVE-2017-3265
- ALPINE:CVE-2017-3291
- ALPINE:CVE-2017-3312
- ALPINE:CVE-2017-3317
- ALPINE:CVE-2017-3318
- DSA-3767-1
- DSA-3770-1
- ELSA-2017-2192
- FEDORA-2017-09dd8907da
- FEDORA-2017-0f44f2b8c8
- FEDORA-2017-1fedb9890c
- FEDORA-2017-2c0609b92a
- FEDORA-2017-801e01d1ed
- FEDORA-2017-8425f676f2
- FEDORA-2017-ef6bed485e
- FEDORA-2017-fe6e14dcf9
- FEDORA-2018-8b920c2b00
- FEDORA-2018-d955395c08
- FREEBSD:22373C43-D728-11E6-A9A5-B499BAEBFEAF
- FREEBSD:4D2F9D09-DDB7-11E6-A9A5-B499BAEBFEAF
- GLSA-201702-17
- GLSA-201702-18
- MS:CVE-2016-6664
- RHSA-2017:2192
- SSA:2017-018-01
- SUSE-SU-2017:0408-1
- SUSE-SU-2017:0412-1
- SUSE-SU-2018:1853-1
- USN-3174-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/mariadb?arch=x86_64&distro=sles-12 | suse | mariadb | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb?arch=s390x&distro=sles-12 | suse | mariadb | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb?arch=ppc64le&distro=sles-12 | suse | mariadb | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-tools?arch=x86_64&distro=sles-12 | suse | mariadb-tools | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-tools?arch=s390x&distro=sles-12 | suse | mariadb-tools | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-tools?arch=ppc64le&distro=sles-12 | suse | mariadb-tools | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=x86_64&distro=sles-12 | suse | mariadb-errormessages | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=s390x&distro=sles-12 | suse | mariadb-errormessages | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-errormessages?arch=ppc64le&distro=sles-12 | suse | mariadb-errormessages | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/mariadb-client?arch=x86_64&distro=sles-12 | suse | mariadb-client | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/mariadb-client?arch=s390x&distro=sles-12 | suse | mariadb-client | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/mariadb-client?arch=ppc64le&distro=sles-12 | suse | mariadb-client | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqld18?arch=x86_64&distro=sles-12 | suse | libmysqld18 | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqld18?arch=s390x&distro=sles-12 | suse | libmysqld18 | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqld18?arch=ppc64le&distro=sles-12 | suse | libmysqld18 | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=x86_64&distro=sles-12 | suse | libmysqld-devel | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=s390x&distro=sles-12 | suse | libmysqld-devel | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqld-devel?arch=ppc64le&distro=sles-12 | suse | libmysqld-devel | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=x86_64&distro=sles-12 | suse | libmysqlclient_r18 | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=s390x&distro=sles-12 | suse | libmysqlclient_r18 | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient_r18?arch=ppc64le&distro=sles-12 | suse | libmysqlclient_r18 | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=x86_64&distro=sles-12 | suse | libmysqlclient18 | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=s390x&distro=sles-12 | suse | libmysqlclient18 | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient18?arch=ppc64le&distro=sles-12 | suse | libmysqlclient18 | < 10.0.29-20.23.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=x86_64&distro=sles-12 | suse | libmysqlclient18-32bit | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient18-32bit?arch=s390x&distro=sles-12 | suse | libmysqlclient18-32bit | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=x86_64&distro=sles-12 | suse | libmysqlclient-devel | < 10.0.29-20.23.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=s390x&distro=sles-12 | suse | libmysqlclient-devel | < 10.0.29-20.23.1 | sles-12 | s390x | |
Affected | pkg:rpm/suse/libmysqlclient-devel?arch=ppc64le&distro=sles-12 | suse | libmysqlclient-devel | < 10.0.29-20.23.1 | sles-12 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |