[SUSE-SU-2019:0555-1] Security update for mariadb
Severity
Important
CVEs
19
Security update for mariadb
This update for mariadb to version 10.2.22 fixes the following issues:
Security issues fixed:
- CVE-2019-2510: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service (bsc#1122198).
- CVE-2019-2537: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service (bsc#1122198).
- CVE-2018-3284: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112377)
- CVE-2018-3282: Server Storage Engines unspecified vulnerability (CPU Oct 2018) (bsc#1112432)
- CVE-2018-3277: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112391)
- CVE-2018-3251: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112397)
- CVE-2018-3200: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112404)
- CVE-2018-3185: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112384)
- CVE-2018-3174: Client programs unspecified vulnerability (CPU Oct 2018) (bsc#1112368)
- CVE-2018-3173: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112386)
- CVE-2018-3162: Fixed InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112415)
- CVE-2018-3156: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112417)
- CVE-2018-3143: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112421)
- CVE-2018-3066: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Options). (bsc#1101678)
- CVE-2018-3064: InnoDB unspecified vulnerability (CPU Jul 2018) (bsc#1103342)
- CVE-2018-3063: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Security Privileges). (bsc#1101677)
- CVE-2018-3058: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent MyISAM). (bsc#1101676)
- CVE-2016-9843: Big-endian out-of-bounds pointer (bsc#1013882)
Non-security issues fixed:
- Fixed an issue where mysl_install_db fails due to incorrect basedir (bsc#1127027).
- Fixed an issue where the lograte was not working (bsc#1112767).
- Backport Information Schema CHECK_CONSTRAINTS Table.
- Maximum value of table_definition_cache is now 2097152.
- InnoDB ALTER TABLE fixes.
- Galera crash recovery fixes.
- Encryption fixes.
- Remove xtrabackup dependency as MariaDB ships a build in mariabackup so xtrabackup is not needed (bsc#1122475).
- Maria DB testsuite - test main.plugin_auth failed (bsc#1111859)
- Maria DB testsuite - test encryption.second_plugin-12863 failed (bsc#1111858)
- Remove PerconaFT from the package as it has AGPL licence (bsc#1118754)
- remove PerconaFT from the package as it has AGPL licence (bsc#1118754)
- Database corruption after renaming a prefix-indexed column (bsc#1120041)
Release notes and changelog:
- ID
- SUSE-SU-2019:0555-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20190555-1/
- Published
-
2019-03-06T09:55:52
(5 years ago) - Modified
-
2019-03-06T09:55:52
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1068
- ALAS-2018-1069
- ALAS-2018-1070
- ALAS-2018-1114
- ALAS-2018-1115
- ALAS-2018-1116
- ALAS-2019-1178
- ALAS-2019-1181
- ALAS2-2019-1193
- ALAS2-2019-1292
- ALPINE:CVE-2016-9843
- ALPINE:CVE-2018-3058
- ALPINE:CVE-2018-3060
- ALPINE:CVE-2018-3063
- ALPINE:CVE-2018-3064
- ALPINE:CVE-2018-3066
- ALPINE:CVE-2018-3143
- ALPINE:CVE-2018-3156
- ALPINE:CVE-2018-3162
- ALPINE:CVE-2018-3173
- ALPINE:CVE-2018-3174
- ALPINE:CVE-2018-3185
- ALPINE:CVE-2018-3200
- ALPINE:CVE-2018-3251
- ALPINE:CVE-2018-3277
- ALPINE:CVE-2018-3282
- ALPINE:CVE-2018-3284
- ALPINE:CVE-2019-2510
- ALPINE:CVE-2019-2537
- ALSA-2019:2511
- ALSA-2019:3708
- DSA-4341-1
- ELSA-2019-2327
- ELSA-2019-2511
- FEDORA-2018-192148f4ff
- FEDORA-2018-242f6c1a41
- FEDORA-2018-3a3c660bfa
- FEDORA-2018-4ae94c8deb
- FEDORA-2018-55b875c1ac
- FEDORA-2018-77e610115a
- FEDORA-2018-b4820696e1
- FEDORA-2018-c82fc3e109
- FEDORA-2018-d1c4a4ca50
- FEDORA-2018-f67fda3db6
- FEDORA-2019-21b76d179e
- FEDORA-2019-60befaed69
- FEDORA-2019-614f1cd5a8
- FEDORA-2019-6a8a9efc40
- FEDORA-2019-96516ce0ac
- FEDORA-2019-c1fab3f139
- FEDORA-2019-f873e2799f
- FREEBSD:085399AB-DFD7-11EA-96E4-80EE73BC7B66
- FREEBSD:909BE51B-9B3B-11E8-ADD2-B499BAEBFEAF
- FREEBSD:D3D02D3A-2242-11E9-B95C-B499BAEBFEAF
- FREEBSD:EC5072B0-D43A-11E8-A6D2-B499BAEBFEAF
- GLSA-201701-56
- GLSA-201908-24
- GLSA-202007-54
- openSUSE-SU-2019:0327-1
- RHSA-2017:1220
- RHSA-2017:1221
- RHSA-2017:1222
- RHSA-2019:2327
- RHSA-2019:2511
- RHSA-2019:3708
- RLSA-2019:2511
- RLSA-2019:3708
- SSA:2018-309-01
- SSA:2019-032-01
- SUSE-SU-2016:3209-1
- SUSE-SU-2017:0003-1
- SUSE-SU-2017:0004-1
- SUSE-SU-2017:1384-1
- SUSE-SU-2017:1385-1
- SUSE-SU-2017:1386-1
- SUSE-SU-2017:1387-1
- SUSE-SU-2017:1389-1
- SUSE-SU-2017:1444-1
- SUSE-SU-2017:2699-1
- SUSE-SU-2017:2700-1
- SUSE-SU-2017:2989-1
- SUSE-SU-2018:0005-1
- SUSE-SU-2018:1815-1
- SUSE-SU-2018:2411-1
- SUSE-SU-2018:3542-1
- SUSE-SU-2018:3972-1
- SUSE-SU-2018:4211-1
- SUSE-SU-2019:0119-1
- SUSE-SU-2019:0609-1
- SUSE-SU-2019:0628-1
- SUSE-SU-2019:1162-1
- SUSE-SU-2019:1441-1
- SUSE-SU-2019:2048-1
- SUSE-SU-2019:2118-1
- USN-3725-1
- USN-3725-2
- USN-3799-1
- USN-3799-2
- USN-3867-1
- USN-4246-1
- USN-4292-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |